Report - ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917

Report Overview

Visited public
2024-10-14 16:55:16
Tags
Submit Tags
URL
ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917
Finishing URL
daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
IP / ASN
103.239.95.244
#10010 TOKAI Communications Corporation
Title
恋話

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
o.pki.goog	unknown	2016-06-13	2024-04-24	2024-10-13	2.6 kB	5.6 kB	142.250.74.67
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-10-13	24 kB	644 kB	142.250.74.163
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-10-13	451 B	31 kB	216.58.207.234
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-10-13	469 B	232 kB	216.58.207.234
r10.o.lencr.org	unknown	2020-06-29	2024-06-06	2024-10-13	1.6 kB	4.4 kB	23.36.77.32
r11.o.lencr.org	unknown	2020-06-29	2024-06-07	2024-10-13	981 B	2.7 kB	23.36.76.226
ww.earringspasm.com	unknown	unknown	No data	No data	787 B	935 B	103.239.95.244
daytimesalesperson.com	unknown	2023-11-09	2024-10-14	2024-10-14	11 kB	166 kB	103.10.237.238

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-10-14 16:54:52	medium	Client IP	103.239.95.244	ETPRO HUNTING Observed Unusual Host (ww.)
2024-10-14 16:54:53	medium	Client IP	103.239.95.244	ETPRO HUNTING Observed Unusual Host (ww.)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-07-17
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 216.58.207.234 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-17 06:11 Times Seen65890 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

HTTP Transactions (79)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
8c678121da7ea2edc90ea014cf3552af
3d76ebd2a3aba8dab56e3c15310551e9b226e249
1839e2eb73c24c27fda8e6bf4715b73ce52cc1c059bd1dfd9b739e71409cda3b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1839E2EB73C24C27FDA8E6BF4715B73CE52CC1C059BD1DFD9B739E71409CDA3B"
Last-Modified: Mon, 14 Oct 2024 08:07:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11662
Expires: Mon, 14 Oct 2024 20:09:11 GMT
Date: Mon, 14 Oct 2024 16:54:49 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4ef646b0e9b7327e4a942f9294833f80
292c5eafd5f9d4c35b11f0f3d456cdbe77e30c21
eb25c0ba5c8244185a6c004482f85ef91889d1f4f368d44bf009bb957e776f28

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "EB25C0BA5C8244185A6C004482F85EF91889D1F4F368D44BF009BB957E776F28"
Last-Modified: Sun, 13 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11817
Expires: Mon, 14 Oct 2024 20:11:46 GMT
Date: Mon, 14 Oct 2024 16:54:49 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
521dc7800117b7a6d6d3e6aaee9736f9
1eb0d411dd585112dc15f959e5db333b1239e5a0
44a7dab7219af152264298720b8ae894517d016c9db41dfba3d290d5a27b102a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "44A7DAB7219AF152264298720B8AE894517D016C9DB41DFBA3D290D5A27B102A"
Last-Modified: Mon, 14 Oct 2024 07:03:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12056
Expires: Mon, 14 Oct 2024 20:15:45 GMT
Date: Mon, 14 Oct 2024 16:54:49 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c23e39db05be15386fa548ca7b2c453a
f74dde624032b136a3decaa16f09a97402ab226f
42554f548afd03e7799c63539fce43e4bfa688b54b894b564ac51ba30cbaf6f3

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "42554F548AFD03E7799C63539FCE43E4BFA688B54B894B564AC51BA30CBAF6F3"
Last-Modified: Sun, 13 Oct 2024 04:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11704
Expires: Mon, 14 Oct 2024 20:09:54 GMT
Date: Mon, 14 Oct 2024 16:54:50 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
241105d8fc709e6bd1be3519f5b7866f
fa41e9781f5c9c82f9a3feb36e44ed02216c1011
49a0d47bc68becfb87efb3d9271f71a04b3fb324f50bb793a9d012dbe3f0030e

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "49A0D47BC68BECFB87EFB3D9271F71A04B3FB324F50BB793A9D012DBE3F0030E"
Last-Modified: Sat, 12 Oct 2024 11:02:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13096
Expires: Mon, 14 Oct 2024 20:33:08 GMT
Date: Mon, 14 Oct 2024 16:54:52 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
241105d8fc709e6bd1be3519f5b7866f
fa41e9781f5c9c82f9a3feb36e44ed02216c1011
49a0d47bc68becfb87efb3d9271f71a04b3fb324f50bb793a9d012dbe3f0030e

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "49A0D47BC68BECFB87EFB3D9271F71A04B3FB324F50BB793A9D012DBE3F0030E"
Last-Modified: Sat, 12 Oct 2024 11:02:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13096
Expires: Mon, 14 Oct 2024 20:33:08 GMT
Date: Mon, 14 Oct 2024 16:54:52 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

200 OK

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
241105d8fc709e6bd1be3519f5b7866f
fa41e9781f5c9c82f9a3feb36e44ed02216c1011
49a0d47bc68becfb87efb3d9271f71a04b3fb324f50bb793a9d012dbe3f0030e

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "49A0D47BC68BECFB87EFB3D9271F71A04B3FB324F50BB793A9D012DBE3F0030E"
Last-Modified: Sat, 12 Oct 2024 11:02:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13096
Expires: Mon, 14 Oct 2024 20:33:08 GMT
Date: Mon, 14 Oct 2024 16:54:52 GMT
Connection: keep-alive

GET ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917

103.239.95.244

200 OK

218 B

URL User Request GET
ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917
IP
103.239.95.244:0
ASN
#10010 TOKAI Communications Corporation

File type
HTML document, ASCII text
Size
218 B (218 bytes)
Hash
1f20c8ec87137ca6311b806b9ffb402c
b4f5198884d06b4c46bf728cecf37cfe34060e6e
2a34412d8ae0391e7910ce1eea92b33f5254d9e200d04e14a7ea18c4fb25ea75

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO HUNTING Observed Unusual Host (ww.)

HTTP Headers

GET /rq/mwg/gtchyrbgtg/282917 HTTP/1.1
Host: ww.earringspasm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:52 GMT
Server: Apache/2.4.57 (CentOS Stream) PHP/7.4.33
X-Powered-By: PHP/7.4.33
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 14 Oct 2024 16:54:52 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 218
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

GET ww.earringspasm.com/favicon.ico

103.239.95.244

200 OK

41 B

URL GET HTTP/1.1
ww.earringspasm.com/favicon.ico
IP
103.239.95.244:80
ASN
#10010 TOKAI Communications Corporation

Requested by
http://ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917

File type
Unicode text, UTF-8 text, with no line terminators
Size
41 B (41 bytes)
Hash
29f8a3e7f20ef8fd62c59d32e05b6517
6d316eab85d9341557b9159c25cf7e747ee2790e
92cdf0bbaf28df4719e324d8d6d69baafe8ede027963c591c0bbb8dc738f7646

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO HUNTING Observed Unusual Host (ww.)

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ww.earringspasm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ww.earringspasm.com/rq/mwg/gtchyrbgtg/282917
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:52 GMT
Server: Apache/2.4.57 (CentOS Stream) PHP/7.4.33
X-Powered-By: PHP/7.4.33
Content-Length: 41
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r10.o.lencr.org/

23.36.76.226

200 OK

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
d814080d18eee79f5e0b773bddfe835d
b0d00aca4836e904f93325b77fd30de64804b044
a658bc63d31b86f6e17eb2d1060f44b150f8de78e0581f8ce1e5a365ce458be9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A658BC63D31B86F6E17EB2D1060F44B150F8DE78E0581F8CE1E5A365CE458BE9"
Last-Modified: Sun, 13 Oct 2024 10:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21570
Expires: Mon, 14 Oct 2024 22:54:24 GMT
Date: Mon, 14 Oct 2024 16:54:54 GMT
Connection: keep-alive

GET daytimesalesperson.com/vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4

103.10.237.238

302 Found

253 B

URL User Request GET HTTP/1.1
daytimesalesperson.com/vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
HTML document, ASCII text
Size
253 B (253 bytes)
Hash
d07bc57a38ee0d473ea05719bebd10ab
c016fe0b5a992fd9074dcff7a403e10d308037e4
463532f5a6c6ada2720e29dc0435427fdd0e4feca7338599fca3ea483ad4ef60

HTTP Headers

GET /vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4 HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ww.earringspasm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Mon, 14 Oct 2024 16:54:54 GMT
Location: https://daytimesalesperson.com/jump/?code=vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

GET daytimesalesperson.com/jump/?code=vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4

103.10.237.238

302 Moved Temporarily

20 B

URL User Request GET HTTP/1.1
daytimesalesperson.com/jump/?code=vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /jump/?code=vGkxM9ROtyKmAOrxM9xKpBMtvL5zVuDXk9/jtTzCawwNB1rWNTXfNfiBVc4 HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww.earringspasm.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Date: Mon, 14 Oct 2024 16:54:55 GMT
Server: Apache
Location: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Content-Type: text/html;charset=ISO-8859-1
Set-Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422; Path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

GET daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b

103.10.237.238

200 OK

3.0 kB

URL User Request GET HTTP/1.1
daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (628), with CRLF, LF line terminators
Size
3.0 kB (2977 bytes)
Hash
de0e1b81e05281633565611f7b7d3c2b
1deb5d2f18ce7ebe842334a71d6b9ab9c4f211da
3672f85c90463de97d0e51d58c23c7f10a662b8557a3acf1747286456dab111d

HTTP Headers

GET /mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ww.earringspasm.com/
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:55 GMT
Server: Apache
Content-Type: text/html;charset=UTF-8
Content-Language: ja-JP
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

o.pki.goog/wr2

142.250.74.67

200 OK

472 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ea85c32beb06621d3c98a9d9d5b8cf8
93a361890013c599f35ea545964fa81c05ecaf92
c21799b4716e3b725b841fc5f08734fb03ff8378d948256de6f8c71812cfa517

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET daytimesalesperson.com/freefiles/md8cp6vp/sp1/css/common.css

103.10.237.238

200 OK

2.5 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/sp1/css/common.css
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
Unicode text, UTF-8 text
Size
2.5 kB (2549 bytes)
Hash
9ed9ac1f92b1979139706d234b452422
1fd2419be7dab4877f85076a03bdc7892d539fa2
4e75917f4e5ed776ddce13a106518af38b170c6dada09ad218dd7dc722e598ef

HTTP Headers

GET /freefiles/md8cp6vp/sp1/css/common.css HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:56 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Thu, 28 Sep 2023 01:33:42 GMT
ETag: "245401d-29f3-606614c4d6980"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: private, max-age=100
Content-Length: 2549
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

o.pki.goog/wr2

142.250.74.67

200 OK

472 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ea85c32beb06621d3c98a9d9d5b8cf8
93a361890013c599f35ea545964fa81c05ecaf92
c21799b4716e3b725b841fc5f08734fb03ff8378d948256de6f8c71812cfa517

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET daytimesalesperson.com/styles/usr.css

103.10.237.238

200 OK

57 B

URL GET HTTP/1.1
daytimesalesperson.com/styles/usr.css
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
ASCII text, with CRLF line terminators
Size
57 B (57 bytes)
Hash
a4994603d8c13d09255c71f2ecddabb5
56682b874737cf0099d3d2a599411076bdf745e3
a59934e45f5317549289ab7970eabbd5583444e80cda0faabe4105e4ae1bc00f

HTTP Headers

GET /styles/usr.css HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:56 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Mon, 06 Dec 2021 07:38:15 GMT
ETag: "76096f-25-5d27556ee07c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: private, max-age=100
Content-Length: 57
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

GET daytimesalesperson.com/freefiles/md8cp6vp/sp1/css/reset.css

103.10.237.238

200 OK

583 B

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/sp1/css/reset.css
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
ASCII text
Size
583 B (583 bytes)
Hash
a8f4968c74d87f6ed8cd181c0caaa25c
bab9a99df04b8d908d340c8c13acf36c2bf921a9
36d7b49c4bbfd2a6753ed95e26c902a57be7e72ca155fcf7d721b9eb8b133e9d

HTTP Headers

GET /freefiles/md8cp6vp/sp1/css/reset.css HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:57 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Thu, 28 Sep 2023 01:33:42 GMT
ETag: "2454021-49a-606614c4d6980"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: private, max-age=100
Content-Length: 583
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/style-koibana3.css

103.10.237.238

200 OK

4.5 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/style-koibana3.css
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
Unicode text, UTF-8 text
Size
4.5 kB (4468 bytes)
Hash
234b84ff687cd0de09a371639b557ddf
6a5a9ae7e5386a6fece9a303b23b584a78f2e5ca
8b85e7397b632ef41cf8e7efb739db8cfc6a203ed7618a167b11f9908604eafe

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/style-koibana3.css HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:57 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:39 GMT
ETag: "2488411-4679-620fa398208c0"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: private, max-age=100
Content-Length: 4468
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_mailpic.png

103.10.237.238

200 OK

725 B

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_mailpic.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
725 B (725 bytes)
Hash
344007adc6f0cf1aebb8bd87d480abe9
21552e24c05ab8688ebedc4a37903464682d08a1
ec6fe2350dd670e9fabe4ee2ee78ac37a4005289187828f646ce7df8de2def0c

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/icon_mailpic.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:57 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:38 GMT
ETag: "24881f7-2d5-620fa3972c680"
Accept-Ranges: bytes
Content-Length: 725
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_info.png

103.10.237.238

200 OK

1.4 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_info.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1389 bytes)
Hash
a2be489f454b451f9df524da176977ea
5d7866f35ec2789faecdc6303adbde31ce1c2e9a
d96ab947f3b406e3d8df8d66e6dc5ca0def7eb5dbe433a98a3be78adb6ce2667

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/icon_info.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:57 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:38 GMT
ETag: "24881f3-56d-620fa3972c680"
Accept-Ranges: bytes
Content-Length: 1389
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue87nIGQA.woff2

142.250.74.163

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue87nIGQA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28084, version 1.0
Size
28 kB (28084 bytes)
Hash
d386382c595bff13a14f1f1fb15312ca
2c1bbc842f8cf071c808b89d248f3ff4088f27e1
dcc31cccac3ee8df626234b75a6012dacab4c2780b335b936a57bf839e9513d3

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue87nIGQA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28084
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 01:41:02 GMT
expires: Sun, 12 Oct 2025 01:41:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:45:47 GMT
content-type: font/woff2
age: 227636
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.117.woff2

142.250.74.163

200 OK

10 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.117.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10068, version 1.0
Size
10 kB (10068 bytes)
Hash
6f0c6d7ce8acd3b295097ab93780282a
373fea2635c77bc022d21a4219d1e900800eb814
88861ff9f4611b0efc9391e9d9667697746ded2ea4873d79d77fb9368a0b912e

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10068
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 20:27:00 GMT
expires: Sun, 12 Oct 2025 20:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:22 GMT
content-type: font/woff2
age: 160078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.105.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.105.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13796, version 1.0
Size
14 kB (13796 bytes)
Hash
7b4a95d8c6aee13bc9425572991ad2bc
db51b63405cb4b19ee7a5baee0a99745a8a66fcc
4b83d54cfa6b4ae04fc86e578a1c0476d7e418a29bb309978d4059a9563f37f5

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.105.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:56 GMT
expires: Fri, 10 Oct 2025 12:59:56 GMT
cache-control: public, max-age=31536000
age: 359702
last-modified: Tue, 06 Aug 2024 21:47:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.87.woff2

142.250.74.163

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.87.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14768, version 1.0
Size
15 kB (14768 bytes)
Hash
cfdd757f87876f890553ca3cdf3a49ad
8666f1966e3d281b9ba1c025763da279d2d0b83f
ef3f2d2af68ee46ffbe374c08366116fb2cb7eaff175f664347847ab67a6419c

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.87.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 03:08:17 GMT
expires: Sun, 12 Oct 2025 03:08:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:45:33 GMT
content-type: font/woff2
age: 222401
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.119.woff2

142.250.74.163

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.119.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23772, version 1.0
Size
24 kB (23772 bytes)
Hash
506fefd19ab5ef7580eaf07ee6a2f08f
96b8aa4911462ea9b98ef12ec2bee436dd83a808
36dc1d808505f7cb8100c6c8db99f829b1d7e008c2029ac22af2f7ed0f79279f

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 21:42:29 GMT
expires: Sat, 11 Oct 2025 21:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:42 GMT
content-type: font/woff2
age: 241949
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.95.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.95.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13724, version 1.0
Size
14 kB (13724 bytes)
Hash
31eb255efc562a56185319eefb73f606
db9d17a2d0b7f57f3899444fc340e0f0f38960f3
2ebe03edaa9ee5369c526162792e4c49f678569e1f31033937c5f0b4c772abe4

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.95.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Oct 2024 12:39:43 GMT
expires: Tue, 14 Oct 2025 12:39:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:37 GMT
content-type: font/woff2
age: 15315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.112.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.112.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12464, version 1.0
Size
12 kB (12464 bytes)
Hash
1c67c4234b9e1442f2ad8962b7f83544
4a1288bbd86ea7a0eaf3c0624f95bd87e5f12857
93bdaae7251e0dfb6182c71af1794fafabe249906c7ce5bfdae05e7d4479e11b

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.112.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 10:55:26 GMT
expires: Sat, 11 Oct 2025 10:55:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:40 GMT
content-type: font/woff2
age: 280772
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.117.woff2

142.250.74.163

200 OK

10 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.117.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10000, version 1.0
Size
10 kB (10000 bytes)
Hash
ed66aa3428511b1382ef47ce3793f37e
afed17d46b1d34a73d31c5db208cb4a777377ca1
ec6ceba667516072d52ffe532b936bfd53f128efad7da39cfa25fea97a612425

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.117.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 19:28:35 GMT
expires: Sat, 11 Oct 2025 19:28:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:42 GMT
content-type: font/woff2
age: 249983
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.114.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.114.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11540, version 1.0
Size
12 kB (11540 bytes)
Hash
5db6af721c52ddbac96cc096bee900eb
4ad764f53ec6f982e957eb12b313149955d65d56
46403932c3ce4db4e9f99110ec7ed1c759b5898aa55d19d1a6506bb2b3f34e95

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.114.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 20:27:00 GMT
expires: Sun, 12 Oct 2025 20:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:23 GMT
content-type: font/woff2
age: 160078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.118.woff2

142.250.74.163

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.118.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18852, version 1.0
Size
19 kB (18852 bytes)
Hash
4f0c69230db51bd6c19b7d490e2fb41d
49af76aea3b7be258c2494a258a13b3c4e97db8a
ce5f0f13b8b044c426a69694923771fd72c3837c3796883c672dbc3b4fe21417

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.118.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Oct 2024 12:39:43 GMT
expires: Tue, 14 Oct 2025 12:39:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:23 GMT
content-type: font/woff2
age: 15315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.111.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.111.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13264, version 1.0
Size
13 kB (13264 bytes)
Hash
539778862d8eec9a692b306bb0e44c7b
9d13ebcb567769c3e3211c24db62bbd93a0ee74c
990a592c0ca5fac43f958f4d08fccbd12f17fd2ab1295f89f84215d6da5aa95a

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.111.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13264
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 03:08:17 GMT
expires: Sun, 12 Oct 2025 03:08:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:22 GMT
content-type: font/woff2
age: 222401
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.115.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.115.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12004, version 1.0
Size
12 kB (12004 bytes)
Hash
139d9e14061332385721c8bee352d2bd
87044ece27fa01f32e43a140e55f3cdb6dfbfac0
72fb047b5461ddb92c7e7e8103ce71ebaa5234172ae7f3148a6e40099b1011d5

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.115.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:55 GMT
expires: Fri, 10 Oct 2025 12:59:55 GMT
cache-control: public, max-age=31536000
age: 359703
last-modified: Tue, 06 Aug 2024 21:47:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.108.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.108.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13572, version 1.0
Size
14 kB (13572 bytes)
Hash
badb24884f677b75994e7a364f706c24
01ee375c9aab760cf87d8e7dcad7de94315590ea
174fed1882fad77f197907de3641c2c07bc630dbf9433533c6082517261bc01f

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.108.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 07:22:58 GMT
expires: Sat, 11 Oct 2025 07:22:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:41 GMT
content-type: font/woff2
age: 293520
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.102.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.102.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13072, version 1.0
Size
13 kB (13072 bytes)
Hash
3169e3432180250a72d4cecd9eefd5f7
6eb40a48663b6e5ead19e2146efb3fdbb78d4121
d2cdb30349207bfe2aecc45d35f97ab3459d76120a139136824444bb58765c38

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.102.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 21:42:29 GMT
expires: Sat, 11 Oct 2025 21:42:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:20 GMT
content-type: font/woff2
age: 241949
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.110.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.110.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12900, version 1.0
Size
13 kB (12900 bytes)
Hash
b65b9efab56ab535c27953bd60aa5b82
cd773357a1101da6b45a89db47c306c5833a1731
c2bfca8d0a48d05ebf193d8bf6d72b7a0bfb1c118f71bbc0533830b9f9275346

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.110.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 16:11:45 GMT
expires: Sat, 11 Oct 2025 16:11:45 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:41 GMT
content-type: font/woff2
age: 261793
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.116.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.116.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12232, version 1.0
Size
12 kB (12232 bytes)
Hash
d9ecb5e9856acb6965bae22dd3bc86a1
c17e78c67f419f3d2350b96647ba20dad7893c07
1c60acce522d70d5b127ffe77f9d26011f263a4f71858244a554949441ed0989

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.116.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 00:43:15 GMT
expires: Sun, 12 Oct 2025 00:43:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:43 GMT
content-type: font/woff2
age: 231103
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.112.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.112.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12616, version 1.0
Size
13 kB (12616 bytes)
Hash
091c9a2524bf04bc6c14e9fcb286a97e
59f3b598d203638f15d716cd3b27467cbf1f37f6
da9409d03afaec378ca27977d0fc37a40bc608c0310bfe8b23d73b7baa9a82a6

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.112.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 20:27:00 GMT
expires: Sun, 12 Oct 2025 20:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:21 GMT
content-type: font/woff2
age: 160078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.113.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.113.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12332, version 1.0
Size
12 kB (12332 bytes)
Hash
f11f607b38bdcd9769ef2a1f5c30c9e6
b3119742f5d73b11e133737d08bfe37c11a746d1
b1203e18624c71975288cba1f9dfb39bce549389dd379dda50e1df9043ab94bc

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.113.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:56 GMT
expires: Fri, 10 Oct 2025 12:59:56 GMT
cache-control: public, max-age=31536000
age: 359702
last-modified: Tue, 06 Aug 2024 21:47:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.103.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.103.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13192, version 1.0
Size
13 kB (13192 bytes)
Hash
37ccfa6ab5a1853308a4b64a4fc0c20e
6e0030ae518018e4ba672501975027d01ca42e89
95d6da8e3c48cbd35f9c16dda19ea95b9e9867b7e10485afde0e3833c562e2a7

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.103.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13192
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 20:32:44 GMT
expires: Sat, 11 Oct 2025 20:32:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:18 GMT
content-type: font/woff2
age: 246134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.114.woff2

142.250.74.163

200 OK

11 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.114.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11440, version 1.0
Size
11 kB (11440 bytes)
Hash
165c037218f27d374122f5e9be1427e4
05942b9808ddf9e6c342b3cf459ab7921f34483b
4159a6b4720226f7258bd01b1271f216ceef6a509d4cbc70459b41e8c81c6e15

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.114.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 01:31:38 GMT
expires: Sun, 12 Oct 2025 01:31:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:40 GMT
content-type: font/woff2
age: 228200
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.90.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.90.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14448, version 1.0
Size
14 kB (14448 bytes)
Hash
2957b76625e53bbba84c8c99d11f313e
92439d83591c5782deb8098d118fdb53e45f625a
3a121995d98d8bb21c5a4bf379b5ab7137c5322b9062dc6d5124fb1755868b53

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.90.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Oct 2024 03:38:35 GMT
expires: Thu, 09 Oct 2025 03:38:35 GMT
cache-control: public, max-age=31536000
age: 479783
last-modified: Tue, 06 Aug 2024 21:49:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.93.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.93.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13268, version 1.0
Size
13 kB (13268 bytes)
Hash
92e3e26d77aa5ea70de6c5c7ec15681b
326dc8220c70e2b03cd65c92a34c3bb4ee4eaeba
3a52c9a7bc9dbfb7b64a0ead87055bca1bdba3eafebda17a752c968af4dc4d6d

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.93.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Oct 2024 14:32:19 GMT
expires: Tue, 14 Oct 2025 14:32:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:45:35 GMT
content-type: font/woff2
age: 8559
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.102.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.102.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13316, version 1.0
Size
13 kB (13316 bytes)
Hash
551d683002d2e87536be98dd76f9b985
3f04a69f24f2a4b38b9e6374bcb01e0635067af0
fafb48a02f314ad3cdcfb27e61d9215f2a0b1f32d2cf4bc393b4298cd784846a

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.102.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13316
date: Mon, 14 Oct 2024 16:54:58 GMT
expires: Tue, 14 Oct 2025 16:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:37 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.92.woff2

142.250.74.163

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.92.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14932, version 1.0
Size
15 kB (14932 bytes)
Hash
fedf0bc6682858a79d14291dd0c7cc5a
356fcca2a1fc8db50fd3cf1415c2160af6917b0b
1cde700f8dacf9fd4a554db2377ade007218918b6dd3493521fb18e4c6ef89be

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.92.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 20:27:00 GMT
expires: Sun, 12 Oct 2025 20:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:20 GMT
content-type: font/woff2
age: 160078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.109.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.109.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12232, version 1.0
Size
12 kB (12232 bytes)
Hash
c48d2d649acc808083e413ffdca94081
9ee060483429a753605751bc784dd49157c61741
3d3aa0b113d90ab594d9b3f49c640a2260bc06fc8698e49f06349b542aa63090

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.109.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:56 GMT
expires: Fri, 10 Oct 2025 12:59:56 GMT
cache-control: public, max-age=31536000
age: 359702
last-modified: Tue, 06 Aug 2024 21:47:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.104.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.104.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13344, version 1.0
Size
13 kB (13344 bytes)
Hash
227be7ee011aabada78ecdfd71fb311c
74c786d4842928fff6f1d73d6237c4cbcf8ad21c
29cff9ec3cc89a79555cea9cd6b1ce1edf727bc255acf8537cdb6c43df66af46

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.104.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 04:41:04 GMT
expires: Sun, 12 Oct 2025 04:41:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:20 GMT
content-type: font/woff2
age: 216834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.93.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.93.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13140, version 1.0
Size
13 kB (13140 bytes)
Hash
cc01fdcb7009db80b216a1de53ca47ec
c59eb2706c6d6c8345d73f44957697f0158933df
5e1bb6065aa8d20042ef70ac6541552ac6d1a92df5a54314d47d028f5ee0396b

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.93.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 20:54:15 GMT
expires: Sat, 11 Oct 2025 20:54:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:18 GMT
content-type: font/woff2
age: 244843
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.107.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.107.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12656, version 1.0
Size
13 kB (12656 bytes)
Hash
b861590c15ab32ff43fde81da09876a1
42c558a82e962ed50d798a859fd25a45a017a439
4c1554955b32bbfe91c618e872b3f9655c7746d030f88c2433fb001fdb24402c

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.107.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 13:43:37 GMT
expires: Sat, 11 Oct 2025 13:43:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:40 GMT
content-type: font/woff2
age: 270681
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_otoku.png

103.10.237.238

200 OK

1.4 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_otoku.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1354 bytes)
Hash
b73a2e1c8e4a7404f352516be161d5e1
877c5d84abcad4572e7166a7eec7d70cba796391
894c76bedfed8ff389836a565053abfa0a468414c25887542f6f308cf2e34134

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/icon_otoku.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:38 GMT
ETag: "24881fa-54a-620fa3972c680"
Accept-Ranges: bytes
Content-Length: 1354
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.91.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.91.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14132, version 1.0
Size
14 kB (14132 bytes)
Hash
f719a20618ac09df5082443f2dd88d82
2d53142ca053653a6275ddaad688c7b34123277b
85018b5f5b89857b029c344823f75ffca385d0d7b073282875995a89fafb313f

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.91.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:56 GMT
expires: Fri, 10 Oct 2025 12:59:56 GMT
cache-control: public, max-age=31536000
age: 359702
last-modified: Tue, 06 Aug 2024 21:49:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.95.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.95.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13520, version 1.0
Size
14 kB (13520 bytes)
Hash
54468a76c4acaabe9e1156409148e79c
b833c0c036ea43d3e8a5fc74ed83d26587f4ee08
8391acb98eea69dc253e72558ceff7ceb65a188ef8d338baf98d9d05e4d46442

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.95.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 04:41:04 GMT
expires: Sun, 12 Oct 2025 04:41:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:18 GMT
content-type: font/woff2
age: 216834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.85.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.85.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14152, version 1.0
Size
14 kB (14152 bytes)
Hash
06a89c8f6c728c76dd291df7d072d1f1
a4a4b5bd6e70d6fc35269a13a7c68e1d6901ab3d
23a3808714db3a7fdab3c4fc519f7eee581a541ad4ddcd2fdf858fcc9de27676

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.85.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14152
date: Mon, 14 Oct 2024 16:54:58 GMT
expires: Tue, 14 Oct 2025 16:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:45:31 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.90.woff2

142.250.74.163

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.90.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14616, version 1.0
Size
15 kB (14616 bytes)
Hash
ac9fd675d52a4581e21d481a18397630
906187cc73b62f7a80d1cebd1b3bd7e046960dfc
d07b974bc9155b26bbc95fe0fb9a32186be0e82cf54720d948446e6b60452c63

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.90.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14616
date: Mon, 14 Oct 2024 16:54:58 GMT
expires: Tue, 14 Oct 2025 16:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:45:33 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.105.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.105.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13572, version 1.0
Size
14 kB (13572 bytes)
Hash
19bd48bffee961d31242a34b141d53a2
264ac1975ff28f8f69c99603e97a6fa7a918fa87
b96da23666c9ba1431764d8a56deeadc4e974d555d04befc91d05e00d1f56ea0

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.105.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 04:41:04 GMT
expires: Sun, 12 Oct 2025 04:41:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:42 GMT
content-type: font/woff2
age: 216834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.88.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.88.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14048, version 1.0
Size
14 kB (14048 bytes)
Hash
b885c254246cc64d62b7dd54c71a850c
784ad9a337f64fb4d32504b75e5bd85301015351
b8be91a962d89b09ca7ad8dce79e58d528b3dcaec5e09b48712fb62acd908ef2

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.88.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 18:02:35 GMT
expires: Sat, 11 Oct 2025 18:02:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:36 GMT
content-type: font/woff2
age: 255143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.118.woff2

142.250.74.163

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.118.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18904, version 1.0
Size
19 kB (18904 bytes)
Hash
681b877afdad188a94b1c71cef4e61ba
dd552097d248c1f1f6d1ba60224ebbd6b798856c
cfba131d5c7c236ee75380260ecbd2f12926995bd9aae5704289783f716d58f7

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.118.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 00:43:17 GMT
expires: Sun, 12 Oct 2025 00:43:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:41 GMT
content-type: font/woff2
age: 231101
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.110.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.110.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13120, version 1.0
Size
13 kB (13120 bytes)
Hash
02cf828e6bf0176c119f608841522095
8cd2d29cd5f9a8c11acd9f10d9e94c83c8b75804
71ab24375e734955fe18181742b9478029fb555e29c88884787e20bf465e976f

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.110.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Oct 2024 12:39:43 GMT
expires: Tue, 14 Oct 2025 12:39:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:20 GMT
content-type: font/woff2
age: 15315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.85.woff2

142.250.74.163

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.85.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13792, version 1.0
Size
14 kB (13792 bytes)
Hash
7f557d36ca02a1cab6a17809efbcbfee
297ddc160da778a89b80c00e35925c5b2100115a
6124bc161f6ac2f91727ce221029df981f76635811db518d17ea4a7eb440b473

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.85.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 18:15:33 GMT
expires: Sat, 11 Oct 2025 18:15:33 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:37 GMT
content-type: font/woff2
age: 254365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.111.woff2

142.250.74.163

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.111.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13088, version 1.0
Size
13 kB (13088 bytes)
Hash
3381f7e70cd92a6a2248150e4d556c08
1a3c1e55cc0a32738fd375c20da6f03680145781
ac2bb8eff3c1f026808c5dcc3b9dd7c75376b6a56ca2ab7d5179bc6b75dfe57f

HTTP Headers

GET /s/bizudpgothic/v14/hES36X5pHAIBjmS84VL0Bue83nBkUWsdImkzMGXUb1G8eoOcUtmCbUaX.111.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13088
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 12:59:55 GMT
expires: Fri, 10 Oct 2025 12:59:55 GMT
cache-control: public, max-age=31536000
age: 359703
last-modified: Tue, 06 Aug 2024 21:47:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjVWYtTQ.woff2

142.250.74.163

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjVWYtTQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27912, version 1.0
Size
28 kB (27912 bytes)
Hash
a7f9c2db41228e95df3bed65230679c3
170ef42adc808cd711fa1cbc27c25a7fbc8ef6b5
2479d8cf168477d2596dc4f4acd0cc145e7d7821a807dc7ef81e56497983f50f

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjVWYtTQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 12:33:53 GMT
expires: Sun, 12 Oct 2025 12:33:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:47:14 GMT
content-type: font/woff2
age: 188465
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.119.woff2

142.250.74.163

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.119.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22180, version 1.0
Size
22 kB (22180 bytes)
Hash
0c2f088a897a9544ed730596fb6f0751
9848a8a29232d6e095c1b57f15b941e69c76564d
a7e93ac57ba392674b51dc8c8e2732216cb5c0a3a5b23216eaead0731a159b03

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 09:52:30 GMT
expires: Sun, 12 Oct 2025 09:52:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:22 GMT
content-type: font/woff2
age: 198148
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_ptby.png

103.10.237.238

200 OK

1.2 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/icon_ptby.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1151 bytes)
Hash
2a3193f579235a0fef8065ba8d1b31e7
bf60f2d47ba283ac9a2ba981f8076dad2a9c1ce2
efeb8969d9c6dc8bf9915cb08b435c71cc0e3afa337e37abe2c38b1c4df34fae

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/icon_ptby.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:38 GMT
ETag: "24881fe-47f-620fa3972c680"
Accept-Ranges: bytes
Content-Length: 1151
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_mail_unread.png

103.10.237.238

200 OK

831 B

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_mail_unread.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
831 B (831 bytes)
Hash
8c17a3f4b1e493d348dd833b583aa22c
913d712d5a2fb3c520d7a983956ccc635b380d41
0cb820b92efa1d93df7dad20236e58951040c7d1dd13e97244feb0a1f9d9f385

HTTP Headers

GET /freefiles/md8cp6vp/koibana/icon_mail_unread.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 13:01:00 GMT
ETag: "244c055-33f-620fa4ca41b00"
Accept-Ranges: bytes
Content-Length: 831
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.115.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.115.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12072, version 1.0
Size
12 kB (12072 bytes)
Hash
71571e86320dd41454d8a7cf6d3ee80e
5c10d2826ecf1a1254d11d4f3d8c137cae69b90f
4a5e16229c6ad14b49b9f1a1776ac06df8ac871d3270cb7b7503d2b211e24c88

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.115.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 03:08:17 GMT
expires: Sun, 12 Oct 2025 03:08:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Aug 2024 21:49:23 GMT
content-type: font/woff2
age: 222401
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.116.woff2

142.250.74.163

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.116.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12376, version 1.0
Size
12 kB (12376 bytes)
Hash
bc554bd0b77319c93e868154d7b6b2f3
26860ce8fb2ae53b47365394961efc761f1ad5bf
a332ea916e98bd9e24b9c7cbbca4c7c20c54b45a336a502a4ab0bb52365684bd

HTTP Headers

GET /s/bizudpgothic/v14/hESq6X5pHAIBjmS84VL0Bue85skjZWRPXAJTO2rBfVqGbYOlV8mIeCP7jepv.116.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://daytimesalesperson.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Oct 2024 07:48:34 GMT
expires: Fri, 10 Oct 2025 07:48:34 GMT
cache-control: public, max-age=31536000
age: 378384
last-modified: Tue, 06 Aug 2024 21:49:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_ptby.png

103.10.237.238

200 OK

1.2 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_ptby.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1151 bytes)
Hash
2a3193f579235a0fef8065ba8d1b31e7
bf60f2d47ba283ac9a2ba981f8076dad2a9c1ce2
efeb8969d9c6dc8bf9915cb08b435c71cc0e3afa337e37abe2c38b1c4df34fae

HTTP Headers

GET /freefiles/md8cp6vp/koibana/icon_ptby.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 13:01:00 GMT
ETag: "244c05c-47f-620fa4ca41b00"
Accept-Ranges: bytes
Content-Length: 1151
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_otoku.png

103.10.237.238

200 OK

1.4 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_otoku.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1354 bytes)
Hash
b73a2e1c8e4a7404f352516be161d5e1
877c5d84abcad4572e7166a7eec7d70cba796391
894c76bedfed8ff389836a565053abfa0a468414c25887542f6f308cf2e34134

HTTP Headers

GET /freefiles/md8cp6vp/koibana/icon_otoku.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 13:01:00 GMT
ETag: "244c058-54a-620fa4ca41b00"
Accept-Ranges: bytes
Content-Length: 1354
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_home.png

103.10.237.238

200 OK

606 B

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana/icon_home.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
606 B (606 bytes)
Hash
138a2824847a1457fde1c1b5189d0c60
7813c21b2e3ed792c0f44f8697e214df824a0dd5
e163772aeba9f66740b24b69ab92f0d7c137c0ac9127f47af7cbb305b5b8ae20

HTTP Headers

GET /freefiles/md8cp6vp/koibana/icon_home.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 13:01:00 GMT
ETag: "244c051-25e-620fa4ca41b00"
Accept-Ranges: bytes
Content-Length: 606
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

o.pki.goog/wr2

142.250.74.67

200 OK

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9bb5178564ab48ac10d09a5ec8becd0c
f14466610ec3d91c522ae3a6704c6b63932e34a2
85c91c52d00bfa51b4590d67108c514ed152a88ab624b971785e5e08d3a5ea63

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Oct 2024 16:54:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

216.58.207.234

200 OK

30 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint80:2E:9C:80:BE:20:08:CB:81:6F:92:4C:83:5C:1E:73:D7:6B:F3:27
ValidityTue, 24 Sep 2024 03:17:04 GMT - Tue, 17 Dec 2024 03:17:03 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Oct 2024 11:44:54 GMT
expires: Tue, 14 Oct 2025 11:44:54 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18605
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/koibana_logo.png

103.10.237.238

200 OK

87 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/koibana_logo.png
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
PNG image data, 939 x 480, 8-bit/color RGBA, non-interlaced
Size
87 kB (87184 bytes)
Hash
a46051c69f2b09ccafc75ec0bb4078a0
8e5851141cd5f56d9292f91fbb2a275b3890b71c
fa6b4dcdd15fed93330a8c9d11f1e14523469dd4a5a55bcea38c50ea92cb95ff

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/koibana_logo.png HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:58 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sat, 31 Aug 2024 12:55:38 GMT
ETag: "2488207-15490-620fa3972c680"
Accept-Ranges: bytes
Content-Length: 87184
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

GET daytimesalesperson.com/freefiles/md8cp6vp/koibana2/koi2fav.ico

103.10.237.238

200 OK

53 kB

URL GET HTTP/1.1
daytimesalesperson.com/freefiles/md8cp6vp/koibana2/koi2fav.ico
IP
103.10.237.238:443
ASN
#132827 GATEWAY INC

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerLet's Encrypt
Subjectcuddle.koi-ba-na.com
FingerprintEF:33:7E:81:6C:0B:08:40:DE:02:7C:C6:AF:E4:54:2C:73:72:EA:B0
ValidityThu, 05 Sep 2024 05:31:43 GMT - Wed, 04 Dec 2024 05:31:42 GMT

File type
MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel
Size
53 kB (52916 bytes)
Hash
c360d4909b32c25e541697ffb0e99138
6623b60751d42909798f149d23922c0959578abd
28fbe2335bb56891333ba0fa0efa78cb17f15d232a455d3df7b19f4c076ff4fa

HTTP Headers

GET /freefiles/md8cp6vp/koibana2/koi2fav.ico HTTP/1.1
Host: daytimesalesperson.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Cookie: JSESSIONID=2FE4946501E6476862FCA1F73E77B422
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 14 Oct 2024 16:54:59 GMT
Server: Apache/2.2.22 (Unix) DAV/2 mod_ssl/2.2.22 OpenSSL/1.0.2j PHP/5.4.45
Last-Modified: Sun, 01 Sep 2024 09:42:23 GMT
ETag: "2488412-ceb4-6210ba42c7dc0"
Accept-Ranges: bytes
Content-Length: 52916
Cache-Control: private, max-age=100
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/x-icon

GET fonts.googleapis.com/css2?family=BIZ+UDPGothic:wght@400;700&display=swap

216.58.207.234

200 OK

232 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=BIZ+UDPGothic:wght@400;700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://daytimesalesperson.com/mail/view?id=6&mailid=m8934258726&loginkey=4fa83e19f81bcf25b1a82c2e120378ace4dc857931e003c2ad03dafe79a0d00b
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint80:2E:9C:80:BE:20:08:CB:81:6F:92:4C:83:5C:1E:73:D7:6B:F3:27
ValidityTue, 24 Sep 2024 03:17:04 GMT - Tue, 17 Dec 2024 03:17:03 GMT

File type
ASCII text, with very long lines (1981)
Size
232 kB (231882 bytes)
Hash
ddf687f94a2fbeea0e071191d6b3e037
971aa62d98749f46bc0a57fe5c7aa1b700c66cad
63f74adb15cd434b542de4d5ab650bfac7f66aff8231bcb4391574125ada14bc

HTTP Headers

GET /css2?family=BIZ+UDPGothic:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://daytimesalesperson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Oct 2024 16:54:56 GMT
date: Mon, 14 Oct 2024 16:54:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (79)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP