Report - u43997916.ct.sendgrid.net/ls/click?upn=u001.8-2Bu6iTAOb-2FcpkRnZlUIEsFX12VujJLkoH2yCHZQsWjuPSSFUiMg-2BQ9nkVSK1fcfjTvO6utgbHLV41nhKL22d6g-3D-3D7a1F_s4s3CAiQifknn9tUfiEZ-2FfAmMlp3-2BvQsKWm-2FznoaqCm3AT46Ark2Rk2byMstc5CsJveScp-2FFoO67NcBMKOlWq5ltWrFanYdr61w-2BIiUteGEYaH-2BreV-2FqPQ-2Fp68nrESqE87R-2FvyevIfLUqMBuGl-2FRnQ2vBcNSXfC6xg2dhS3B-2FpGNRaAFnr8fPK6oBli9GRH3axWx8YggPs1fV0Ksjt8CuxkffnLEzZHFhofsd7ENb7I-3D

Report Overview

Submitted URL
u43997916.ct.sendgrid.net/ls/click?upn=u001.8-2Bu6iTAOb-2FcpkRnZlUIEsFX12VujJLkoH2yCHZQsWjuPSSFUiMg-2BQ9nkVSK1fcfjTvO6utgbHLV41nhKL22d6g-3D-3D7a1F_s4s3CAiQifknn9tUfiEZ-2FfAmMlp3-2BvQsKWm-2FznoaqCm3AT46Ark2Rk2byMstc5CsJveScp-2FFoO67NcBMKOlWq5ltWrFanYdr61w-2BIiUteGEYaH-2BreV-2FqPQ-2Fp68nrESqE87R-2FvyevIfLUqMBuGl-2FRnQ2vBcNSXfC6xg2dhS3B-2FpGNRaAFnr8fPK6oBli9GRH3axWx8YggPs1fV0Ksjt8CuxkffnLEzZHFhofsd7ENb7I-3D
IP
167.89.115.54
ASN
#11377 SENDGRID
Submitted
2024-04-23 16:46:17
Access
public
Website Title
DocuSign
Final URL
lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c/page/67CrD?s=nulVspA_Ayc
Tags
docusign phishing
urlquery detections
Phishing - Docusign

Detections

urlquery
8
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
apis.google.com	105	1997-09-15	2013-05-06	2024-04-22	4.5 kB	190 kB	142.250.74.110
ssl.gstatic.com	unknown	2008-02-11	2012-05-23	2024-04-22	2.0 kB	173 kB	142.250.74.163
content-sheets.googleapis.com	119630	2005-01-25	2017-02-05	2024-04-02	2.8 kB	7.7 kB	142.250.74.106
lookerstudio.google.com	unknown	1997-09-15	2022-10-31	2024-04-15	6.3 kB	125 kB	142.250.74.110
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-23	9.1 kB	8.7 MB	142.250.74.163
firestore.googleapis.com	1961	2005-01-25	2017-10-10	2024-04-21	7.9 kB	5.9 kB	142.250.74.170
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-23	2.1 kB	11 kB	142.250.74.106
maps.googleapis.com	33876	2005-01-25	2019-10-17	2024-04-23	2.0 kB	182 kB	142.250.74.106
identitytoolkit.googleapis.com	20486	2005-01-25	2019-01-03	2024-04-20	1.8 kB	3.4 kB	216.58.211.10
u43997916.ct.sendgrid.net	unknown	unknown	No data	No data	861 B	314 B	167.89.123.16
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-22	430 B	96 kB	142.250.74.136
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-22	4.9 kB	301 kB	216.58.207.227
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	3.5 kB	64 kB	142.250.74.164
content-people-pa.googleapis.com	156634	2005-01-25	2016-02-05	2024-03-13	2.8 kB	40 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

JavaScript (50)

	URL	Size	First Seen	Last Seen
	maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/util.js	185 kB	2024-02-26	2024-05-01
Pretty URL maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/util.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-26 18:17:48 Last Seen2024-05-01 14:48:36 Times Seen40 Hash 7217cfe43953b86b76691c5d1408b163 d2d95a0b110c70df7268f3dd910b02b8fd34e512 44f4d44984a0af8d694e23f3ebd55e1602ed5c052053b039950df897e848f6fa Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	317 B	2023-03-08	2024-05-01
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:39:10 Last Seen2024-05-01 14:48:33 Times Seen63 Hash 2edbb937f5baeffceb6374cf70425352 b5305db98fd9873a1ced84e96f090a24cfce00eb ce2ca398fdbbc832ab03c23fb8d697e5046c8fe316d5af27a22e008f7715a433 Loading...

	unknown	241 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:10 Last Seen2024-05-01 14:48:33 Times Seen66 Hash 4aa407136e52849adc0e796c52a697c2 10719d2f21afa5b388c503995814548458143732 0ffe38ebf2565fba77193d5a3c42df1722761bcc90ad1156dee64a181df5d43f Loading...

	unknown	406 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:33 Times Seen66 Hash 226ed21666c29b18561eeb1adc0bdefb 184896360150d9b3193d2dbe8eaed8fb00469815 4d1a486e1a4d96a32d4073afaa79572aef95c16da00cce313d25ccedde392d71 Loading...

	unknown	136 kB	2023-11-01	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 18:31:57 Last Seen2024-05-01 14:48:33 Times Seen36 Hash 309274150ec8c76ad75aa9649f853b34 6a63918dbdbf407a81be7f87aef1a06baf8999f4 ead336ea45a811bf3bd62e030072cb99a250108ceee02a004e9772a71489c6de Loading...

	www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js	518 kB	2024-04-16	2024-04-24
Pretty URL www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 08:39:13 Last Seen2024-04-24 17:56:53 Times Seen2481 Hash 8326c23d6b3eed35bc3e62f3294587fd edda17e74e53e85073e5eac9cb6be2163dbfa23c 57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab Loading...

	unknown	90 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:33 Times Seen65 Hash a70a0472431c78cec5cd6a80c8f693fe 0d27d6956fd56ecac92119b842f83b86b98fbccb ba6df21747a8c3008f5f7fd4ceee0c90473c0a28b3bfc418e579851f943868d8 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 00:19:56 Times Seen344065 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE	1.0 kB	2024-04-23	2024-04-23
Pretty URL www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:30 Last Seen2024-04-23 18:46:34 Times Seen2 Hash 20941288dd6ffcae556ecc29fd65255a 3e5f865d876ba2db6963fd457e6a1d8a46fb6f3d 6ca825fd889bdd7a63b0530f80a617c7f0d8c76e63a58365f0a71b733c2a33ce Loading...

	unknown	14 kB	2023-10-19	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-19 21:52:53 Last Seen2024-05-01 14:48:33 Times Seen40 Hash a1c654b72520d0b82f339072fea9dd82 ca6249865c9cdc22386eae5eecff837ba8254309 a36ffc5fc2162cb908fd7f4b59d01fead0c98c4c0a7752da7d20fb0f6548dcea Loading...

	unknown	12 kB	2023-09-27	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-27 09:30:23 Last Seen2024-05-01 14:48:33 Times Seen44 Hash 3f1da102187b7c2619a0cb479ede9cbb 60ccd7f33c191bc1e6bb0b0eef8bba9f8ca27e60 c280ecf990b9aa9c748ec649f639dcf3642ffa57dea3a4ca5a400fa59184fcf3 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs	326 kB	2024-04-22	2024-05-04
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-22 22:28:58 Last Seen2024-05-04 00:06:21 Times Seen76 Hash 5e1f51f81d8ccc6a9416f2343bb51285 263266f4b4808a8cf944854afde4a8b928336ac9 d7c8cad0d955b575b2210f6acbe90b948313f78b49b1a6b3804615de4e198ac3 Loading...

	unknown	20 kB	2023-10-19	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-19 21:52:52 Last Seen2024-05-01 14:48:33 Times Seen40 Hash 2e0b3826343308b8cbea1407abc532e6 1a16c18397926a250311e37dd6bf84e692e51f28 8bb7541130bd6820fc892ee74784b9c10b6991bb361c20776190ca6f420edf31 Loading...

	content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=300883373	0 B	2023-03-07	2024-05-04
Pretty URL content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=300883373 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 00:20:03 Times Seen37319821 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js	18 kB	2024-04-23	2024-04-24
Pretty URL www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 09:19:51 Last Seen2024-04-24 08:27:33 Times Seen254 Hash 133138dc8ed76a5e7f52fd72aeb36003 10c34d56309ef22c2bf88339d926efa45f86c579 177b76acdcfb6e097a1c110e91ba676b60284b881d963cf56dc00e358957ae71 Loading...

	apis.google.com/js/googleapis.proxy.js?onload=startup	15 kB	2024-04-23	2024-05-03
Pretty URL apis.google.com/js/googleapis.proxy.js?onload=startup IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 15:57:49 Last Seen2024-05-03 20:41:46 Times Seen66 Hash eab0dc82067fb5758a121009c7040231 8d869354f7a947ecc087b23868999bc53f77bdf7 9c77d6db3131248f92ae41075f189b4ecc2e51bcfdcca143719a83145f8ac070 Loading...

	unknown	96 kB	2024-02-07	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-07 11:23:04 Last Seen2024-05-01 14:48:33 Times Seen28 Hash 9c2053de1a308657490a908c31fad999 baa7b41e0bf7920454cd8b9226ba245421727d95 8eab79412c0a96aff5f159ffcab433156644c57a8a4e64aeafd10979beb0e467 Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	270 B	2023-03-08	2024-05-01
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:33 Times Seen63 Hash 5c5a1ab6680059637f13683b2b752b57 ee03408926662a40f7b9d3aa1c8202fb4230d854 4922d57a5dc4d8a5ff272b13e2a4da98f69db5f2324cbeab35cf702279e7cf2c Loading...

	www.googletagmanager.com/gtag/js?id=G-S4FJY0X3VX	276 kB	2024-04-23	2024-04-23
Pretty URL www.googletagmanager.com/gtag/js?id=G-S4FJY0X3VX IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:30 Last Seen2024-04-23 18:46:33 Times Seen2 Hash 1c9ef8dd8b295ca459df483f68ebad45 d500c442eee85e2a0b90c2418d971df624d981b7 171ba797e52289465d50208aaada6fa6bcb8fb80aa59e6469b640ba90608d9f6 Loading...

	unknown	7.4 kB	2023-05-21	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 08:57:30 Last Seen2024-05-01 14:48:34 Times Seen48 Hash 95dd35f04a883aafa3a81e54f8a343b1 f22a197f4f42f87303db4567f857d1bdd33f06d5 5f8c491507ed33fd654110bd0293910c8c00a7fde9940850ed754aeac720cd5d Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8&v=3&callback=loadMapsApiCallback&language=no&region=US&libraries=visualization	196 kB	2024-04-23	2024-04-23
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8&v=3&callback=loadMapsApiCallback&language=no&region=US&libraries=visualization IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:31 Last Seen2024-04-23 18:46:34 Times Seen2 Hash 581bc1b24a2b965425f0d4330f7a735b abb3d33679a28ef6fa76db82cb74fb744a41eca2 ed4506bd8309fb6b25c4ee33556268338aadcd0fa75fea33f1679285d226fe84 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no	69 B	2023-03-07	2024-05-04
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-04 00:19:56 Times Seen100651 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	unknown	23 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:10 Last Seen2024-05-01 14:48:34 Times Seen66 Hash 5c8aeffc1d18c20099ec9f983c9ca255 2808005c4e4c3213a31d41e23e32d5e759ca0c93 d3ab87a9000cacd4583e0858b306a8b184955893eec1c79424c9c905b34692af Loading...

	unknown	1.3 MB	2024-02-07	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-07 11:23:04 Last Seen2024-05-01 14:48:33 Times Seen28 Hash a19443ba7876516658f4666ece9aea7f c079391e38bdf9ac03d2bf25a670c9a828feca09 ed1ad610f36b175e7df6a9f0091004a83d8a8310a631516b29b60755cdfc6220 Loading...

	unknown	308 kB	2024-02-07	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-07 11:23:02 Last Seen2024-05-01 14:48:33 Times Seen28 Hash 46387ccc60f69e0165eb35668fb4e69d 9792dface00d2f730709838bda7955ba07c7b13b 7376fab682d6ca362e9c80f9fa5a0590f23efd8d76399a15b02c571e4914182d Loading...

	apis.google.com/js/client.js	15 kB	2024-04-23	2024-05-01
Pretty URL apis.google.com/js/client.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:31 Last Seen2024-05-01 14:48:35 Times Seen24 Hash d727cd28761ce9124c869f5453ff81de 930c45f2f085dabd7f562a35879e219ffb0e7a15 c60fe7c117ce40f5d355adfc6deb367a44166d57a3c19bc6d6c896ac5b38aedc Loading...

	unknown	210 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:33 Times Seen65 Hash 85c313d9decd063190d5d5a6abb80e84 c7ddc083629c5318823ffd417fa4289b1ce1374a 88a66f0cb7f903a602152b6bfad04511c3a87dba6e4815d9c1549bb5f573bf53 Loading...

	www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=syd,syc,sy8,syp,syn,sy12,syb,sye,sy1g,sy6,sy9,sym,syo,sy4,sy16,sy19,syw,sy1a,sy7,sy15,sya,sy1b,sy1c,sy1d,sy2,syi,sy10,sy1z,sy1x,syl,syv,sy17,sy18,syz,sy1h,sy1i,sy1j,sy1f,syf,syh,sys,sy1,sy1l,sy1q,syj,syy,sy1p,sy1o,sy1e,sy13,sy1y,sy1w,sy22,sy3,sy5,syg,syq,syr,syt,syu,syx,sy11,sy1k,sy1m,sy14,sy1r,sy1s,sy25,sy28,sy21,sy1u,sy29,sy0,sy26,sy2j,sy2k,sy2h,sy20,sy23,sy24,sy2l,sy1t,sy2e,sy2f,sy2c,sy2r,sy2a,sy2s,syk,sy1n,sy1v,sy2b,sy2p,sy2u,sy32,sy37,sy38,sy39,sy3a,sy3b,sy3c,pm_ng2report	8.4 MB	2024-04-23	2024-04-23
Pretty URL www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=syd,syc,sy8,syp,syn,sy12,syb,sye,sy1g,sy6,sy9,sym,syo,sy4,sy16,sy19,syw,sy1a,sy7,sy15,sya,sy1b,sy1c,sy1d,sy2,syi,sy10,sy1z,sy1x,syl,syv,sy17,sy18,syz,sy1h,sy1i,sy1j,sy1f,syf,syh,sys,sy1,sy1l,sy1q,syj,syy,sy1p,sy1o,sy1e,sy13,sy1y,sy1w,sy22,sy3,sy5,syg,syq,syr,syt,syu,syx,sy11,sy1k,sy1m,sy14,sy1r,sy1s,sy25,sy28,sy21,sy1u,sy29,sy0,sy26,sy2j,sy2k,sy2h,sy20,sy23,sy24,sy2l,sy1t,sy2e,sy2f,sy2c,sy2r,sy2a,sy2s,syk,sy1n,sy1v,sy2b,sy2p,sy2u,sy32,sy37,sy38,sy39,sy3a,sy3b,sy3c,pm_ng2report IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:31 Last Seen2024-04-23 18:46:34 Times Seen2 Hash 345484209e32f6799198901991583baf 5d77cb28bbd44738fe6b87c535bd9f5c830645aa bcb3a011fde504c29713ebe009beb44a2b749993802fd0d442c22a805c637aed Loading...

	unknown	340 kB	2023-11-01	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 18:31:57 Last Seen2024-05-01 14:48:33 Times Seen36 Hash beb90df7fbd144019340e6dc2215bb64 b1efa6a15bbc7362fe05ed01a380b4485e531d14 eeaea08a7a8e40f609acf70d2e35b14984991189164479ded3cc505efa07babb Loading...

	maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/common.js	261 kB	2024-02-26	2024-05-01
Pretty URL maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/common.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-26 18:17:48 Last Seen2024-05-01 14:48:36 Times Seen41 Hash 60377760f49766c92e46b56261777f7b f2c6fc94ad861c5b32731b2a821686480971d3b8 d5d19897e1b3ca67890ab40eb6481660bb5cf96f6511eb271f853564caf24c7c Loading...

	unknown	1.9 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:10 Last Seen2024-05-01 14:48:34 Times Seen66 Hash 72e653e8bf76beb0321f5fade2c87385 cb0e24f56284b0fb1805663ddcf0132c450651f2 2341756124f732e46039953a30ad3c91f2e3b1201e5e427dcae980fbf94f6f8d Loading...

	www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_firebase	506 kB	2024-04-23	2024-04-23
Pretty URL www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_firebase IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:32 Last Seen2024-04-23 18:46:34 Times Seen2 Hash 4b97bd46c612845316f3227c85f7a31a ba26d14775ae42f16168dd70e7a6c4e1ae565295 3b402320bc3e4d2cba1595c4b19572fde891266794640f5a09773fac75cf96d1 Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	63 kB	2024-04-23	2024-04-23
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-23 18:46:32 Last Seen2024-04-23 18:46:32 Times Seen1 Hash 7edb935b44c620a9c647d0afc89e002a 1951a9a5e376a446e994d888c0bdadc0fd81b4ef b4dd616f239e585c759f2dedc7f4401ebddd6f7e66d6655b2f9a5d95b4b9f615 Loading...

	lookerstudio.google.com/reporting/sandbox%20eval%20code	147 B	2023-04-11	2024-05-04
Pretty URL lookerstudio.google.com/reporting/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-04 00:19:56 Times Seen344570 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	37 B	2023-03-07	2024-05-03
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:10:08 Last Seen2024-05-03 20:12:08 Times Seen1377 Hash 278a1fde660b456524bac51f78574a09 9299ca406f8c85dcf8127283ad24b7c971eac8f8 537028ea4a4d59d93a18a6f92e8cc51ad5d8928f7406f69353b809ac4efba0fb Loading...

	unknown	114 kB	2023-05-21	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 08:57:30 Last Seen2024-05-01 14:48:33 Times Seen48 Hash 4656ece03fb2f841f81b5e5b58b9a9f0 54cb9001ce8cb386ceaf1396324c8063e4720273 c19ac12ee68a63cf90aebd7af1f2773ad0a57953ac3ecbb7d425e594e767bbc5 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs	80 kB	2024-04-23	2024-05-01
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:32 Last Seen2024-05-01 14:48:36 Times Seen34 Hash 7d8cbf3c10edeb25732380ab3a9485c6 dc6332379fa46051ae4884abaa785d2b71fb9daf 1b163608a38440e0853a40a67c2645f310d490a4be2dd556a258c642df2e57d7 Loading...

	unknown	29 kB	2023-11-01	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-01 18:31:56 Last Seen2024-05-01 14:48:33 Times Seen36 Hash dcab984f68b974f834ab4ed429e04575 381c05655a22fcf1c8b8abbe342f6c464d85fad3 14de67fafeede04fb5d9079b3cb7a6c530f0d36ec054dc9b0011e046457b6208 Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	159 B	2023-03-08	2024-05-01
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:34 Times Seen65 Hash 17f28afc6ad5f9105694297a3b67b45b bce7d60eee3f9e4b2afa086218079242d22266e0 5b062e5cfb33361c349212f30ff44a63bcd7b0c277a05379231dfec302064fa8 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no	36 kB	2024-04-23	2024-04-23
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-23 18:46:32 Last Seen2024-04-23 18:46:32 Times Seen1 Hash 4ebe4027126b18df408a266ac4ec3fba cf72b0865d6ea445af5b0125adfbf587547d2746 8abf2581d38680fe0c61d1d78bca0c50d460fd3c75d0a750aafe9ff730d85eff Loading...

	lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc	506 B	2023-03-08	2024-05-01
Pretty URL lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:34 Times Seen62 Hash 27f0d5eaa482e448ac7431613d7248d7 f7ad4c58517150c05df91bda4f24134170b63d5a f3f2ed60b986815113ea6623661bf287ba33136cca6c5cdf5047a5461de83c58 Loading...

	www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=1/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_base	5.7 MB	2024-04-23	2024-04-23
Pretty URL www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=1/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_base IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 18:46:33 Last Seen2024-04-23 18:46:33 Times Seen1 Hash fe0b97ac519712549d1f629698877da3 b2568e1e447d01223177975aa1a51518ce4c6b7c c768e085e93a0e6dc5f87d848345b735d5e8957affc5fb23478327ec3b397234 Loading...

	unknown	5.7 kB	2023-11-03	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 14:44:11 Last Seen2024-05-01 14:48:33 Times Seen35 Hash 3a47a09b49460e5a5d97a26de155b099 f8de1b77d1447ad04292ee5986a4f7dbfe3473fd 8c9cf588d5ff8930cf2258c9d6b3be3b05aef00d2e39f4a4db03e3e6472296ac Loading...

	unknown	39 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:09 Last Seen2024-05-01 14:48:33 Times Seen65 Hash 71c75b80bc724e2ed091fa98f818cfd4 b77bfa53c40df82ca1c6067a3573ac7425cf1abe 9617dfc35db99b807fa2b9e08fb32fe14fa156217bff41b4ac75079c5d060e05 Loading...

	unknown	16 kB	2023-03-08	2024-05-01
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:39:10 Last Seen2024-05-01 14:48:33 Times Seen65 Hash 051ea757633bd070261a52754b0a4a34 074f069448fd50be991e041f06f84c43e317fb47 4ed499c017247c17a81af2745fcc1e59c78eb568b6dc0e0cd7588f4905393b60 Loading...

	www.gstatic.com/feedback/js/help/prod/service/lazy.min.js	109 kB	2024-04-19	2024-04-25
Pretty URL www.gstatic.com/feedback/js/help/prod/service/lazy.min.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 09:47:03 Last Seen2024-04-25 18:36:50 Times Seen130 Hash de2f04957196ac8c3c7678ad4c33a46a 4788d5b2576e992626df52268f212a5a2d141d02 e4073a5d69e86546e65b01c6f50f43b91691ceee2a9eedfe2ddfcbb90a8d695b Loading...

		Size	First Seen	Last Seen
	#1 Eval - b51056fcbc86b94043279d1e720eed9e	22 B	2024-04-23	2024-04-24
Pretty Observations First Seen2024-04-23 09:19:53 Last Seen2024-04-24 08:27:33 Times Seen120 Hash b51056fcbc86b94043279d1e720eed9e c76e6dad1497c970f526950eb5587e38092aed31 fa4ddf217f50556a6fcf845f58a5e5d3a36735edf8283a6bf3515b20a9c9bffa Loading...

	#2 Eval - 435b10e741fd8cdcb32d619cab45b675	62 B	2024-04-23	2024-04-24
Pretty Observations First Seen2024-04-23 09:19:53 Last Seen2024-04-24 08:24:36 Times Seen118 Hash 435b10e741fd8cdcb32d619cab45b675 6ea41a31125c5b4fdc8b4e5b79652209ac9616e8 5934bdad35cc01bd508ae03ebfbb6835924d1efbc82d98c8bf9cffb366344383 Loading...

	#3 Eval - dffa635453097aceb2f1fa44698d1d65	22 B	2024-04-23	2024-04-24
Pretty Observations First Seen2024-04-23 09:19:53 Last Seen2024-04-24 08:27:33 Times Seen122 Hash dffa635453097aceb2f1fa44698d1d65 550013a8db7a5763f57e1b8a25703fad151a069e 30424bffbe63bebb03915599d12d82ce7addf6f5b2e47c80421642726b7235cb Loading...

	#4 Eval - 8df28c58af75d8bcd4aad0916243f5de	19 kB	2024-04-23	2024-04-23
Pretty Observations First Seen2024-04-23 18:46:33 Last Seen2024-04-23 18:46:33 Times Seen1 Hash 8df28c58af75d8bcd4aad0916243f5de 1f28b7e9bc522aa8140d1cbdcdaa6d89569829aa 06c69490d61f95edbced0e5186b93dcd807445c915c36309d0dbf634fcd93c24 Loading...

HTTP Transactions (75)

URL IP Response Size

u43997916.ct.sendgrid.net/ls/click?upn=u001.8-2Bu6iTAOb-2FcpkRnZlUIEsFX12VujJLkoH2yCHZQsWjuPSSFUiMg-2BQ9nkVSK1fcfjTvO6utgbHLV41nhKL22d6g-3D-3D7a1F_s4s3CAiQifknn9tUfiEZ-2FfAmMlp3-2BvQsKWm-2FznoaqCm3AT46Ark2Rk2byMstc5CsJveScp-2FFoO67NcBMKOlWq5ltWrFanYdr61w-2BIiUteGEYaH-2BreV-2FqPQ-2Fp68nrESqE87R-2FvyevIfLUqMBuGl-2FRnQ2vBcNSXfC6xg2dhS3B-2FpGNRaAFnr8fPK6oBli9GRH3axWx8YggPs1fV0Ksjt8CuxkffnLEzZHFhofsd7ENb7I-3D

167.89.123.16

302 Found

68 B

URL User Request GET HTTP/1.1
u43997916.ct.sendgrid.net/ls/click?upn=u001.8-2Bu6iTAOb-2FcpkRnZlUIEsFX12VujJLkoH2yCHZQsWjuPSSFUiMg-2BQ9nkVSK1fcfjTvO6utgbHLV41nhKL22d6g-3D-3D7a1F_s4s3CAiQifknn9tUfiEZ-2FfAmMlp3-2BvQsKWm-2FznoaqCm3AT46Ark2Rk2byMstc5CsJveScp-2FFoO67NcBMKOlWq5ltWrFanYdr61w-2BIiUteGEYaH-2BreV-2FqPQ-2Fp68nrESqE87R-2FvyevIfLUqMBuGl-2FRnQ2vBcNSXfC6xg2dhS3B-2FpGNRaAFnr8fPK6oBli9GRH3axWx8YggPs1fV0Ksjt8CuxkffnLEzZHFhofsd7ENb7I-3D
IP
167.89.123.16:443
ASN
#11377 SENDGRID

Certificate
IssuerGoDaddy.com, Inc.
Subject*.ct.sendgrid.net
FingerprintC4:63:80:FB:99:8B:B5:4D:2C:7D:7F:D7:88:03:EE:F1:EA:8C:CE:55
ValidityMon, 15 Apr 2024 08:08:37 GMT - Wed, 14 May 2025 18:07:20 GMT

File type
HTML document, ASCII text
Size
68 B (68 bytes)
Hash
8115cc2ca7c009c75bcd1dea38d86788
ea9f56d81950893cbfe4e5fe2c4f6b6319cec533
90ae87a20b532a16fd5349a0b03530c021437c10697b5d6ab749139e7f4605c1

HTTP Headers

GET /ls/click?upn=u001.8-2Bu6iTAOb-2FcpkRnZlUIEsFX12VujJLkoH2yCHZQsWjuPSSFUiMg-2BQ9nkVSK1fcfjTvO6utgbHLV41nhKL22d6g-3D-3D7a1F_s4s3CAiQifknn9tUfiEZ-2FfAmMlp3-2BvQsKWm-2FznoaqCm3AT46Ark2Rk2byMstc5CsJveScp-2FFoO67NcBMKOlWq5ltWrFanYdr61w-2BIiUteGEYaH-2BreV-2FqPQ-2Fp68nrESqE87R-2FvyevIfLUqMBuGl-2FRnQ2vBcNSXfC6xg2dhS3B-2FpGNRaAFnr8fPK6oBli9GRH3axWx8YggPs1fV0Ksjt8CuxkffnLEzZHFhofsd7ENb7I-3D HTTP/1.1
Host: u43997916.ct.sendgrid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 23 Apr 2024 16:45:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 68
Connection: keep-alive
Location: https://lookerstudio.google.com/s/nulVspA_Ayc
X-Robots-Tag: noindex, nofollow

lookerstudio.google.com/s/nulVspA_Ayc

142.250.74.110

302 Found

0 B

URL User Request GET HTTP/2
lookerstudio.google.com/s/nulVspA_Ayc
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

GET /s/nulVspA_Ayc HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-bRchwDlNIdTMw2IT9k4Lmw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:42 GMT
location: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; expires=Wed, 23-Oct-2024 16:45:42 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/js/client.js

142.250.74.110

200 OK

5.9 kB

URL GET HTTP/3
apis.google.com/js/client.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2054)
Size
5.9 kB (5903 bytes)
Hash
d727cd28761ce9124c869f5453ff81de
930c45f2f085dabd7f562a35879e219ffb0e7a15
c60fe7c117ce40f5d355adfc6deb367a44166d57a3c19bc6d6c896ac5b38aedc

HTTP Headers

GET /js/client.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5903
date: Tue, 23 Apr 2024 16:45:43 GMT
expires: Tue, 23 Apr 2024 16:45:43 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7c8d949c56f70886"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-S4FJY0X3VX

142.250.74.136

200 OK

95 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-S4FJY0X3VX
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
95 kB (95418 bytes)
Hash
1c9ef8dd8b295ca459df483f68ebad45
d500c442eee85e2a0b90c2418d971df624d981b7
171ba797e52289465d50208aaada6fa6bcb8fb80aa59e6469b640ba90608d9f6

HTTP Headers

GET /gtag/js?id=G-S4FJY0X3VX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 23 Apr 2024 16:45:43 GMT
expires: Tue, 23 Apr 2024 16:45:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95418
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssl.gstatic.com/datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/css.css?cb=625830314

142.250.74.163

200 OK

131 kB

URL GET HTTP/2
ssl.gstatic.com/datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/css.css?cb=625830314
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (65437)
Size
131 kB (130681 bytes)
Hash
264f34bd510df56cf79d7d71e1d917a7
75a99f30319a840a71ff4e79091fc4d272bb535c
91cbea8021a04ee2e58d140607cad1aa8017ab13daca580a6016f4a1ddd1c749

HTTP Headers

GET /datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/css.css?cb=625830314 HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
content-length: 130681
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:31 GMT
expires: Fri, 18 Apr 2025 02:34:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 23:48:08 GMT
content-type: text/css
vary: Accept-Encoding
age: 483072
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssl.gstatic.com/datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/material_theme.css?cb=625830314

142.250.74.163

200 OK

34 kB

URL GET HTTP/2
ssl.gstatic.com/datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/material_theme.css?cb=625830314
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34277 bytes)
Hash
6dadb096729872a52e0a5d6c945657b3
6e1ad6d3c0edd16fa689eb447a4fe2416ff97b29
b90b51ec0d94f8d97db8b2fc0bd922708ab5f3ec0939914f5ca383ef7d26f6be

HTTP Headers

GET /datastudio/cloud-lego-fe.fe-server_20240417.03_p1/css/material_theme.css?cb=625830314 HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
content-length: 34277
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:31 GMT
expires: Fri, 18 Apr 2025 02:34:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 23:48:08 GMT
content-type: text/css
vary: Accept-Encoding
age: 483072
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.163

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:34:04 GMT
expires: Tue, 22 Apr 2025 13:34:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

111 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
111 kB (111042 bytes)
Hash
5e1f51f81d8ccc6a9416f2343bb51285
263266f4b4808a8cf944854afde4a8b928336ac9
d7c8cad0d955b575b2210f6acbe90b948313f78b49b1a6b3804615de4e198ac3

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 111042
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:18:12 GMT
expires: Tue, 22 Apr 2025 16:18:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 88051
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 1085
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no

142.250.74.164

200 OK

52 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
HTML document, ASCII text, with very long lines (35863)
Size
52 kB (52233 bytes)
Hash
71397ab882be5e820f901c9cf4c17e41
d4c16a613f63c708ce89a470744b6b33fdcbe536
253540780b9fe6702dc9e8a21d03422660a55300bfafab63ad3cc940824e1b72

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:43 GMT
content-security-policy: script-src 'nonce-avK45m998M6J2PFAqeB8LA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lookerstudio.google.com/favicon.ico

142.250.74.110

301 Moved Permanently

0 B

URL GET HTTP/3
lookerstudio.google.com/favicon.ico
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; _ga_S4FJY0X3VX=GS1.1.1713890743.1.0.1713890743.0.0.0; _ga=GA1.1.1804514175.1713890743
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
content-type: application/binary
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-n__b5Sf3E44KvZO1c0C4sA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:43 GMT
location: https://ssl.gstatic.com/datastudio/latest/static_images/pngs/favicon_looker_studio.png
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/datastudio/latest/static_images/pngs/favicon_looker_studio.png

142.250.74.163

200 OK

4.8 kB

URL GET HTTP/3
ssl.gstatic.com/datastudio/latest/static_images/pngs/favicon_looker_studio.png
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 160 x 160, 8-bit/color RGBA, non-interlaced
Size
4.8 kB (4811 bytes)
Hash
cb13b37d9ceb24a98dda6afd6eda0c39
a42e3afb3223a2892fa9483b2f4ccd3596ef6eb0
a3941e483ef88cf0299266cdb18200770144a15c836c9b40e7052ae0f2e0dc44

HTTP Headers

GET /datastudio/latest/static_images/pngs/favicon_looker_studio.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
content-length: 4811
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:59:30 GMT
expires: Fri, 18 Apr 2025 02:59:30 GMT
cache-control: public, max-age=31536000
age: 481574
last-modified: Mon, 10 Oct 2022 09:21:33 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.163

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:34:04 GMT
expires: Tue, 22 Apr 2025 13:34:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js

142.250.74.164

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (17687)
Size
7.4 kB (7443 bytes)
Hash
133138dc8ed76a5e7f52fd72aeb36003
10c34d56309ef22c2bf88339d926efa45f86c579
177b76acdcfb6e097a1c110e91ba676b60284b881d963cf56dc00e358957ae71

HTTP Headers

GET /js/bg/F3t2rNz7bgl6HBEOkbpna2AoS4gdljz1bcAONYlXrnE.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7443
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:06:06 GMT
expires: Thu, 17 Apr 2025 05:06:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 560378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 482561
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.163

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:35:26 GMT
expires: Thu, 25 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 429018
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 429637
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/feedback/js/help/prod/service/lazy.min.js

142.250.74.163

200 OK

37 kB

URL GET HTTP/3
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (3383)
Size
37 kB (36994 bytes)
Hash
de2f04957196ac8c3c7678ad4c33a46a
4788d5b2576e992626df52268f212a5a2d141d02
e4073a5d69e86546e65b01c6f50f43b91691ceee2a9eedfe2ddfcbb90a8d695b

HTTP Headers

GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 36994
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:38:04 GMT
expires: Tue, 23 Apr 2024 17:28:04 GMT
cache-control: public, max-age=3000
last-modified: Tue, 23 Apr 2024 16:28:31 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 460
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js

142.250.74.163

200 OK

206 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (597)
Size
206 kB (206057 bytes)
Hash
8326c23d6b3eed35bc3e62f3294587fd
edda17e74e53e85073e5eac9cb6be2163dbfa23c
57f03d3ba66117edc152646341120dd3a1d7d71b9a98a3723af5a8ae61bcb3ab

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 206057
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:34:04 GMT
expires: Tue, 22 Apr 2025 13:34:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97900
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

142.250.74.106

290 B

URL
content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text
Size
290 B (290 bytes)
Hash
5ef60f9ea13c467e8b4373b5e921b6ed
84a660179a39273d93cf0541c167735c8d71f9fb
9b460cc629458b1a2b4bd3f3515600f94d007e5abb3d74080d0f6bb1e8dd9c3e

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: content-people-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-iZbABmLSMPqJB-C6tvU2hQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/xd3cpp/2, require-trusted-types-for 'script'
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp; report-to="gapi"
report-to: {"group":"gapi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi"}]}
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:44 GMT
server: ESF
cache-control: private
content-length: 290
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=syd,syc,sy8,syp,syn,sy12,syb,sye,sy1g,sy6,sy9,sym,syo,sy4,sy16,sy19,syw,sy1a,sy7,sy15,sya,sy1b,sy1c,sy1d,sy2,syi,sy10,sy1z,sy1x,syl,syv,sy17,sy18,syz,sy1h,sy1i,sy1j,sy1f,syf,syh,sys,sy1,sy1l,sy1q,syj,syy,sy1p,sy1o,sy1e,sy13,sy1y,sy1w,sy22,sy3,sy5,syg,syq,syr,syt,syu,syx,sy11,sy1k,sy1m,sy14,sy1r,sy1s,sy25,sy28,sy21,sy1u,sy29,sy0,sy26,sy2j,sy2k,sy2h,sy20,sy23,sy24,sy2l,sy1t,sy2e,sy2f,sy2c,sy2r,sy2a,sy2s,syk,sy1n,sy1v,sy2b,sy2p,sy2u,sy32,sy37,sy38,sy39,sy3a,sy3b,sy3c,pm_ng2report

142.250.74.163

200 OK

2.1 MB

URL GET HTTP/3
www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=syd,syc,sy8,syp,syn,sy12,syb,sye,sy1g,sy6,sy9,sym,syo,sy4,sy16,sy19,syw,sy1a,sy7,sy15,sya,sy1b,sy1c,sy1d,sy2,syi,sy10,sy1z,sy1x,syl,syv,sy17,sy18,syz,sy1h,sy1i,sy1j,sy1f,syf,syh,sys,sy1,sy1l,sy1q,syj,syy,sy1p,sy1o,sy1e,sy13,sy1y,sy1w,sy22,sy3,sy5,syg,syq,syr,syt,syu,syx,sy11,sy1k,sy1m,sy14,sy1r,sy1s,sy25,sy28,sy21,sy1u,sy29,sy0,sy26,sy2j,sy2k,sy2h,sy20,sy23,sy24,sy2l,sy1t,sy2e,sy2f,sy2c,sy2r,sy2a,sy2s,syk,sy1n,sy1v,sy2b,sy2p,sy2u,sy32,sy37,sy38,sy39,sy3a,sy3b,sy3c,pm_ng2report
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (1279)
Size
2.1 MB (2116266 bytes)
Hash
345484209e32f6799198901991583baf
5d77cb28bbd44738fe6b87c535bd9f5c830645aa
bcb3a011fde504c29713ebe009beb44a2b749993802fd0d442c22a805c637aed

HTTP Headers

GET /_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=syd,syc,sy8,syp,syn,sy12,syb,sye,sy1g,sy6,sy9,sym,syo,sy4,sy16,sy19,syw,sy1a,sy7,sy15,sya,sy1b,sy1c,sy1d,sy2,syi,sy10,sy1z,sy1x,syl,syv,sy17,sy18,syz,sy1h,sy1i,sy1j,sy1f,syf,syh,sys,sy1,sy1l,sy1q,syj,syy,sy1p,sy1o,sy1e,sy13,sy1y,sy1w,sy22,sy3,sy5,syg,syq,syr,syt,syu,syx,sy11,sy1k,sy1m,sy14,sy1r,sy1s,sy25,sy28,sy21,sy1u,sy29,sy0,sy26,sy2j,sy2k,sy2h,sy20,sy23,sy24,sy2l,sy1t,sy2e,sy2f,sy2c,sy2r,sy2a,sy2s,syk,sy1n,sy1v,sy2b,sy2p,sy2u,sy32,sy37,sy38,sy39,sy3a,sy3b,sy3c,pm_ng2report HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
timing-allow-origin: https://datastudio.google.com
content-length: 2116266
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:37 GMT
expires: Fri, 18 Apr 2025 02:34:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 13:35:49 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 483067
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/js/googleapis.proxy.js?onload=startup

142.250.74.110

200 OK

5.9 kB

URL GET HTTP/3
apis.google.com/js/googleapis.proxy.js?onload=startup
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=822686373
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2054)
Size
5.9 kB (5903 bytes)
Hash
eab0dc82067fb5758a121009c7040231
8d869354f7a947ecc087b23868999bc53f77bdf7
9c77d6db3131248f92ae41075f189b4ecc2e51bcfdcca143719a83145f8ac070

HTTP Headers

GET /js/googleapis.proxy.js?onload=startup HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content-people-pa.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5903
date: Tue, 23 Apr 2024 16:45:45 GMT
expires: Tue, 23 Apr 2024 16:45:45 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9bc2326c55ad9a5d"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

28 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=822686373
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
28 kB (28128 bytes)
Hash
7d8cbf3c10edeb25732380ab3a9485c6
dc6332379fa46051ae4884abaa785d2b71fb9daf
1b163608a38440e0853a40a67c2645f310d490a4be2dd556a258c642df2e57d7

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content-people-pa.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 28128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:18:30 GMT
expires: Tue, 22 Apr 2025 16:18:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 88035
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/icon?family=Material+Icons|Material+Icons+Extended

142.250.74.106

200 OK

771 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons|Material+Icons+Extended
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
771 B (771 bytes)
Hash
c9e4f87997a58a37b342cf52df37f4b6
2481c6cdf4321bb5a0b61b998054ccbf651b100b
9edf5e4c18fcdc92cf7b2c1d4a782aac9ba5a339f44a3a9895855beb69e5c4c8

HTTP Headers

GET /icon?family=Material+Icons|Material+Icons+Extended HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 16:45:43 GMT
date: Tue, 23 Apr 2024 16:45:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 13:20:56 GMT
expires: Fri, 18 Apr 2025 13:20:56 GMT
cache-control: public, max-age=31536000
age: 444290
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/analytics-lego/svg/ic_looker_studio.svg

142.250.74.163

200 OK

784 B

URL GET HTTP/3
www.gstatic.com/analytics-lego/svg/ic_looker_studio.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
784 B (784 bytes)
Hash
8030c81bbb9b80e55e54b1fc4ce1eba8
bad358c2a4734db79a99a5c7f9665f2276366d4a
355995015d94f26eff134f7c53a942f1b6d2837a805bea8b8691f3b6620b6ecf

HTTP Headers

GET /analytics-lego/svg/ic_looker_studio.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: image/svg+xml
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
content-length: 784
date: Tue, 23 Apr 2024 16:45:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:58:19 GMT
expires: Wed, 23 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 53247
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content-people-pa.googleapis.com/$discovery/rest?pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8

142.250.74.106

200 OK

37 kB

URL GET HTTP/3
content-people-pa.googleapis.com/$discovery/rest?pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=300883373
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
37 kB (36971 bytes)
Hash
6f81d5f33433fd3468698ae6b8dde4d8
86d3ba23c5ef58e6eec1dab087a993c219bcc4a0
efc9a4bf5bdc027b6b92cd570419b1495762e93e87ffccdada0c06c789135ef9

HTTP Headers

GET /$discovery/rest?pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8 HTTP/1.1
Host: content-people-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Origin: https://lookerstudio.google.com
X-Referer: https://lookerstudio.google.com
X-Goog-Encode-Response-If-Executable: base64
DNT: 1
Connection: keep-alive
Referer: https://content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:46 GMT
server: ESF
cache-control: private
content-length: 36971
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_firebase

142.250.74.163

200 OK

147 kB

URL GET HTTP/3
www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_firebase
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JavaScript source, ASCII text, with very long lines (36329)
Size
147 kB (146655 bytes)
Hash
4b97bd46c612845316f3227c85f7a31a
ba26d14775ae42f16168dd70e7a6c4e1ae565295
3b402320bc3e4d2cba1595c4b19572fde891266794640f5a09773fac75cf96d1

HTTP Headers

GET /_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=0/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_firebase HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
timing-allow-origin: https://datastudio.google.com
content-length: 146655
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:36:29 GMT
expires: Fri, 18 Apr 2025 02:36:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 13:35:49 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 482957
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps/api/js?key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8&v=3&callback=loadMapsApiCallback&language=no&region=US&libraries=visualization

142.250.74.106

200 OK

66 kB

URL GET HTTP/3
maps.googleapis.com/maps/api/js?key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8&v=3&callback=loadMapsApiCallback&language=no&region=US&libraries=visualization
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (10169)
Size
66 kB (66160 bytes)
Hash
581bc1b24a2b965425f0d4330f7a735b
abb3d33679a28ef6fa76db82cb74fb744a41eca2
ed4506bd8309fb6b25c4ee33556268338aadcd0fa75fea33f1679285d226fe84

HTTP Headers

GET /maps/api/js?key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8&v=3&callback=loadMapsApiCallback&language=no&region=US&libraries=visualization HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-type: text/javascript; charset=UTF-8
cache-control: public, max-age=1800
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:46 GMT
server: scaffolding on HTTPServer2
content-length: 66160
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ssl.gstatic.com/datastudio%2Fcloud-lego-fe.fe-server_20240417.03_p1%2Fstatic/icon/reset.svg

142.250.74.163

200 OK

243 B

URL GET HTTP/3
ssl.gstatic.com/datastudio%2Fcloud-lego-fe.fe-server_20240417.03_p1%2Fstatic/icon/reset.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
243 B (243 bytes)
Hash
579e5ae9e692ac8183a2b8315a6c0507
4f109b651d50246a23c3df2e91d6b5aa2fdce9ea
297c8cee8619573fb8711ca1d6e064c70d8ffe8ce641f71a60d0315a4539391b

HTTP Headers

GET /datastudio%2Fcloud-lego-fe.fe-server_20240417.03_p1%2Fstatic/icon/reset.svg HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
content-length: 243
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:43 GMT
expires: Fri, 18 Apr 2025 02:34:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 23:48:08 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 483064
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/more_vert_24px.svg

142.250.74.163

200 OK

159 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/more_vert_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
159 B (159 bytes)
Hash
8b6c7812ba9efab131f916bdf12566f6
d355101604837d05d76d41cbe225e785728e190a
6c7113da4bf372feb6c320a461f0c510fa8b92626a52b08cdeda3063070b3570

HTTP Headers

GET /images/icons/material/system_gm/svg/more_vert_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 159
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:55:28 GMT
expires: Wed, 23 Apr 2025 05:55:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 39019
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/content_copy_24px.svg

142.250.74.163

200 OK

240 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/content_copy_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
240 B (240 bytes)
Hash
41fb3f6666db2c18de8b5ded8796195c
adfeadac45e9bc6b5c112eb6d51aae9c2020bd46
bbb5ed0d166d1ef2dbf5f980bd320fee22ae9b18fc4866e2425a50699246b5d7

HTTP Headers

GET /images/icons/material/system_gm/svg/content_copy_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 240
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 04:10:25 GMT
expires: Thu, 17 Apr 2025 04:10:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Nov 2020 02:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 563722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/slideshow_24px.svg

142.250.74.163

200 OK

178 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/slideshow_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
178 B (178 bytes)
Hash
24f52e64bd023c875da4494489744f94
30a099cf87fe18074b557208be35d7448614a004
a910a1f071e7d288803f9516fd5a312eb9fe1037bc9c4a8575ceda66f26e5136

HTTP Headers

GET /images/icons/material/system_gm/svg/slideshow_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 178
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 23:59:08 GMT
expires: Tue, 22 Apr 2025 23:59:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 60399
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/person_add_24px.svg

142.250.74.163

200 OK

246 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/person_add_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
246 B (246 bytes)
Hash
4de8c3652f285aa52639648c01e57be7
449c913aa5290201b20a97695a74b8dbeba149eb
92121d0499048670a707ddd136c4340964b1050a346faf113905e0ee84fb222d

HTTP Headers

GET /images/icons/material/system_gm/svg/person_add_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 246
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:32:13 GMT
expires: Wed, 23 Apr 2025 04:32:13 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 44014
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/link_24px.svg

142.250.74.163

200 OK

202 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/link_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
202 B (202 bytes)
Hash
f6e063941521cd8808a2f8aa5b6ceba7
3df1b9a549c6f90adf0217465436cda8b8b175c9
00f190c275beafbabb14d0adc6127dbb136b8a050517210f865cc1d4d3d95e35

HTTP Headers

GET /images/icons/material/system_gm/svg/link_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 202
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 04:10:25 GMT
expires: Thu, 17 Apr 2025 04:10:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 563722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/icons/material/system_gm/svg/file_download_24px.svg

142.250.74.163

200 OK

170 B

URL GET HTTP/3
www.gstatic.com/images/icons/material/system_gm/svg/file_download_24px.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
170 B (170 bytes)
Hash
5687c66c1b440611982a7836a6cb7b3a
aa2ae264f9502d713202fb81a2a12097dafbf9c6
a8dfd68c9bc8e1cea1b1c1c13f18ae82229a1845471eacb05c1e3a25f7d8d83d

HTTP Headers

GET /images/icons/material/system_gm/svg/file_download_24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: https://lookerstudio.google.com
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 170
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:57:57 GMT
expires: Wed, 23 Apr 2025 05:57:57 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 38870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/3
fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34108, version 1.0
Size
34 kB (34108 bytes)
Hash
c15d33a9508923be839d315a999ab9c7
d17f6e786a1464e13d4ec8e842f4eb121b103842
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98

HTTP Headers

GET /s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:58:19 GMT
expires: Wed, 23 Apr 2025 01:58:19 GMT
cache-control: public, max-age=31536000
age: 53248
last-modified: Tue, 23 May 2023 16:35:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

142.250.74.106

287 B

URL
content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text
Size
287 B (287 bytes)
Hash
492cdd6cab3118d8251ee9c8c2ac526f
e01ac8d9671454a72891728e9444fbecd115676b
beb439e6d68ff8bde9fe4f4ee1b25ffaa49c0255106df9c072879431589e8efc

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: content-sheets.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-pNEq-IsmQsDwbmzFFRd2ZA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/xd3cpp/2, require-trusted-types-for 'script'
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp; report-to="gapi"
report-to: {"group":"gapi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi"}]}
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:47 GMT
server: ESF
cache-control: private
content-length: 287
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

216.58.207.227

200 OK

128 kB

URL GET HTTP/3
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 06:44:19 GMT
expires: Sun, 20 Apr 2025 06:44:19 GMT
cache-control: public, max-age=31536000
age: 295288
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/js/googleapis.proxy.js?onload=startup

142.250.74.110

200 OK

5.9 kB

URL GET HTTP/3
apis.google.com/js/googleapis.proxy.js?onload=startup
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=822686373
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2054)
Size
5.9 kB (5903 bytes)
Hash
eab0dc82067fb5758a121009c7040231
8d869354f7a947ecc087b23868999bc53f77bdf7
9c77d6db3131248f92ae41075f189b4ecc2e51bcfdcca143719a83145f8ac070

HTTP Headers

GET /js/googleapis.proxy.js?onload=startup HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content-sheets.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5903
date: Tue, 23 Apr 2024 16:45:47 GMT
expires: Tue, 23 Apr 2024 16:45:47 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9bc2326c55ad9a5d"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17032, version 1.0
Size
17 kB (17032 bytes)
Hash
05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 21:52:10 GMT
expires: Tue, 22 Apr 2025 21:52:10 GMT
cache-control: public, max-age=31536000
age: 68017
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 20:59:15 GMT
expires: Sat, 19 Apr 2025 20:59:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 330392
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

28 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=822686373
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
28 kB (28128 bytes)
Hash
7d8cbf3c10edeb25732380ab3a9485c6
dc6332379fa46051ae4884abaa785d2b71fb9daf
1b163608a38440e0853a40a67c2645f310d490a4be2dd556a258c642df2e57d7

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://content-sheets.googleapis.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 28128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:18:30 GMT
expires: Tue, 22 Apr 2025 16:18:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 88037
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.106

200 OK

23 B

URL GET HTTP/3
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
23 B (23 bytes)
Hash
8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:47 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

content-sheets.googleapis.com/$discovery/rest?version=v4&pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8

142.250.74.106

200 OK

5.0 kB

URL GET HTTP/3
content-sheets.googleapis.com/$discovery/rest?version=v4&pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#parent=https%3A%2F%2Flookerstudio.google.com&rpctoken=822686373
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
5.0 kB (4952 bytes)
Hash
45f08f92967d44833e974fe5dde768ad
f60f6513b469360fe5bb76156f47e3448e34ae01
540173b89a3a86008056642258ecdf7adf0d9659febc1fc90639881770409fa3

HTTP Headers

GET /$discovery/rest?version=v4&pp=0&fields=fields%5B%22kind%22%5D%2Cfields%5B%22name%22%5D%2Cfields%5B%22version%22%5D%2Cfields%5B%22rootUrl%22%5D%2Cfields%5B%22servicePath%22%5D%2Cfields%5B%22resources%22%5D%2Cfields%5B%22parameters%22%5D%2Cfields%5B%22methods%22%5D%2Cfields%5B%22batchPath%22%5D%2Cfields%5B%22id%22%5D&key=AIzaSyAng4TaCSbwmEwKIdn9M0m9ZHpzjAkbMw8 HTTP/1.1
Host: content-sheets.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ClientDetails: appVersion=5.0%20(X11)&platform=Linux%20x86_64&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0
X-Requested-With: XMLHttpRequest
X-JavaScript-User-Agent: google-api-javascript-client/1.1.0
X-Origin: https://lookerstudio.google.com
X-Referer: https://lookerstudio.google.com
X-Goog-Encode-Response-If-Executable: base64
DNT: 1
Connection: keep-alive
Referer: https://content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:47 GMT
server: ESF
cache-control: private
content-length: 4952
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6

lookerstudio.google.com/getFirebaseAuthToken?appVersion=20240417_0301

142.250.74.110

200 OK

829 B

URL POST HTTP/3
lookerstudio.google.com/getFirebaseAuthToken?appVersion=20240417_0301
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (1120)
Size
829 B (829 bytes)
Hash
6d2af8ead5b246d1ba8d19b009f1c21c
d68593d8b82eb40170869db386484c8f0ccf3e5b
e3dfa4772da25fcbfb616b6b8665044f23ca13b9dde46fd849b1efea80b2744d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

POST /getFirebaseAuthToken?appVersion=20240417_0301 HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
encoding: null
Content-Length: 94
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c/page/67CrD?s=nulVspA_Ayc
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; _ga_S4FJY0X3VX=GS1.1.1713890743.1.1.1713890745.0.0.0; _ga=GA1.1.1804514175.1713890743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-0JeBEHsD6Z6_uWjZA5uvGA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:47 GMT
content-disposition: attachment; filename="json.txt"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

identitytoolkit.googleapis.com/v1/accounts:signInWithCustomToken?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew

216.58.211.10

200 OK

1.3 kB

URL POST HTTP/2
identitytoolkit.googleapis.com/v1/accounts:signInWithCustomToken?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
1.3 kB (1250 bytes)
Hash
f2bec3c7e39d9a929c272cd9aa55b4bb
803f7affb3bff46bc8ba7e1957fd91ef8787d272
97cc035ae3f5ba1cf5e400f9eea604ed11c3e8a9ac859bc6cdb3eed2a46be09a

HTTP Headers

POST /v1/accounts:signInWithCustomToken?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew HTTP/1.1
Host: identitytoolkit.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-Version: Firefox/JsCore/10.5.2/FirebaseCore-web
Content-Type: application/json
Content-Length: 1127
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store, max-age=0, must-revalidate
date: Tue, 23 Apr 2024 16:45:47 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
server: ESF
content-length: 1250
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
access-control-allow-credentials: true
access-control-expose-headers: date,vary,vary,vary,content-encoding,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

identitytoolkit.googleapis.com/v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew

142.250.74.106

200 OK

0 B

URL OPTIONS HTTP/3
identitytoolkit.googleapis.com/v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew HTTP/1.1
Host: identitytoolkit.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-client-version
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://lookerstudio.google.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-client-version
access-control-max-age: 3600
date: Tue, 23 Apr 2024 16:45:48 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

identitytoolkit.googleapis.com/v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew

142.250.74.106

200 OK

282 B

URL OPTIONS HTTP/3
identitytoolkit.googleapis.com/v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JSON text data
Size
282 B (282 bytes)
Hash
50c53f84b167e776f5d0746bdc461db5
dc79d9dd7df9f7ceced6b9bc82c0bf70e0e09bbf
6e7e46969be3c5508b2ffb3c40309a1042b11085b72296484940f6b01a65a634

HTTP Headers

POST /v1/accounts:lookup?key=AIzaSyAahxjTTmdpkfkjeuXkuBFRts-Ok51kuew HTTP/1.1
Host: identitytoolkit.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Client-Version: Firefox/JsCore/10.5.2/FirebaseCore-web
Content-Type: application/json
Content-Length: 1151
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, max-age=0, must-revalidate
date: Tue, 23 Apr 2024 16:45:48 GMT
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
server: ESF
content-length: 282
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
access-control-allow-credentials: true
access-control-expose-headers: date,vary,vary,vary,content-encoding,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=22805&CVER=22&X-HTTP-Session-Id=gsessionid&zx=b91meqxog7ni&t=1

142.250.74.170

200 OK

71 B

URL POST HTTP/2
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=22805&CVER=22&X-HTTP-Session-Id=gsessionid&zx=b91meqxog7ni&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text
Size
71 B (71 bytes)
Hash
44d38d4faf2b8ca8d487d8710f0c30f4
d73386263e51931c9cf17b4e747606342986adcf
0ef9fb7847a0ed6a9d27648c72de38c63ac3edff25ba835f6f3bc7944439223f

HTTP Headers

POST /google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=22805&CVER=22&X-HTTP-Session-Id=gsessionid&zx=b91meqxog7ni&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
content-type: application/x-www-form-urlencoded
Content-Length: 1645
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-client-wire-protocol: h2
x-http-session-id: ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:48 GMT
server: ESF
cache-control: private
content-length: 71
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
access-control-expose-headers: x-client-wire-protocol,x-http-session-id
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lookerstudio.google.com/updatePresence?appVersion=20240417_0301

142.250.74.110

200 OK

594 B

URL POST HTTP/3
lookerstudio.google.com/updatePresence?appVersion=20240417_0301
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
gzip compressed data, max compression
Size
594 B (594 bytes)
Hash
7d12cd4929731a1f2b30424c20c376b5
24414b734aa70e4f3ec8cc78aa712af7ad69366f
88e7d823cfd5aff74700b4a9699e13f84ec25301dcb054c178c85dedc11941fa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

POST /updatePresence?appVersion=20240417_0301 HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
encoding: null
Content-Length: 76
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c/page/67CrD?s=nulVspA_Ayc
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; _ga_S4FJY0X3VX=GS1.1.1713890743.1.1.1713890745.0.0.0; _ga=GA1.1.1804514175.1713890743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-NBnSafa_OZx0d0HBP3rJ8A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:48 GMT
content-disposition: attachment; filename="json.txt"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=29355&CVER=22&X-HTTP-Session-Id=gsessionid&zx=lqy037o8pjlv&t=1

142.250.74.170

200 OK

71 B

URL POST HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=29355&CVER=22&X-HTTP-Session-Id=gsessionid&zx=lqy037o8pjlv&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text
Size
71 B (71 bytes)
Hash
6f39951c37d54b22e7e4a0b789dd3692
a025bc8fa2c7e8e4baba32ea4604221b7779b3d4
21449c59267828e31e5d30b8b0529e4464ded4ab7dbbd2599b5d3546d06263f7

HTTP Headers

POST /google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=29355&CVER=22&X-HTTP-Session-Id=gsessionid&zx=lqy037o8pjlv&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
content-type: application/x-www-form-urlencoded
Content-Length: 1377
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-client-wire-protocol: h3
x-http-session-id: oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:48 GMT
server: ESF
cache-control: private
content-length: 71
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
access-control-expose-headers: x-client-wire-protocol,x-http-session-id
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.106

200 OK

9.1 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Droid+Sans:400italic,700italic,400,700,500|Syncopate:400italic,700italic,400,700,500|Impact:400italic,700italic,400,700|Ubuntu:400italic,700italic,400,700|Ubuntu+Mono:400italic,700italic,400,700|Open+Sans:400italic,700italic,300,400,600,700|Lato:400italic,700italic,400,700|Oswald:400italic,700italic,400,700|Lora:400italic,700italic,400,700,500|Roboto:400italic,700italic,500italic,400,700,300,500|Roboto+Condensed:400italic,700italic,400,700,500|Roboto2:400,300|Montserrat:400italic,700italic,400,700,500|Quicksand:400italic,700italic,400,700,500|Chewy:400italic,700italic,400,700,500|Indie+Flower:400italic,700italic,400,700,500|Orbitron:400italic,700italic,400,700,500|Cambria:400italic,700italic,400,700,500|Consolas:400italic,700italic,400,700,500|Calibri:400italic,700italic,400,700|Corsiva:400italic,700italic,400,700,500|Tahoma:400italic,700italic,400,700,500|Trebuchet+MS:400italic,700italic,400,700,500|Boogaloo|Bubblegum+Sans|Coming+Soon|Cormorant+Unicase:400,700|Oleo+Script:400,700|Permanent+Marker|Raleway:400,400i,700,700i|Reenie+Beanie|Eater|Great+Vibes|Google+Sans:400italic,700italic,400,700,500|Product+Sans:400|Google+Material+Icons:400,500,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (1572)
Size
9.1 kB (9057 bytes)
Hash
68c143b2fd24acdce982a785cf8472eb
01be0dd67e701212edcd7fb42c38fe3d61d9ffa4
fa8ca37253d1b28a3b069869d9521e8004eeb2d86fbda1d315f7f80d03bc28bc

HTTP Headers

GET /css?family=Droid+Sans:400italic,700italic,400,700,500|Syncopate:400italic,700italic,400,700,500|Impact:400italic,700italic,400,700|Ubuntu:400italic,700italic,400,700|Ubuntu+Mono:400italic,700italic,400,700|Open+Sans:400italic,700italic,300,400,600,700|Lato:400italic,700italic,400,700|Oswald:400italic,700italic,400,700|Lora:400italic,700italic,400,700,500|Roboto:400italic,700italic,500italic,400,700,300,500|Roboto+Condensed:400italic,700italic,400,700,500|Roboto2:400,300|Montserrat:400italic,700italic,400,700,500|Quicksand:400italic,700italic,400,700,500|Chewy:400italic,700italic,400,700,500|Indie+Flower:400italic,700italic,400,700,500|Orbitron:400italic,700italic,400,700,500|Cambria:400italic,700italic,400,700,500|Consolas:400italic,700italic,400,700,500|Calibri:400italic,700italic,400,700|Corsiva:400italic,700italic,400,700,500|Tahoma:400italic,700italic,400,700,500|Trebuchet+MS:400italic,700italic,400,700,500|Boogaloo|Bubblegum+Sans|Coming+Soon|Cormorant+Unicase:400,700|Oleo+Script:400,700|Permanent+Marker|Raleway:400,400i,700,700i|Reenie+Beanie|Eater|Great+Vibes|Google+Sans:400italic,700italic,400,700,500|Product+Sans:400|Google+Material+Icons:400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 16:45:43 GMT
date: Tue, 23 Apr 2024 16:45:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&SID=H7tsWREn2uRSXO-dLPWzuQ&RID=22807&AID=4&zx=mk7bs6eizbpf&t=1

142.250.74.170

200 OK

30 B

URL POST HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&SID=H7tsWREn2uRSXO-dLPWzuQ&RID=22807&AID=4&zx=mk7bs6eizbpf&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text
Size
30 B (30 bytes)
Hash
cc54a4449c5b23ebd53e63bb12ab8891
8bd44cba8490f40f125401e544a581920b38992c
06a403fa19b0e23e9e2ef3f493a6a55f68607c5566298f3e0ed7a08dbf11ad82

HTTP Headers

POST /google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&SID=H7tsWREn2uRSXO-dLPWzuQ&RID=22807&AID=4&zx=mk7bs6eizbpf&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
content-type: application/x-www-form-urlencoded
Content-Length: 385
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
cache-control: private
content-length: 30
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&SID=dvu_9ZTkPFyFNShBQ9HnFg&RID=29356&AID=2&zx=vzk0xoai4mtq&t=1

142.250.74.170

200 OK

30 B

URL POST HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&SID=dvu_9ZTkPFyFNShBQ9HnFg&RID=29356&AID=2&zx=vzk0xoai4mtq&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text
Size
30 B (30 bytes)
Hash
ace1abe40e27362d2652a27491b7d8a6
7dff6d210871c666e0cfc6b449105ba7e72a7803
af99f1eb4753a5af2ca76ec10624055514fc0dd9662f5a2b057ace7a97edf280

HTTP Headers

POST /google.firestore.v1.Firestore/Write/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&SID=dvu_9ZTkPFyFNShBQ9HnFg&RID=29356&AID=2&zx=vzk0xoai4mtq&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
content-type: application/x-www-form-urlencoded
Content-Length: 1562
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
cache-control: private
content-length: 30
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/common.js

142.250.74.106

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/common.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (6677)
Size
57 kB (56591 bytes)
Hash
60377760f49766c92e46b56261777f7b
f2c6fc94ad861c5b32731b2a821686480971d3b8
d5d19897e1b3ca67890ab40eb6481660bb5cf96f6511eb271f853564caf24c7c

HTTP Headers

GET /maps-api-v3/api/js/55/11a/intl/no_ALL/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 56591
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 17:35:17 GMT
expires: Wed, 16 Apr 2025 17:35:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Feb 2024 23:41:46 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 601835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/util.js

142.250.74.106

200 OK

57 kB

URL GET HTTP/3
maps.googleapis.com/maps-api-v3/api/js/55/11a/intl/no_ALL/util.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
JavaScript source, ASCII text, with very long lines (562)
Size
57 kB (57101 bytes)
Hash
7217cfe43953b86b76691c5d1408b163
d2d95a0b110c70df7268f3dd910b02b8fd34e512
44f4d44984a0af8d694e23f3ebd55e1602ed5c052053b039950df897e848f6fa

HTTP Headers

GET /maps-api-v3/api/js/55/11a/intl/no_ALL/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57101
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 08:59:46 GMT
expires: Sat, 19 Apr 2025 08:59:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Feb 2024 23:41:46 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 373566
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.170

200 OK

10 B

URL POST HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&SID=H7tsWREn2uRSXO-dLPWzuQ&RID=22806&AID=4&zx=5gfl9qcrv28t&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text, with no line terminators
Size
10 B (10 bytes)
Hash
815c509922641de1ed4f7d370eb2d5ff
b92fcf85789b32a2576ad1a372ae5f8db012e2b0
874389e35395f3c367a1ca618e549fec5a63c93f09e56d30cb93a05b843fc6cc

HTTP Headers

POST /google.firestore.v1.Firestore/Listen/channel?VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&SID=H7tsWREn2uRSXO-dLPWzuQ&RID=22806&AID=4&zx=5gfl9qcrv28t&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
content-type: application/x-www-form-urlencoded
Content-Length: 142
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
cache-control: private
content-length: 30
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE

142.250.74.164

200 OK

1.0 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT

File type
JavaScript source, ASCII text, with very long lines (1034), with no line terminators
Size
1.0 kB (1034 bytes)
Hash
20941288dd6ffcae556ecc29fd65255a
3e5f865d876ba2db6963fd457e6a1d8a46fb6f3d
6ca825fd889bdd7a63b0530f80a617c7f0d8c76e63a58365f0a71b733c2a33ce

HTTP Headers

GET /recaptcha/api.js?trustedtypes=true&render=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 23 Apr 2024 16:45:43 GMT
date: Tue, 23 Apr 2024 16:45:43 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=4&CI=1&TYPE=xmlhttp&zx=dhl5xrwkysvl&t=1

142.250.74.170

200 OK

186 B

URL GET HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=4&CI=1&TYPE=xmlhttp&zx=dhl5xrwkysvl&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text, with no line terminators
Size
186 B (186 bytes)
Hash
190dcf5781716aa6c3320bc83d84c662
cb7b84faca91eaa48caa7b7ed8f0d507b77cbd92
79be4425e0f4786fba7cf564927bcb174282c0a65c5728d4a868cf87623aed3e

HTTP Headers

GET /google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=4&CI=1&TYPE=xmlhttp&zx=dhl5xrwkysvl&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc

142.250.74.110

200 OK

68 kB

URL User Request GET HTTP/2
lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
HTML document, ASCII text, with very long lines (62405)
Size
68 kB (67867 bytes)
Hash
7e399c6572c864c9ff57ba3e6a66a1d3
7129304a4f6eeec490affd6087da71329d4a7a52
ef04a06e6faa656c7c4cb7b36a962b79c1d6f3c497fbf3c5d712c86d187642a7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

GET /reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-hEX8bdF8F1W72pRNu8FRjQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC

142.250.74.164

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
c193745deb63fe67f3aa6b578c40dd99
8a3ecc2696074e71d3b011c99b98cb25229e1a31
d41e076366e4207d57a5fd1725c2024f751c43ae4a3a8e93cc46dfb8462a3e5b

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 23 Apr 2024 16:45:44 GMT
date: Tue, 23 Apr 2024 16:45:44 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.106

200 OK

432 B

URL GET HTTP/3
content-sheets.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
HTML document, ASCII text, with very long lines (463), with no line terminators
Size
432 B (432 bytes)
Hash
9e5a63bb8b3967ee37d7de6ecdd5f19f
99b56ff72e9aad9acd71424ef4b220586e51dc9d
59e1d3cc28e94368fed319c69dc1f0c998be6a06b989ecf66039bce9e871630a

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: content-sheets.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-pNEq-IsmQsDwbmzFFRd2ZA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/xd3cpp/2, require-trusted-types-for 'script'
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp; report-to="gapi"
report-to: {"group":"gapi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi"}]}
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:47 GMT
server: ESF
cache-control: private
content-length: 287
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6

lookerstudio.google.com/getImageV2?reportId=8ae90e10-14c7-4f83-8da9-dce89836b54c&id=ADpgoFU%2BvP%2B0ewhnUDT86QxeObDHU0gK%2BAEUGsHPkkey5EB8i2cMs58pMtef9OE0mmUvV1yv5%2FNuyueokLWQblYgDdRLCh5hNs3J%2BRvmYjzFQWyW28TYHLvusX42we7kg0HYc3ssT8VrTkHa1thNnrFJeR6O8OPI1yMIJPb27Ww%3D

142.250.74.110

200 OK

44 kB

URL GET HTTP/3
lookerstudio.google.com/getImageV2?reportId=8ae90e10-14c7-4f83-8da9-dce89836b54c&id=ADpgoFU%2BvP%2B0ewhnUDT86QxeObDHU0gK%2BAEUGsHPkkey5EB8i2cMs58pMtef9OE0mmUvV1yv5%2FNuyueokLWQblYgDdRLCh5hNs3J%2BRvmYjzFQWyW28TYHLvusX42we7kg0HYc3ssT8VrTkHa1thNnrFJeR6O8OPI1yMIJPb27Ww%3D
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (43538)
Size
44 kB (43543 bytes)
Hash
0ff979a8b0b004b53f590e1bf0baa7bf
0752b90693f3a62f8d0145592c1d49fb714ca491
3c726c5869b1621c705dd0696fd67b40d5a9edb6766a4eaeb30a3abfce32c0a8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

GET /getImageV2?reportId=8ae90e10-14c7-4f83-8da9-dce89836b54c&id=ADpgoFU%2BvP%2B0ewhnUDT86QxeObDHU0gK%2BAEUGsHPkkey5EB8i2cMs58pMtef9OE0mmUvV1yv5%2FNuyueokLWQblYgDdRLCh5hNs3J%2BRvmYjzFQWyW28TYHLvusX42we7kg0HYc3ssT8VrTkHa1thNnrFJeR6O8OPI1yMIJPb27Ww%3D HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c/page/67CrD?s=nulVspA_Ayc
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; _ga_S4FJY0X3VX=GS1.1.1713890743.1.1.1713890745.0.0.0; _ga=GA1.1.1804514175.1713890743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-2aXrqdhNyt8qRq8ef7zwPA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
x-content-type-options: nosniff
expires: Tue, 23 Apr 2024 16:45:47 GMT
date: Tue, 23 Apr 2024 16:45:47 GMT
cache-control: private, max-age=2592000
content-disposition: attachment; filename="json.txt"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

0.0.0.0

0 B

URL GET
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=5&CI=1&TYPE=xmlhttp&zx=wym3n4k5npbq&t=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=5&CI=1&TYPE=xmlhttp&zx=wym3n4k5npbq&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:50 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.106

200 OK

432 B

URL GET HTTP/3
content-people-pa.googleapis.com/static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
HTML document, ASCII text, with very long lines (463), with no line terminators
Size
432 B (432 bytes)
Hash
34ef937d4d0c30d7c158267e080ab2ed
d6faa7af1c8fba8294dbaf84e8360f3aff0df915
bbec161a540c05db5fbdf8f596d434589e4db64c439caa7517e4a5fd544ba16c

HTTP Headers

GET /static/proxy.html?usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: content-people-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-iZbABmLSMPqJB-C6tvU2hQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/xd3cpp/2, require-trusted-types-for 'script'
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp; report-to="gapi"
report-to: {"group":"gapi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi"}]}
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:44 GMT
server: ESF
cache-control: private
content-length: 290
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.170

200 OK

79 B

URL GET HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=0&CI=1&TYPE=xmlhttp&zx=rulzaz330nrw&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text, with no line terminators
Size
79 B (79 bytes)
Hash
31c21743a8666598f06c35e422afa6e9
5cb022de575b6d4afac1d4c33f99771a8be45a29
fb47fc5bc275dc1e7cac5542e0aeb438450746190e2a51831eb1c6cf623316b7

HTTP Headers

GET /google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=0&CI=1&TYPE=xmlhttp&zx=rulzaz330nrw&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lookerstudio.google.com/getReport?appVersion=20240417_0301

142.250.74.110

200 OK

5.6 kB

URL POST HTTP/3
lookerstudio.google.com/getReport?appVersion=20240417_0301
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
ASCII text, with very long lines (6232), with no line terminators
Size
5.6 kB (5593 bytes)
Hash
cca1b6adfe83af181de28d872aa62afb
3eeebe4c69716fba9ac644dec7c5e7c6662c0c91
5b6b084334df4333ec9d6325068ef649a06de0e928bcb8e5239274da1b776038

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Docusign

HTTP Headers

POST /getReport?appVersion=20240417_0301 HTTP/1.1
Host: lookerstudio.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
encoding: null
Content-Length: 194
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg; NID=513=ciXHAg5uDURoPNZQIltm6Gg4Ge8g77YHYSDQOMVkab4yB5UZiOQeXM4etZ_zCdaim0aaS4PNlFWOC5sV0_fXK4Z3T89oVoyb_0wvdfiATddt3uW4xN90XL2OgcLjzIvlYH5sVzKMhHuOuVsZu6fjPK7npiRp8kkWItm2xZmZZw8; _ga_S4FJY0X3VX=GS1.1.1713890743.1.1.1713890745.0.0.0; _ga=GA1.1.1804514175.1713890743
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
x-frame-options: DENY
content-security-policy: script-src 'report-sample' 'nonce-h4YVrMaOLbB8i7ws5-x5_A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/datastudio/;frame-ancestors 'none'
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 23 Apr 2024 16:45:46 GMT
content-disposition: attachment; filename="json.txt"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.170

200 OK

83 B

URL GET HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=0&CI=0&TYPE=xmlhttp&zx=ge657y9pu7ce&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
4e268685264367889b92ac0c7ffa3ce7
e49b9e080959da11c540e0f6016277ceb0b04935
dbe1b09dbda2a24fe692884f343c02274e6f64b8645324caefccf6381f877d6e

HTTP Headers

GET /google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=0&CI=0&TYPE=xmlhttp&zx=ge657y9pu7ce&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-debug-tracking-id: 13866674117431379946;o=0
vary: Referer, origin
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/analytics-suite/header/suite/v2/ic_account_circle_dark.svg

142.250.74.163

200 OK

736 B

URL GET HTTP/3
www.gstatic.com/analytics-suite/header/suite/v2/ic_account_circle_dark.svg
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
SVG Scalable Vector Graphics image
Size
736 B (736 bytes)
Hash
15a17b9da2670bd5c8dee07c6a3bf1cb
1facdc15891a2956c535cd170d38476ec64c3825
b0fe289706757e1fdad959e41fca4ccb514845e7644138b1f2832dd146f2d852

HTTP Headers

GET /analytics-suite/header/suite/v2/ic_account_circle_dark.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
content-encoding: br
content-length: 357
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-config-team
cross-origin-opener-policy: same-origin; report-to="analytics-config-team"
report-to: {"group":"analytics-config-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-config-team"}]}
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:29:57 GMT
expires: Tue, 23 Apr 2024 17:29:57 GMT
cache-control: public, max-age=3600
age: 949
last-modified: Thu, 12 Oct 2023 20:18:33 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=H7tsWREn2uRSXO-dLPWzuQ&AID=0&CI=0&TYPE=xmlhttp&zx=nfkrktr8f2w7&t=1

0.0.0.0

0 B

URL GET
firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=H7tsWREn2uRSXO-dLPWzuQ&AID=0&CI=0&TYPE=xmlhttp&zx=nfkrktr8f2w7&t=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /google.firestore.v1.Firestore/Listen/channel?gsessionid=ndUdo3E9-zdq9YLHcWlEsF83gBgQ3LCaGBG3eHzZlaU&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=H7tsWREn2uRSXO-dLPWzuQ&AID=0&CI=0&TYPE=xmlhttp&zx=nfkrktr8f2w7&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-debug-tracking-id: 12271025463910922241;o=0
vary: Referer, origin
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:48 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=1/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_base

142.250.74.163

200 OK

5.7 MB

URL GET HTTP/2
www.gstatic.com/_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=1/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_base
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type

Size
5.7 MB (5657481 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_/datastudio/_/js/k=datastudio.datastudio.no.h_XTj8x7T68.2018.O/am=gA/d=1/rs=AHAPuoM9yO6oih7p3weOXs7_8HbJ8JY-zA/m=pm_base HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lookerstudio.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/analytics-lego-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="analytics-lego-eng"
report-to: {"group":"analytics-lego-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/analytics-lego-eng"}]}
timing-allow-origin: https://datastudio.google.com
content-length: 1469346
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:33 GMT
expires: Fri, 18 Apr 2025 02:34:33 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 13:35:49 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 483070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css

142.250.74.163

200 OK

56 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcE_6MUAAAAACM2aL4qbFG8PNDIIl4krUNCLmXE&co=aHR0cHM6Ly9sb29rZXJzdHVkaW8uZ29vZ2xlLmNvbTo0NDM.&hl=en&v=QoukH5jSO3sKFzVEA7Vc8VgC&size=invisible&cb=1g1e2gcyw7no
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
ASCII text, with very long lines (56412), with no line terminators
Size
56 kB (56412 bytes)
Hash
2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed

HTTP Headers

GET /recaptcha/releases/QoukH5jSO3sKFzVEA7Vc8VgC/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:34:58 GMT
expires: Tue, 22 Apr 2025 13:34:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 02:01:04 GMT
content-type: text/css
vary: Accept-Encoding
age: 97845
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

142.250.74.170

200 OK

203 B

URL GET HTTP/3
firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=2&CI=1&TYPE=xmlhttp&zx=3sqyf8sze1a&t=1
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://lookerstudio.google.com/reporting/8ae90e10-14c7-4f83-8da9-dce89836b54c?s=nulVspA_Ayc
Certificate
IssuerGoogle Trust Services LLC
Subjectedgecert.googleapis.com
Fingerprint73:4E:FC:CF:C3:7C:C7:53:F8:D9:1B:83:97:B3:E4:ED:66:7C:76:86
ValidityMon, 18 Mar 2024 20:54:38 GMT - Mon, 10 Jun 2024 20:54:37 GMT

File type
ASCII text, with no line terminators
Size
203 B (203 bytes)
Hash
b3e98900fd0c8c079b7a8a5be4ae9f0c
9db88cc694e28662be54db8ed08591d1fc0c677b
8ed78fc4772fc1d60c43bb5143a2a886005c6d02d2a8d36ec321b218125454ff

HTTP Headers

GET /google.firestore.v1.Firestore/Write/channel?gsessionid=oxmCJdS_kRHBClAqPRZfrxn4M2rXNAhQMkqrwc9Amzo&VER=8&database=projects%2Fdatastudio-prod-firestore%2Fdatabases%2F(default)&RID=rpc&SID=dvu_9ZTkPFyFNShBQ9HnFg&AID=2&CI=1&TYPE=xmlhttp&zx=3sqyf8sze1a&t=1 HTTP/1.1
Host: firestore.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lookerstudio.google.com/
Origin: https://lookerstudio.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cache-control: private, max-age=0
x-content-type-options: nosniff
content-type: text/plain; charset=utf-8
content-encoding: gzip
date: Tue, 23 Apr 2024 16:45:49 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://lookerstudio.google.com
vary: origin
access-control-allow-credentials: true
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

JavaScript (50)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash