r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10480
Expires: Sun, 04 Dec 2022 01:33:26 GMT
Date: Sat, 03 Dec 2022 22:38:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16086
Expires: Sun, 04 Dec 2022 03:06:52 GMT
Date: Sat, 03 Dec 2022 22:38:46 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1610
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:46 GMT
Etag: "638b2570-1d7"
Last-Modified: Sat, 03 Dec 2022 22:11:56 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aeqWkvvEd1SMDLIIjEkBwFdYtUKQnnz0+ZrXCt133DMGI6gAKTTt2jia6E1kT4zll20o6Z4MZnk=
x-amz-request-id: ZQNWVHNS2J0RA3S8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 21:46:43 GMT
age: 3123
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 22:18:18 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1228
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 22:08:58 GMT
cache-control: public,max-age=3600
age: 1788
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.co.uk/search/label/H%C4%B1zl%C4%B1%20Okuma
172.217.21.161302 Moved Temporarily 211 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.co.uk/search/label/H%C4%B1zl%C4%B1%20Okuma
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 91a0046606b0e4d8c71c3f584e557dad
605bd34b95f982476e150086a37a3283197d36ee
94c605596edcfe3804954ab97ec8a39ba6a5e7e59ec52a47a8ff12f40b87c855
GET /search/label/H%C4%B1zl%C4%B1%20Okuma HTTP/1.1
Host: bookworm-bilgeadam.blogspot.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 03 Dec 2022 22:38:46 GMT
Expires: Sat, 03 Dec 2022 22:38:46 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 211
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1599
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:46 GMT
Last-Modified: Sat, 03 Dec 2022 22:12:07 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /H+FzMHmvxPB9qwMPmYxGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TrzwM7TkNSdSPZDhGLUMxnElS8A=
bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
172.217.21.161200 OK 26 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash a853ce1a1571bb4a4e37d07cce1b8568
498f9f16f5b9b94e616c287790038aa9d3fcb373
c91dad049a961d392343154e04886bf560db053a43d54e98b44856aa2c2d8304
GET /search/label/H%C4%B1zl%C4%B1%20Okuma HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 03 Dec 2022 22:38:47 GMT
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 25527
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 21a200da38bc57ee6e48da9f5d712d50
079f8d3825239306a750569bfb19cb3731fab7cd
0c34bb8557a248159f0c079b2d125b0ce730bfede5ff9e5a922046804761478c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 02:44:42 GMT
Expires: Wed, 07 Dec 2022 02:44:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 18:54:36 GMT
Content-Type: text/javascript
Age: 330845
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:47:53 GMT
expires: Wed, 29 Nov 2023 21:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 20:52:41 GMT
content-type: text/css
age: 348654
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 21a200da38bc57ee6e48da9f5d712d50
079f8d3825239306a750569bfb19cb3731fab7cd
0c34bb8557a248159f0c079b2d125b0ce730bfede5ff9e5a922046804761478c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.161200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 22:00:58 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 2269
ETag: "vdd7"
Content-Type: image/gif
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 406518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
216.58.207.233200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:41:39 GMT
expires: Tue, 06 Dec 2022 10:41:39 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 03:53:34 GMT
content-type: image/png
age: 388628
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
216.58.207.226200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (3577)
Hash 025097ba5445f3ac2b7318f7d9f005af
60514b4a849ed08a67f4c7be609f3ebb95e85120
c0c189c0cd6120964d5556f15c69d811b5363bada6fcc0a5064c16a38a40205a
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 11846932799521484288
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36169
X-XSS-Protection: 0
resources.blogblog.com/img/icon_feed12.png
216.58.207.233200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 216.58.207.233:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:00:15 GMT
expires: Tue, 06 Dec 2022 14:00:15 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 17:52:28 GMT
content-type: image/png
age: 376712
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
216.58.207.233200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:06:04 GMT
expires: Tue, 06 Dec 2022 15:06:04 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 12:51:31 GMT
content-type: image/gif
age: 372763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cd8c709d33861f92a8d0d016a198cd41
2b71fa86c94f5d50a8ce65d02b4c5b8d010eb2f2
a48025cdad584ab4cce456815b00f144c47df1f9a744dc962b4bdb33070a2827
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.226200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (4885)
Hash 6dde340b956a51e23558593ad40e54db
975216ad61239bd8b7f98fb6c7777ff416175574
c9429e990f898956fb5659193f3a913eb46291bc4042cc7e7b498df79e8914c9
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 13023560007572861907
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52172
X-XSS-Protection: 0
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:21 GMT
expires: Tue, 06 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 01:54:20 GMT
content-type: image/gif
age: 375566
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 21a200da38bc57ee6e48da9f5d712d50
079f8d3825239306a750569bfb19cb3731fab7cd
0c34bb8557a248159f0c079b2d125b0ce730bfede5ff9e5a922046804761478c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 03 Dec 2022 22:38:47 GMT
expires: Sat, 03 Dec 2022 22:38:47 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resim.cokbilgi.com/hizli-okuma/okuma-nedir-speed-reading.jpg
89.163.225.73301 Moved Permanently 449 B URL HTTP/1.1 resim.cokbilgi.com/hizli-okuma/okuma-nedir-speed-reading.jpg
IP 89.163.225.73:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 81b86344e90d8d322dab8353036efd50
befcfa244bee748f35c94f45a65ef754fdad3fc2
86f19cb22656df46165dd8ad27285900b450fa09a030c8e7c53cb62839772116
GET /hizli-okuma/okuma-nedir-speed-reading.jpg HTTP/1.1
Host: resim.cokbilgi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 301 Moved Permanently
content-type: text/html
date: Sat, 03 Dec 2022 22:38:47 GMT
server: LiteSpeed
location: https://resim.cokbilgi.com/hizli-okuma/okuma-nedir-speed-reading.jpg
content-encoding: gzip
vary: Accept-Encoding
transfer-encoding: chunked
connection: Keep-Alive
resim.cokbilgi.com/hizli-okuma/hizli-okuma-yontemleri.jpg
89.163.225.73301 Moved Permanently 449 B URL HTTP/1.1 resim.cokbilgi.com/hizli-okuma/hizli-okuma-yontemleri.jpg
IP 89.163.225.73:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 81b86344e90d8d322dab8353036efd50
befcfa244bee748f35c94f45a65ef754fdad3fc2
86f19cb22656df46165dd8ad27285900b450fa09a030c8e7c53cb62839772116
GET /hizli-okuma/hizli-okuma-yontemleri.jpg HTTP/1.1
Host: resim.cokbilgi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 301 Moved Permanently
content-type: text/html
date: Sat, 03 Dec 2022 22:38:47 GMT
server: LiteSpeed
location: https://resim.cokbilgi.com/hizli-okuma/hizli-okuma-yontemleri.jpg
content-encoding: gzip
vary: Accept-Encoding
transfer-encoding: chunked
connection: Keep-Alive
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.226200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.226:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 13:15:33 GMT
Expires: Sat, 17 Dec 2022 13:15:33 GMT
Cache-Control: public, max-age=1209600
Age: 33794
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 03 Dec 2022 22:38:47 GMT
last-modified: Sat, 03 Dec 2022 22:38:47 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:47:40 GMT
expires: Wed, 29 Nov 2023 19:47:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 355867
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hizliokumateknikleri.com/images/Hizli_Okuma_Kurslari.jpg
40.118.31.7404 Not Found 1.2 kB URL HTTP/1.1 www.hizliokumateknikleri.com/images/Hizli_Okuma_Kurslari.jpg
IP 40.118.31.7:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /images/Hizli_Okuma_Kurslari.jpg HTTP/1.1
Host: www.hizliokumateknikleri.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 03 Dec 2022 22:38:47 GMT
Content-Length: 1245
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc14"
Expires: Sun, 04 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb25"
Content-Type: image/jpeg
Age: 0
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 22:38:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.egitimvekurslar.com/images/201012/2751_ku1292519287.jpg
54.170.150.214200 OK 18 kB URL HTTP/1.1 www.egitimvekurslar.com/images/201012/2751_ku1292519287.jpg
IP 54.170.150.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 385x308, components 3\012- data
Hash 706a097fec338eee68c536836f837391
74160d00046b8aa00c66b8d88103c84035e5bfcf
a7418f1ac2b2205bf6bd629502438fd960c63ea636788d25be3edb74d5ec7eee
GET /images/201012/2751_ku1292519287.jpg HTTP/1.1
Host: www.egitimvekurslar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: Apache
Last-Modified: Wed, 07 Nov 2018 15:18:24 GMT
Accept-Ranges: bytes
Content-Length: 17891
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 22:38:47 GMT
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33d4c0eb73252b9ee70cebc62151b0dd
31bc157147ab1329097d7c6f60bd077186c24bf8
fbf26b2930e09e9f73ff165eba2ce1f953054ebb7f47d425fd656108131b5cba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.fibhaber.com/images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg
78.135.109.6301 Moved Permanently 20 B URL HTTP/1.1 www.fibhaber.com/images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg
IP 78.135.109.6:0
ASN #207983 Codit Teknoloji Tic. Ltd. Sti.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg HTTP/1.1
Host: www.fibhaber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=feqkset68lkqktcfcmqli8uh11; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=utf-8
location: https://www.fibhaber.com/images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg
vary: Accept-Encoding
content-length: 20
content-encoding: gzip
date: Sat, 03 Dec 2022 22:38:47 GMT
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0QutFRbYgat6cSQid3fr7CUPxtMb1k7L4F6tOJ0Df0dpnG2PwoD0XlBpO1C2qZ2Up1B94_OeLstussoS2TifvrGEnDR-HKAbgOLNq5FIlwsvIma09f0VOqoHcxWcELWVLp9Zo0VeA=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0QutFRbYgat6cSQid3fr7CUPxtMb1k7L4F6tOJ0Df0dpnG2PwoD0XlBpO1C2qZ2Up1B94_OeLstussoS2TifvrGEnDR-HKAbgOLNq5FIlwsvIma09f0VOqoHcxWcELWVLp9Zo0VeA=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha0QutFRbYgat6cSQid3fr7CUPxtMb1k7L4F6tOJ0Df0dpnG2PwoD0XlBpO1C2qZ2Up1B94_OeLstussoS2TifvrGEnDR-HKAbgOLNq5FIlwsvIma09f0VOqoHcxWcELWVLp9Zo0VeA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 04 Dec 2022 22:38:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 22:38:47 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 49580bf15d6c9cd5b8571621b4e8141c
8e889626f8507eebff70a7e5c74c7348a364c64d
3424d8286f316866dad95f4686bb070e35be4ee7c12cb0975bb159731208b7ae
GET /-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve28"
Expires: Sun, 04 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kitap-okumak.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: fife
Content-Length: 4949
X-XSS-Protection: 0
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1x_EfTjLd2DcmGYlFCj_cJD1V3Vqz1wzRZ3UlejQkc6eQIYmyV9H8UM_ro4Th7ZPV-CDakmnkIjR_WQhg5QdKTKIgc8mTtljKseFOgbygNxhRuXbp2rHJs_X0=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1x_EfTjLd2DcmGYlFCj_cJD1V3Vqz1wzRZ3UlejQkc6eQIYmyV9H8UM_ro4Th7ZPV-CDakmnkIjR_WQhg5QdKTKIgc8mTtljKseFOgbygNxhRuXbp2rHJs_X0=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha1x_EfTjLd2DcmGYlFCj_cJD1V3Vqz1wzRZ3UlejQkc6eQIYmyV9H8UM_ro4Th7ZPV-CDakmnkIjR_WQhg5QdKTKIgc8mTtljKseFOgbygNxhRuXbp2rHJs_X0=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 04 Dec 2022 22:38:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 22:38:47 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v471"
Content-Type: image/jpeg
Age: 0
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
216.58.207.233200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 216.58.207.233:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 12:40:06 GMT
Expires: Tue, 06 Dec 2022 12:40:06 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Content-Type: image/png
Age: 381521
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.161200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve2b"
Expires: Sun, 04 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0V9Q_YVqfNCArKLvzkOHkwUgW5gUx3I-wO-3cshR692rqCKOfUMqTzHcnGlgiU9omNOomkdoDFEkMg6EUneW3PDqxUfKCPk7d7RGYDpdx_Q5afhpAWz9CLvNoYMVRHUnPNB5JB2ax3j4kOrg=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0V9Q_YVqfNCArKLvzkOHkwUgW5gUx3I-wO-3cshR692rqCKOfUMqTzHcnGlgiU9omNOomkdoDFEkMg6EUneW3PDqxUfKCPk7d7RGYDpdx_Q5afhpAWz9CLvNoYMVRHUnPNB5JB2ax3j4kOrg=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 123988aacab624dc542df8674e619da7
83d750b8ea2e457827f4f2ecb780016e133c7ad9
2418ec4d92edeb1f3313546e66a3fb45cc98691ff9a3f795d3368a3919b3b701
GET /blogger_img_proxy/ANbyha0V9Q_YVqfNCArKLvzkOHkwUgW5gUx3I-wO-3cshR692rqCKOfUMqTzHcnGlgiU9omNOomkdoDFEkMg6EUneW3PDqxUfKCPk7d7RGYDpdx_Q5afhpAWz9CLvNoYMVRHUnPNB5JB2ax3j4kOrg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 22:38:47 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
216.58.211.2200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sat, 03 Dec 2022 15:22:03 GMT
expires: Sat, 17 Dec 2022 15:22:03 GMT
cache-control: public, max-age=1209600
age: 26204
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 64eb3a8f7cc11324c6f4c77e1c11f7ee
8ad889db020018b726362929a9477872a6808f0a
481082e2478f937b15faec7128ab1a60bf1157b417bfa63022472f434ae240fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071036
216.58.207.226200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071036
IP 216.58.207.226:0
File type ASCII text, with very long lines (5918)
Size 120 kB (119787 bytes)
Hash 645dad72d68d06df83845a6b074a4bab
5ddd5db4153cab5a72bf2eef020baf1faa8ca218
28725adc5f7bc02d84e1ab5cad8e1c66491e6ca4e5d8b6f527ba28432b241233
GET /pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071036 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 03 Dec 2022 22:38:47 GMT
expires: Sat, 03 Dec 2022 22:38:47 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 9794424695931220212
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119787
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-oku.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18e"
Content-Type: image/jpeg
Age: 0
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 07:09:33 GMT
Expires: Tue, 06 Dec 2022 07:09:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 05:51:11 GMT
Content-Type: image/png
Age: 401354
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/H%25C4%25B1zl%25C4%25B1%2520Okuma&w=1280&h=1024&n=1&ce=true&r=0.9634631159374001&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/H%25C4%25B1zl%25C4%25B1%2520Okuma&w=1280&h=1024&n=1&ce=true&r=0.9634631159374001&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/H%25C4%25B1zl%25C4%25B1%2520Okuma&w=1280&h=1024&n=1&ce=true&r=0.9634631159374001&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 22:38:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-Zkn5IxfNEQU/TxWcMwnSWiI/AAAAAAAABpY/8rauvSm2D-M/s200/hizli-okuma-egzersizleri.jpg
142.250.74.161200 OK 8.6 kB URL HTTP/1.1 4.bp.blogspot.com/-Zkn5IxfNEQU/TxWcMwnSWiI/AAAAAAAABpY/8rauvSm2D-M/s200/hizli-okuma-egzersizleri.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x160, components 3\012- data
Hash 71e99e012f7e28450839f58d3c854557
807bb3c9c355a669de011a11fbc32b0d68d9e7f5
08b44efb3d7989930a1642bedc484a6b4de9ba8db5cb6b3b983ff2742d77bb79
GET /-Zkn5IxfNEQU/TxWcMwnSWiI/AAAAAAAABpY/8rauvSm2D-M/s200/hizli-okuma-egzersizleri.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v696"
Expires: Sun, 04 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hizli-okuma-egzersizleri.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: fife
Content-Length: 8563
X-XSS-Protection: 0
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Fri, 02-Dec-2022 22:38:46 GMT; path=/
ASP.NET_SessionId=puzbpm3qawkjnzqsypsc35dn; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Sun, 04-Dec-2022 22:38:46 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 339
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8296c0e8787b1d95df8fdf8e62168075
a5ff9e2b77e2fc392a62c9f7916a81d91bce97cc
da832f7c3b3db6d8b3169f1f59a4569288cc55bd0c8c34699f00052682c3569a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA832F7C3B3DB6D8B3169F1F59A4569288CC55BD0C8C34699F00052682C3569A"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4295
Expires: Sat, 03 Dec 2022 23:50:22 GMT
Date: Sat, 03 Dec 2022 22:38:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 20:41:08 GMT
expires: Sat, 03 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 7059
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8296c0e8787b1d95df8fdf8e62168075
a5ff9e2b77e2fc392a62c9f7916a81d91bce97cc
da832f7c3b3db6d8b3169f1f59a4569288cc55bd0c8c34699f00052682c3569a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA832F7C3B3DB6D8B3169F1F59A4569288CC55BD0C8C34699F00052682C3569A"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4295
Expires: Sat, 03 Dec 2022 23:50:22 GMT
Date: Sat, 03 Dec 2022 22:38:47 GMT
Connection: keep-alive
s.gruppal.com/fr/t/1331913520.jpg
95.128.57.48200 OK 17 kB URL HTTP/1.1 s.gruppal.com/fr/t/1331913520.jpg
IP 95.128.57.48:0
ASN #48737 Dorabase Veri Merkezi Hizmetleri A.S.
File type JPEG image data, baseline, precision 8, 450x300, components 3\012- data
Hash 1bb837b18b8c2f1a6a0ea81795a529c2
97c630ab8feeec1f679aeebdf7c9b0ce2df32c39
1fc71ade89ec1f039f291ee4f9ecaa4f1b48821b0ae61690aa911c92404da062
GET /fr/t/1331913520.jpg HTTP/1.1
Host: s.gruppal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 22:38:47 GMT
Content-Type: image/jpeg
Content-Length: 17329
Last-Modified: Fri, 31 Oct 2014 21:06:09 GMT
Connection: keep-alive
ETag: "5453f9c1-43b1"
Expires: Mon, 02 Jan 2023 22:38:47 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 05e74b8932642c0993ada59c7fced89d
68209a6ca9bd9b8609dc4ea5a33737d1ea2c0f0f
17f3187fade0690622b16bf32b146e3990bc515277e29543364b3203a37f5bd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17F3187FADE0690622B16BF32B146E3990BC515277E29543364B3203A37F5BD4"
Last-Modified: Sat, 03 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 04:38:47 GMT
Date: Sat, 03 Dec 2022 22:38:47 GMT
Connection: keep-alive
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.8 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1108), with CRLF line terminators
Hash c4c70e418be34dc730d11182d84913f2
b2a2f69739d13b5f11c73d43910eed287cb9ba8b
bc08c476633a1f6bf8b18be9b9cd768208097ed223b534debf43aa8677ffdabd
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Fri, 02-Dec-2022 22:38:46 GMT; path=/
ASP.NET_SessionId=rzjobupgadoe2cqnardyziks; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 2823
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1454471598&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2FH%25C4%25B1zl%25C4%25B1%2520Okuma&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20H%C4%B1zl%C4%B1%20Okuma&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1409805054&gjid=623946802&cid=954132978.1670107126&tid=UA-19003279-7&_gid=637418732.1670107126&_r=1&_slc=1&z=1104307188
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1454471598&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2FH%25C4%25B1zl%25C4%25B1%2520Okuma&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20H%C4%B1zl%C4%B1%20Okuma&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1409805054&gjid=623946802&cid=954132978.1670107126&tid=UA-19003279-7&_gid=637418732.1670107126&_r=1&_slc=1&z=1104307188
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1454471598&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2FH%25C4%25B1zl%25C4%25B1%2520Okuma&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20H%C4%B1zl%C4%B1%20Okuma&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1409805054&gjid=623946802&cid=954132978.1670107126&tid=UA-19003279-7&_gid=637418732.1670107126&_r=1&_slc=1&z=1104307188 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://bookworm-bilgeadam.blogspot.com
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://bookworm-bilgeadam.blogspot.com
date: Sat, 03 Dec 2022 22:38:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmApixAAAy2fEmfovvkD0WQsFEyuRnDZfu8F-hHyYAjKoIm63IFYoK4XIOIiNNRq5i9nhIA8rmbxSaRZ0JpqxjpXoTK2vQ
172.217.21.161200 OK 246 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmApixAAAy2fEmfovvkD0WQsFEyuRnDZfu8F-hHyYAjKoIm63IFYoK4XIOIiNNRq5i9nhIA8rmbxSaRZ0JpqxjpXoTK2vQ
IP 172.217.21.161:0
File type JSON data\012- , ASCII text, with very long lines (391), with no line terminators
Hash 5652e8c828da0f504dc083c1adfc154f
86aa5c9795dff28e4d8d1e52a1f73b1b3b6b1a01
8ad47ecc4126fdba4434d571021eddccb62520e285996c41176a1894ee06281b
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmApixAAAy2fEmfovvkD0WQsFEyuRnDZfu8F-hHyYAjKoIm63IFYoK4XIOIiNNRq5i9nhIA8rmbxSaRZ0JpqxjpXoTK2vQ HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
Cookie: cwou_bookwormbilgeadam=1670107125; bwou_bookwormbilgeadam=1670107125; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 03 Dec 2022 22:38:47 GMT
Expires: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 246
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 175844
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 99c6e888e109cfca37de80b29e284001
3082cf79c611491ae64e5599f55e9e4908c457a6
19503ecb247142c34038b8ac5e0a5ab5bc7d94ef205beb3edde394275010e15f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 194284
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11579
Expires: Sun, 04 Dec 2022 01:51:47 GMT
Date: Sat, 03 Dec 2022 22:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11579
Expires: Sun, 04 Dec 2022 01:51:47 GMT
Date: Sat, 03 Dec 2022 22:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11579
Expires: Sun, 04 Dec 2022 01:51:47 GMT
Date: Sat, 03 Dec 2022 22:38:48 GMT
Connection: keep-alive
www.hizliokumateknigi.com/images/stories/hizli-okuma-kursu.png
78.47.93.62404 Not Found 107 B URL HTTP/1.1 www.hizliokumateknigi.com/images/stories/hizli-okuma-kursu.png
IP 78.47.93.62:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1f1ab1003fec1cbbe630f8a25a93a2bf
8cec320eff3e038626b6f5edb5be9e98d5a5bbca
085420c1207434394ec6e170849d50b661e59c6e0a977ab43f5c74a37de71fcd
GET /images/stories/hizli-okuma-kursu.png HTTP/1.1
Host: www.hizliokumateknigi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 03 Dec 2022 22:38:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11579
Expires: Sun, 04 Dec 2022 01:51:47 GMT
Date: Sat, 03 Dec 2022 22:38:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 027480c06cd67621f373c6765dafee4d
9f80bb7ca6f699d88eaec2248dec508c589fe994
f69a0d6bd6e79d8fa7f2f15df11237c0a8b04d45af3cd5870eeef86d18f553bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7728
x-amzn-requestid: 9f37e7a6-1f00-4a81-9b14-962fd0b6cdf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMEJxoAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-4a4cce217327b44525ea1e98;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ztC4S0WeA3ft_9JafrL6fInXo4jwkb0cTWUx4Z8L2uz3EWQS-d6F5A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:02:47 GMT
age: 2161
etag: "9f80bb7ca6f699d88eaec2248dec508c589fe994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:26:43 GMT
age: 54725
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 3287
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95358bd2d700ee56273f5c03bb1b0ec9
3382013402b80585d811e8df916e32c055e559b7
9bdcf882b96fbbac533a799269480cc1af0e1dd891854939e1500adf2a5d1c10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9447
x-amzn-requestid: 7f33035c-70b3-4efd-9bbe-0975847cb21a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltmLExfoAMFwYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f4-20c26c902a341f7a00b62316;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1A8SX9QrxHL-wxtsIqbpgSd5p9kN1dQgj1tqBqjB_Hu5nsQhMYwLYA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:56:59 GMT
age: 2509
etag: "3382013402b80585d811e8df916e32c055e559b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7717ff9fcf6cf3268d10312dc3fdaaf
c4f05fdb231c7870b2a918198fa0809d8e8f9c89
bf3b6304a45f172653f45e1e8b4afa7da90096ca36c82b981ca6ec01ccf122a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8286
x-amzn-requestid: 6880d30e-3624-402e-819d-610e35ae27d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAAG1HIAMF6Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-43f8e7d312f96110713a7092;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XcnZ2pTQoGkuHEPsazEI09yhI6WWbmZD6g7QYW7rDf5HsegvjdgkXg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:00 GMT
age: 3288
etag: "c4f05fdb231c7870b2a918198fa0809d8e8f9c89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5b41d2b-ab64-4a18-814e-d348d7921eca.png
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5b41d2b-ab64-4a18-814e-d348d7921eca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b0065d160e7dbd17cf58f2c837b45a7
0ebefb37db37dcbf1ad421ab0cac2cccdcd83a2f
833c0a39ed1d9dcfa4a22f201d06d085e5131121810e98d5e79dd6f84e8fe436
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5b41d2b-ab64-4a18-814e-d348d7921eca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4782
x-amzn-requestid: 98b5d5ca-7590-4756-9b92-3fb327ecc97b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsANG8koAMF_Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-546b61a82a8b952f664346b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ncXSPf1et6vSgEBmWwY_PperGXmgJGEx0hlLr0lhN6XHi0RLRr6WCA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:05 GMT
age: 3103
etag: "0ebefb37db37dcbf1ad421ab0cac2cccdcd83a2f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 7c6b613326b653f457ea18a1021d0787
e87ec524338257fd33b0680847c578e908b39cad
1dcd77f26a60f337ba20a8a54dd3c697e77ac54f07e7d48ddfab994e6a09cdc7
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "80693f6cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 2725
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 43
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:46 GMT
Content-Length: 1261
resim.cokbilgi.com/hizli-okuma/okuma-nedir-speed-reading.jpg
89.163.225.73404 Not Found 705 B URL HTTP/2 resim.cokbilgi.com/hizli-okuma/okuma-nedir-speed-reading.jpg
IP 89.163.225.73:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash bfbf1451d2d0ca64731dda41aadbfee9
8ced5f4e49d615a0855492ea12a174f8f63ac9aa
d7a6693a3add3dc913f5472fabcc097a55a4269210d8af2c37e1ad53a1565a55
GET /hizli-okuma/okuma-nedir-speed-reading.jpg HTTP/1.1
Host: resim.cokbilgi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bookworm-bilgeadam.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
cache-control: private, no-cache, max-age=0
pragma: no-cache
date: Sat, 03 Dec 2022 22:38:47 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13dc85b9faf49e6a9bf32608b0fcf56d
2ded5a6b67364d3f7875ce1598683ac2c97937d0
7924016b948a369b3a0bcb336f32dd8f10b14893ba1d9437c4fc171190eb5899
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb045ee4346b85d699158fdba8f84f64
ee5cf0d75cd678dc71c6083cc7ce68169c0fce2d
8b2dcab1627a9c21b66cd6ea676dd5b4b6a39bebf2cfafcc21f52b5221bb6a03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
172.217.21.161200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221110/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Sat, 03 Dec 2022 15:03:35 GMT
expires: Sat, 17 Dec 2022 15:03:35 GMT
cache-control: public, max-age=1209600
age: 27313
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
172.217.21.161200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Sat, 03 Dec 2022 15:59:33 GMT
expires: Sat, 17 Dec 2022 15:59:33 GMT
cache-control: public, max-age=1209600
age: 23955
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:47 GMT
Content-Length: 3993
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 3.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 28\012- data
Hash 504b338076be77e4a2bc400c79177fd0
d91f251482238fc3359e5855e95fb9b09efd5c66
073807612778e4fc61a6ab404ff1cd8b668a5028f74ddd372d5abdc721c8d2fa
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 03 Dec 2022 22:38:47 GMT
Content-Length: 3282
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a6f9b3872f96754368c0fcf211a634e4
a0f733d08934838f30de8a9bbf53d58e360523d5
5170ea984601e27c2b6d5fa0613fb9e0c40b244795e8e637528d556af3facac5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 931
Cache-Control: max-age=89404
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638a8691-13a"
Expires: Sun, 04 Dec 2022 23:28:52 GMT
Last-Modified: Fri, 02 Dec 2022 23:13:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
bookworm-bilgeadam.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/H%C4%B1zl%C4%B1%20Okuma
Cookie: cwou_bookwormbilgeadam=1670107125; bwou_bookwormbilgeadam=1670107125; woubookwormbilgeadam=t; _ga=GA1.3.954132978.1670107126; _gid=GA1.3.637418732.1670107126; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 03 Dec 2022 22:38:48 GMT
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 87b4e2e6e0eebbf80359066acb85541f
96dffc1013bf747fdbfe1b12d3f0f94ff3a5c678
5e6496715ac0627e7a324387b0be33f20c0529229b7a1ce7b7d14028d0f341ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 723
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Last-Modified: Sat, 03 Dec 2022 22:26:45 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash abd901450af1f5a00362f62b995d3a71
9a59bc910b83700d486d9a84341d6f1e0e876dcb
696bde2c7ab8c26b95e7625bfa8a801f5adbbed1272ccdccec0b5cb447af6471
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Cookie: IDE=AHWqTUmv62a7HxjVkmrYtxTjMeidnqFUgLsz1EonBler2l6L4Z4UDesrfDLU0gXClNM; test_cookie=CheckForPermission
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 22:36:04 GMT
expires: Sat, 03 Dec 2022 22:51:04 GMT
cache-control: public, max-age=900
age: 164
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPfPi2N4ldu9BYVh026K4AASAAA&wp=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPfPi2N4ldu9BYVh026K4AASAAA&wp=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPfPi2N4ldu9BYVh026K4AASAAA&wp=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 317541
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 187840
expires: Thu, 23 Nov 2023 22:38:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8A3nqe%2Fo3nBU7zRzSvUeFe%2F18fJKPcrvANdODcQEmiYnDAakTpzL%2FXEUGlsGkiPuursQMM%2BbW2dwqqNXClXV%2FBLA1Uif%2FRo3YEn8HdZdkmS8LItl%2Bt56wrKzCL4jzlgMz5I9wpYy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773fcb725d0bb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash abd901450af1f5a00362f62b995d3a71
9a59bc910b83700d486d9a84341d6f1e0e876dcb
696bde2c7ab8c26b95e7625bfa8a801f5adbbed1272ccdccec0b5cb447af6471
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c5a280d130588f4098f759d4606e5b7
6ee703f50768d46afbe70cc014963ff56b8a04a3
0e44cc312aad8320de54cb8c8438ea503090c3b61b7240d2b466b8ef9ac704a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1499
Cache-Control: max-age=170968
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638bc2f5-138"
Expires: Mon, 05 Dec 2022 22:08:16 GMT
Last-Modified: Sat, 03 Dec 2022 21:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c5a280d130588f4098f759d4606e5b7
6ee703f50768d46afbe70cc014963ff56b8a04a3
0e44cc312aad8320de54cb8c8438ea503090c3b61b7240d2b466b8ef9ac704a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1499
Cache-Control: max-age=170968
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638bc2f5-138"
Expires: Mon, 05 Dec 2022 22:08:16 GMT
Last-Modified: Sat, 03 Dec 2022 21:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c5a280d130588f4098f759d4606e5b7
6ee703f50768d46afbe70cc014963ff56b8a04a3
0e44cc312aad8320de54cb8c8438ea503090c3b61b7240d2b466b8ef9ac704a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1499
Cache-Control: max-age=170968
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638bc2f5-138"
Expires: Mon, 05 Dec 2022 22:08:16 GMT
Last-Modified: Sat, 03 Dec 2022 21:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c5a280d130588f4098f759d4606e5b7
6ee703f50768d46afbe70cc014963ff56b8a04a3
0e44cc312aad8320de54cb8c8438ea503090c3b61b7240d2b466b8ef9ac704a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1499
Cache-Control: max-age=170968
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638bc2f5-138"
Expires: Mon, 05 Dec 2022 22:08:16 GMT
Last-Modified: Sat, 03 Dec 2022 21:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 6de361e4d2635a1348efc75f284b1ae5
b94c84d020d006c6fd8ffb24c1d40cb55241deef
8ae794515453d3b696c4b0ff831cc3e83a57708a6c2c9d48fb7eb99e39b9ffbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1292
Cache-Control: max-age=134396
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638b34e8-13a"
Expires: Mon, 05 Dec 2022 11:58:44 GMT
Last-Modified: Sat, 03 Dec 2022 11:37:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash cc3bfad4326729a2d408109e24146f62
c7a96be64e597a0ae15e83cc71112a568d4eb582
40e2245d6520463d4755239f4eade2275455736551aed66c6c954514a096116e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 805
Cache-Control: max-age=118071
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638af70a-13a"
Expires: Mon, 05 Dec 2022 07:26:39 GMT
Last-Modified: Sat, 03 Dec 2022 07:13:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c5a280d130588f4098f759d4606e5b7
6ee703f50768d46afbe70cc014963ff56b8a04a3
0e44cc312aad8320de54cb8c8438ea503090c3b61b7240d2b466b8ef9ac704a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1499
Cache-Control: max-age=170968
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Etag: "638bc2f5-138"
Expires: Mon, 05 Dec 2022 22:08:16 GMT
Last-Modified: Sat, 03 Dec 2022 21:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 1.3 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
Hash f6cddadabdbcf032175d0667f665058f
18a9e12e747bd35f0d668fe5a5348a9d6059a3e2
63a0fafe8346d5cf3f4dac76b839a83c8d8b12f2ceb01298f9d45e9085420819
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=VyHThOnCsuCZpIMLKqpgoivw
178.250.2.135200 OK 1.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=VyHThOnCsuCZpIMLKqpgoivw
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 266x76, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77c44a633aa284c58f8eb8cbee1f41f3
9b2f34ef9ac2247b0054e1887ff75942006ad623
4b0e48334dcb11bfd656df1098c819acd33c27791a43d966f714f8d11b73e416
GET /img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=VyHThOnCsuCZpIMLKqpgoivw HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29930238
expires: Wed, 15 Nov 2023 08:36:07 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032675-0.jpg%3Fcb%3D42206ce35a63c4880bb0be9a03425203&v=3&w=400&s=xxmdDyEba6Q3ab4TPL1KWFWQ&b=400
178.250.2.135200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032675-0.jpg%3Fcb%3D42206ce35a63c4880bb0be9a03425203&v=3&w=400&s=xxmdDyEba6Q3ab4TPL1KWFWQ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x387, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ff87a1406d376ff7176938a6ccaa9db
b137b19eb222d494a6de19154491bc5ea0cc291a
156a909b6375db1128ebe69b4ecdf3366df7ed3ed94cdcfe057540b60c361d91
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032675-0.jpg%3Fcb%3D42206ce35a63c4880bb0be9a03425203&v=3&w=400&s=xxmdDyEba6Q3ab4TPL1KWFWQ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31406827
expires: Sat, 02 Dec 2023 10:45:56 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10028
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3CfaPA7FWQrkqrkWp2hKnvhivDFKcO_f4M0W45n2l4SoSnv0B0PU1HmyavEm1RdZW95Ue600W3SziCEkMNleZ0O2f0M9GpOktublS-AMQHFIRzx7seBs5RFmZ_NxlLZS3J1OpIgdL1zQtxD3OQseCaew=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3CfaPA7FWQrkqrkWp2hKnvhivDFKcO_f4M0W45n2l4SoSnv0B0PU1HmyavEm1RdZW95Ue600W3SziCEkMNleZ0O2f0M9GpOktublS-AMQHFIRzx7seBs5RFmZ_NxlLZS3J1OpIgdL1zQtxD3OQseCaew=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash ec7a41080f2a2fb07c367cf8c70d888e
97c796543f80d8a354827fe0ee872ff42d545f2d
6748b9f5c31d64a3fc10a93a60b86b9bb58a98fc81259dba1cebb2aa8cf5b17e
GET /blogger_img_proxy/ANbyha3CfaPA7FWQrkqrkWp2hKnvhivDFKcO_f4M0W45n2l4SoSnv0B0PU1HmyavEm1RdZW95Ue600W3SziCEkMNleZ0O2f0M9GpOktublS-AMQHFIRzx7seBs5RFmZ_NxlLZS3J1OpIgdL1zQtxD3OQseCaew=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 22:38:48 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=400&s=hLRE6bvZnyIA-ad4lU5YDOtr&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=400&s=hLRE6bvZnyIA-ad4lU5YDOtr&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 399x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5d280b8b3e98caf243fc3dc23fd1b910
3719de05946a2854275138d44a53dc442b4dea14
38b504e1f3068bb8346d4c7fb22bf747ceb6cdf4e486afbf5461b5b670e30b0f
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=400&s=hLRE6bvZnyIA-ad4lU5YDOtr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29663363
expires: Sun, 12 Nov 2023 06:28:12 GMT
date: Sat, 03 Dec 2022 22:38:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5414
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1841919-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=wVKsbOYIkmmviDIkQEsvZfPm&b=400
178.250.2.135200 OK 3.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1841919-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=wVKsbOYIkmmviDIkQEsvZfPm&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x153, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a0a4888564d0252e855c48b65a1cd4b9
8dc8ac69bb0d104bb643f5b98142fb619ce3b413
4a205339a1e63d1f6ae60006e994270811af810d972ed853d31308a313e78cc8
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1841919-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=wVKsbOYIkmmviDIkQEsvZfPm&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31055548
expires: Tue, 28 Nov 2023 09:11:17 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3612
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
178.250.2.135200 OK 5.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x287, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5dff790a5bb26782110b9d621212e3b5
0b9bdb39b2fbb7823b6a6b80845206df692e80c2
1eedd2a7f883999396b0c2877a2512186f875339b3e284c34601ebb9a71fb8e0
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30772020
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5062
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/JA52f2yeXlegCQXKBipda5esK_XmoKzVNrL_j5DYc9I.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/JA52f2yeXlegCQXKBipda5esK_XmoKzVNrL_j5DYc9I.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35852)
Hash a8cce430e998c3f109b40ddc349c6a20
ef691cab0207bc805e95cb17989ddb53d14ffab1
7ea429700411f6129ecea2f2ccd2047e73a5370c050666d64e0e0dede42c82e0
GET /js/th/JA52f2yeXlegCQXKBipda5esK_XmoKzVNrL_j5DYc9I.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14168
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:35:02 GMT
expires: Wed, 29 Nov 2023 19:35:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 11:30:00 GMT
content-type: text/javascript
age: 356627
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 30 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bd8a15dacccc8d397126b11e5a3b4b66
8ff0fa7acae4b797342093f283c3a45a61d05d98
6d97170cff4959361aafc2d7709026b26242c9bfa3d38673914c80c748ddef6b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 03 Dec 2022 22:38:49 GMT
server: ESF
cache-control: private
content-length: 30535
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
216.58.207.227200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11936, version 1.0\012- data
Hash 15d8ede0a816bc7a9838207747c6620c
f6e2e75f1277c66e282553ae6a22661e51f472b8
dbb8f45730d91bffff8307cfdf7c82e67745d84cb6063a1f3880fadfad59c57d
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 09:38:03 GMT
expires: Sat, 02 Dec 2023 09:38:03 GMT
cache-control: public, max-age=31536000
age: 133246
last-modified: Mon, 16 Oct 2017 17:33:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EPfPi2M0dqDTCCQXwEjWSAASAAA&wp=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EPfPi2M0dqDTCCQXwEjWSAASAAA&wp=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EPfPi2M0dqDTCCQXwEjWSAASAAA&wp=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 326353
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPfPi2PDRuzJdc2G7Q5_-wASAAA&wp=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPfPi2PDRuzJdc2G7Q5_-wASAAA&wp=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPfPi2PDRuzJdc2G7Q5_-wASAAA&wp=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 278432
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu8ufgeLLXEnh64uA3ca07yZVJ5v8jh9ddZXz8wq=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.9 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8ufgeLLXEnh64uA3ca07yZVJ5v8jh9ddZXz8wq=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 90ac40fc37ceaf71bcf8becb6a69fa1a
0c4082c9110d04e4666c3a4cf30086c296a9d54d
a6ee1d6dcfbb74f8ae9ed519d2069dd398e958adb52937896f3154c5d89a6c7a
GET /ytc/AMLnZu8ufgeLLXEnh64uA3ca07yZVJ5v8jh9ddZXz8wq=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v26"
expires: Sun, 04 Dec 2022 22:38:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 03 Dec 2022 22:38:49 GMT
server: fife
content-length: 2887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 833966236f5c9d8b8d1e09b852260dec
aead33bed8028b01b7504060382e14dc3b044524
0908f25e82681caf3a15895e5ed7c2c7a78de49404e7b4d940146dbd864c7cbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.106200 OK 15 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.106:0
Hash 5b68c243f134ef15931a135b84bbd8d2
1ef652b84cbdcd48ae0380e5e2ddd7c575fe5c29
fee12710348d4bc79fc37f84f498723586fd72f6c6164a26efb101b11f29b287
GET /css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 22:38:49 GMT
date: Sat, 03 Dec 2022 22:38:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 833966236f5c9d8b8d1e09b852260dec
aead33bed8028b01b7504060382e14dc3b044524
0908f25e82681caf3a15895e5ed7c2c7a78de49404e7b4d940146dbd864c7cbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 22:38:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csm.eu.criteo.net/all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=sbRDt31k1jOwi5Dq2x0DVo1q
178.250.2.135200 OK 2.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=sbRDt31k1jOwi5Dq2x0DVo1q
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 364x104, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d68f0c206fbc43640d87acd8ac358d0d
de93fb8fc26a456bec0e842b9a5aeb47c139f771
e783cf1e10a4ab2295be2903a3d7f198ace6c2c239152780a75aabd2cab5ac91
GET /img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=sbRDt31k1jOwi5Dq2x0DVo1q HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29930238
expires: Wed, 15 Nov 2023 08:36:07 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2194
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=800
178.250.2.135200 OK 32 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ca99160e2484952824e546e79a238f15
14c9606031edc6fde177f0ea4fd00fb1dc8faa1b
428bcf5b3208627a9ef09aa84c5c2cfcb8159c3177450c6280cb5b112368aac9
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30019002
expires: Thu, 16 Nov 2023 09:15:31 GMT
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 31584
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82826-0_1.jpg%3Fcb%3Dfad4ab0a6b3852b70e8104cf558919d8&v=3&w=800&s=FZd5gBLfBPt3qKlVTExJlOkN&b=800
178.250.2.135200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82826-0_1.jpg%3Fcb%3Dfad4ab0a6b3852b70e8104cf558919d8&v=3&w=800&s=FZd5gBLfBPt3qKlVTExJlOkN&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 795x799, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e2e5b49174912e0a74a2e60daa15197
ceddd4b39b728ad160d72e4d9bd16104ef8db1ec
1064bcfaf06a357601f04ca383ce22533a2ca10cc7266bee751401552aaf7ab9
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82826-0_1.jpg%3Fcb%3Dfad4ab0a6b3852b70e8104cf558919d8&v=3&w=800&s=FZd5gBLfBPt3qKlVTExJlOkN&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29664220
expires: Sun, 12 Nov 2023 06:42:29 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 22100
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=800&s=8KVV4Zm73vwdKHJie2-YlRkl&b=800
178.250.2.135200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=800&s=8KVV4Zm73vwdKHJie2-YlRkl&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 797x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 603e6a8ff979295725027143633daefb
32aad4012cdd0fe9ae32cf574a4967efaa68cdb3
e488cedc075b0c306bdca93d1ec23a61bddaf5998a69c0ef1858ccb38333e9e3
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F357109-0.jpg%3Fcb%3Dab5fa793d77f2f320af2c665988ee964&v=3&w=800&s=8KVV4Zm73vwdKHJie2-YlRkl&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29663362
expires: Sun, 12 Nov 2023 06:28:12 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15134
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=800
178.250.2.135200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x573, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3fb49346758fe27b2c7157de2cbcdd23
bcd23067ca6b64af92c219edea617544eaa90002
fb7a28be604382d233d726e225040cc6e39a74d8dd6ae184733c5f76b303f034
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30772020
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20120
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F1%2F814360-0.jpg%3Fcb%3Dfa94096dc7461a69157930224bcc7b2e&v=3&w=800&s=Gog-NHJ03oCsxRBa3iskFXEW&b=800
178.250.2.135200 OK 8.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F1%2F814360-0.jpg%3Fcb%3Dfa94096dc7461a69157930224bcc7b2e&v=3&w=800&s=Gog-NHJ03oCsxRBa3iskFXEW&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 204x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b240fcb976da2f878315bc504fa662b
7b82ac1ac1bbc5dbd9656a94e2cec3690d228bc6
5d22c906866748f197bcd25ba89b85fcc3fccc89a637ff25097b91b86036c21d
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F1%2F814360-0.jpg%3Fcb%3Dfa94096dc7461a69157930224bcc7b2e&v=3&w=800&s=Gog-NHJ03oCsxRBa3iskFXEW&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30432115
expires: Tue, 21 Nov 2023 04:00:44 GMT
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8508
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=800
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29914664
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=800
178.250.2.135200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 772x782, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0da1012684b4d409ee854a823b8c203
3ef9ea74a6500594d77438001894f43e35b9d72f
4fb08a6ff05c56414749b74d6d3e08261bef0dd2e4b274c96b1983c359fef1c5
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30106122
expires: Fri, 17 Nov 2023 09:27:31 GMT
date: Sat, 03 Dec 2022 22:38:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20972
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF
178.250.2.135200 OK 1.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 196x196, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01f33a498f65bf4bb751def8c06a1991
dd3dc1f876dbec906a17869724b8d3284beb37cb
9e92587541f93124197e414774716e7099233aef4b4d56f4d888e9bb649b5362
GET /img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29929551
expires: Wed, 15 Nov 2023 08:24:40 GMT
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992382-0.jpg%3Fcb%3Da034cb3ea50dab4a03b83c4d3d10ceb0&v=3&w=800&s=LW2uZ_G7g7hShqy4r-hlyUIQ&b=800
178.250.2.135200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992382-0.jpg%3Fcb%3Da034cb3ea50dab4a03b83c4d3d10ceb0&v=3&w=800&s=LW2uZ_G7g7hShqy4r-hlyUIQ&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 732x719, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e5430deaca0b5e0d5f269a0d0d153324
2dcd32552d1aa45561b0722b2c0aa81d8b2cf18b
bc203c0969fff5715a31ee37963a375eaa18ac457430f1faeec383a9114df43e
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992382-0.jpg%3Fcb%3Da034cb3ea50dab4a03b83c4d3d10ceb0&v=3&w=800&s=LW2uZ_G7g7hShqy4r-hlyUIQ&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31497442
expires: Sun, 03 Dec 2023 11:56:11 GMT
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21388
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 03 Dec 2022 22:38:49 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash da6bae25502bad08948a6e64e5af46fa
7c3e92f1c2c8b9673ab632e196d668da10717856
212ab50dc89ff45f4917e18c9d637876dba165fa5078ca7386eb82bdedfb466c
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1236
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 03 Dec 2022 22:38:49 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 2.2 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- data
Hash a70b17de1ed9a84c918516614b0d0cae
638e3688828786b0cbeec4fc8c18334d1f2313df
1802a0d478a631218c7bca4572e30582489a1baa11da8c22cc5d66ddfff1f91e
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:51 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1a6f4805f59db44f9d3520d88701a58
6a0258e8c97ce09f1723382c8a16d9682b7dc50c
ae120df5e96352c6998c24c69c709dfd2b01a7ff8a7b935d496757fd7661f2f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7503
x-amzn-requestid: a4120308-c51e-4cff-99c2-90e86018b05d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZjCGkVIAMFpsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a2e0-6fdf362a6d32449239476155;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:01:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dy619jlSTwCjwDhGuLmwTMcmuYj1Kg2oLA7xORyAYX8IHWimhNo6pw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:16:04 GMT
age: 55371
etag: "6a0258e8c97ce09f1723382c8a16d9682b7dc50c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig&u=%7CRnUBcm8RoPfrDrc%2FINBFB%2FtFICwvp%2Fp0SgYodYnFhqM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRP9JqaqzgpLDX8svfHFwb9dC7bwN_--0-zy53KS1DGd-MyMGaj3CbfuFynHLDJaQd8Hei8lWzm2FgVxElNcfnIcjeQOsWxtap_Cn9-At62MtRkf1eT5pppVkaHSI3r-cG96QMGdj9xZ3KZrlwmB-VUZ3Iw1i_5AiG_ptG-19pkQy6LdVj_6WZGG6XZDNVjAif_z-FgNniubZiZhzhUmdCeLv1PfioiHuVd378tb3r3Q6_BOUEOx-jHvOSxJ3OeB39tjvk8_G5jYZnRO8-c_ouRQ2W3f_MQ4_w5sEN9p8QFgaVW5c_k238sBL4Ib6TzT4YFrt-sp8iFA42mUjYtsWanPKNxq_sWYgUX8557cJy-Q-GTCWu9owSaYXbfjcmPv3FN6KWyms-HH2F_IuyJpKSOU2BqfGhA_D499KEMdS9tmFvjCudsVNmoYEqa4FqkCdgo5mDRm5dFXHE3woSBUgByo-20PUHZbeB2Pe9NxnAGn8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCsA2T-M-LY-KBC7SKiM0P0e63mAfJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTcxNjgyMTQwMjkzNzA0MjXIAQmpAkS_tBqXrLE-qAMBqgT-AU_QCc8xwv9ZM9ErNvGDN5QJg30U9xP54Cd2wxgog3D3UwwzZNXzQjn9QBX9of8sOynpqUjFAQ9VHsHYstiA_Y-9M_Tu0dPdLhgqMNcrfcbnaCt10fO_8rxXkdFO7gVhODOPe6LjozAcfuHbw1iG7N8XzBhAt8mOgZWFpkYsp5hzOptMxnFVcz91G7JQzlTo5hPjPrOyjEprPM9RPTfxqOb3Nmeml-AC0PZB9CZJ_MDuRriPZdvp_nQX1So1CjbEPs7wHMQM1N2p32z3kJNlUXhI9f9N2ig7uLO77TGVpMOZVEJnwhvVwAeuhrvhjW54b05AoaLcEGGqHgbNpkJOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2PybXcvtPrJBHpPmq5VCZ-4jf7VQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig&u=%7CRnUBcm8RoPfrDrc%2FINBFB%2FtFICwvp%2Fp0SgYodYnFhqM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRP9JqaqzgpLDX8svfHFwb9dC7bwN_--0-zy53KS1DGd-MyMGaj3CbfuFynHLDJaQd8Hei8lWzm2FgVxElNcfnIcjeQOsWxtap_Cn9-At62MtRkf1eT5pppVkaHSI3r-cG96QMGdj9xZ3KZrlwmB-VUZ3Iw1i_5AiG_ptG-19pkQy6LdVj_6WZGG6XZDNVjAif_z-FgNniubZiZhzhUmdCeLv1PfioiHuVd378tb3r3Q6_BOUEOx-jHvOSxJ3OeB39tjvk8_G5jYZnRO8-c_ouRQ2W3f_MQ4_w5sEN9p8QFgaVW5c_k238sBL4Ib6TzT4YFrt-sp8iFA42mUjYtsWanPKNxq_sWYgUX8557cJy-Q-GTCWu9owSaYXbfjcmPv3FN6KWyms-HH2F_IuyJpKSOU2BqfGhA_D499KEMdS9tmFvjCudsVNmoYEqa4FqkCdgo5mDRm5dFXHE3woSBUgByo-20PUHZbeB2Pe9NxnAGn8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCsA2T-M-LY-KBC7SKiM0P0e63mAfJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTcxNjgyMTQwMjkzNzA0MjXIAQmpAkS_tBqXrLE-qAMBqgT-AU_QCc8xwv9ZM9ErNvGDN5QJg30U9xP54Cd2wxgog3D3UwwzZNXzQjn9QBX9of8sOynpqUjFAQ9VHsHYstiA_Y-9M_Tu0dPdLhgqMNcrfcbnaCt10fO_8rxXkdFO7gVhODOPe6LjozAcfuHbw1iG7N8XzBhAt8mOgZWFpkYsp5hzOptMxnFVcz91G7JQzlTo5hPjPrOyjEprPM9RPTfxqOb3Nmeml-AC0PZB9CZJ_MDuRriPZdvp_nQX1So1CjbEPs7wHMQM1N2p32z3kJNlUXhI9f9N2ig7uLO77TGVpMOZVEJnwhvVwAeuhrvhjW54b05AoaLcEGGqHgbNpkJOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2PybXcvtPrJBHpPmq5VCZ-4jf7VQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y4vP-AACwOIDogU0AA33Uc_3B1L-d6xMyoxXig&u=%7CRnUBcm8RoPfrDrc%2FINBFB%2FtFICwvp%2Fp0SgYodYnFhqM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRP9JqaqzgpLDX8svfHFwb9dC7bwN_--0-zy53KS1DGd-MyMGaj3CbfuFynHLDJaQd8Hei8lWzm2FgVxElNcfnIcjeQOsWxtap_Cn9-At62MtRkf1eT5pppVkaHSI3r-cG96QMGdj9xZ3KZrlwmB-VUZ3Iw1i_5AiG_ptG-19pkQy6LdVj_6WZGG6XZDNVjAif_z-FgNniubZiZhzhUmdCeLv1PfioiHuVd378tb3r3Q6_BOUEOx-jHvOSxJ3OeB39tjvk8_G5jYZnRO8-c_ouRQ2W3f_MQ4_w5sEN9p8QFgaVW5c_k238sBL4Ib6TzT4YFrt-sp8iFA42mUjYtsWanPKNxq_sWYgUX8557cJy-Q-GTCWu9owSaYXbfjcmPv3FN6KWyms-HH2F_IuyJpKSOU2BqfGhA_D499KEMdS9tmFvjCudsVNmoYEqa4FqkCdgo5mDRm5dFXHE3woSBUgByo-20PUHZbeB2Pe9NxnAGn8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCsA2T-M-LY-KBC7SKiM0P0e63mAfJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTcxNjgyMTQwMjkzNzA0MjXIAQmpAkS_tBqXrLE-qAMBqgT-AU_QCc8xwv9ZM9ErNvGDN5QJg30U9xP54Cd2wxgog3D3UwwzZNXzQjn9QBX9of8sOynpqUjFAQ9VHsHYstiA_Y-9M_Tu0dPdLhgqMNcrfcbnaCt10fO_8rxXkdFO7gVhODOPe6LjozAcfuHbw1iG7N8XzBhAt8mOgZWFpkYsp5hzOptMxnFVcz91G7JQzlTo5hPjPrOyjEprPM9RPTfxqOb3Nmeml-AC0PZB9CZJ_MDuRriPZdvp_nQX1So1CjbEPs7wHMQM1N2p32z3kJNlUXhI9f9N2ig7uLO77TGVpMOZVEJnwhvVwAeuhrvhjW54b05AoaLcEGGqHgbNpkJOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2PybXcvtPrJBHpPmq5VCZ-4jf7VQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=U8BOyleFbST5JEeEbuZqHWLSzqrB3RRVScJ08KVe8BY_OfRDqy9zeZkBgJBg7ZJHcagfXuUtz5xlrss2oMoWvjH95PKuEflBh12w8M0Q12hkv3q0q0luYkbJnGCM2pFUxgaQk6RXMQt9FGdXTdGMoFfogpnUP754cIdqb8ZAcMpz5Nc1KVGloOO_OYG7HZx2FPrvNuZ4TxP9P_DtcKtjx9oHK3f58MNziY-0-oeg-pLFF4MggKRm-B_N-ndWRE2ksHd49A"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 81988339
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw&u=%7CRnUBcm8RoPdM5j%2FJ0E%2BM2hfhEIMq0s9pNjTc8yoYAYM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAlNdpIbISg3cDHWIos270VPFnTmnXIZu60aJ0nWj6Br8DDdJIbwWU7NllSzfNJwSKfYu0vVr6nJEwBBOEyH_9g5mpJFnww5cULv2B25l_TGWciI1TzBXHNuMz3vRFI0WKdCeRhm38jZb5KOpBDZA4Kai6pF8wxEaCy6Gs9Hr3NmASQxT9FDZN5M6pQRbDQtqVFqjAM5woEiW3_n6OO91azBJo8ZwgyU4nc_Slw0PbZabyyS5d4D9K1dNcAfXY59MUMY3hgOxePFlhtt62xr4T4Qw9shEoIxASD4Csh0D1qd4VxPd7l3746rLvqs3wNsco0dWEtOuZhIA59vflhmyuKLaHwvvgwOxDJlTp2qfmN1SXBN9zTgG9yx1gj5TapZIm9TBwTMh4JG3UJslBmvp2EJo6AxwlMbXqY4RgRrHc9KiQ4nydDWWQsKX8pVI90dfR7DtvAzDJ2TxiCp6VPYKW0yCEeP4i3LSICQKmj_o7vcA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC7Eu7-M-LY8jKE_Sy7APM6L2oBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCRL-0GpessT6oAwGqBIECT9D1S6Ezwo9HGSNw9nEUeMMem5xMfWVHyQrtrs5-_oSMHOjGrWMBNegHCZyWfMUw4frduuaKJFzL7wqH-sbIQahCW5v4zvxfsfQosUSNb0Nt-rilLhmBZhLZ97gDOU4qVLpRl4lAFwjJs6N8IBYmM8DdWnm2CNgcLot8v6H7IDVi2LlXpTiIMcVGnrO_TnQso7IOAVXDO-UFP6KCWzZldoVpRRxhEZ-9Zs4garlt2G5JrG4hSghKh2fceUpW3D9SpMTbcaXjSqhMZo9wkWm4X7kHXr7eHter8mdSfY23rKAE6-DIFU_-XLOq5JuzYWrZBUlkGyNRuSLr8Owm9IyulWWABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0PHQl8J5aaGsqOWWsn5jg0TFtvGA%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw&u=%7CRnUBcm8RoPdM5j%2FJ0E%2BM2hfhEIMq0s9pNjTc8yoYAYM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAlNdpIbISg3cDHWIos270VPFnTmnXIZu60aJ0nWj6Br8DDdJIbwWU7NllSzfNJwSKfYu0vVr6nJEwBBOEyH_9g5mpJFnww5cULv2B25l_TGWciI1TzBXHNuMz3vRFI0WKdCeRhm38jZb5KOpBDZA4Kai6pF8wxEaCy6Gs9Hr3NmASQxT9FDZN5M6pQRbDQtqVFqjAM5woEiW3_n6OO91azBJo8ZwgyU4nc_Slw0PbZabyyS5d4D9K1dNcAfXY59MUMY3hgOxePFlhtt62xr4T4Qw9shEoIxASD4Csh0D1qd4VxPd7l3746rLvqs3wNsco0dWEtOuZhIA59vflhmyuKLaHwvvgwOxDJlTp2qfmN1SXBN9zTgG9yx1gj5TapZIm9TBwTMh4JG3UJslBmvp2EJo6AxwlMbXqY4RgRrHc9KiQ4nydDWWQsKX8pVI90dfR7DtvAzDJ2TxiCp6VPYKW0yCEeP4i3LSICQKmj_o7vcA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC7Eu7-M-LY8jKE_Sy7APM6L2oBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCRL-0GpessT6oAwGqBIECT9D1S6Ezwo9HGSNw9nEUeMMem5xMfWVHyQrtrs5-_oSMHOjGrWMBNegHCZyWfMUw4frduuaKJFzL7wqH-sbIQahCW5v4zvxfsfQosUSNb0Nt-rilLhmBZhLZ97gDOU4qVLpRl4lAFwjJs6N8IBYmM8DdWnm2CNgcLot8v6H7IDVi2LlXpTiIMcVGnrO_TnQso7IOAVXDO-UFP6KCWzZldoVpRRxhEZ-9Zs4garlt2G5JrG4hSghKh2fceUpW3D9SpMTbcaXjSqhMZo9wkWm4X7kHXr7eHter8mdSfY23rKAE6-DIFU_-XLOq5JuzYWrZBUlkGyNRuSLr8Owm9IyulWWABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0PHQl8J5aaGsqOWWsn5jg0TFtvGA%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y4vP-AAE5UgKexl0AA90TKcio5rM-7SJ14eiVw&u=%7CRnUBcm8RoPdM5j%2FJ0E%2BM2hfhEIMq0s9pNjTc8yoYAYM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAlNdpIbISg3cDHWIos270VPFnTmnXIZu60aJ0nWj6Br8DDdJIbwWU7NllSzfNJwSKfYu0vVr6nJEwBBOEyH_9g5mpJFnww5cULv2B25l_TGWciI1TzBXHNuMz3vRFI0WKdCeRhm38jZb5KOpBDZA4Kai6pF8wxEaCy6Gs9Hr3NmASQxT9FDZN5M6pQRbDQtqVFqjAM5woEiW3_n6OO91azBJo8ZwgyU4nc_Slw0PbZabyyS5d4D9K1dNcAfXY59MUMY3hgOxePFlhtt62xr4T4Qw9shEoIxASD4Csh0D1qd4VxPd7l3746rLvqs3wNsco0dWEtOuZhIA59vflhmyuKLaHwvvgwOxDJlTp2qfmN1SXBN9zTgG9yx1gj5TapZIm9TBwTMh4JG3UJslBmvp2EJo6AxwlMbXqY4RgRrHc9KiQ4nydDWWQsKX8pVI90dfR7DtvAzDJ2TxiCp6VPYKW0yCEeP4i3LSICQKmj_o7vcA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC7Eu7-M-LY8jKE_Sy7APM6L2oBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCRL-0GpessT6oAwGqBIECT9D1S6Ezwo9HGSNw9nEUeMMem5xMfWVHyQrtrs5-_oSMHOjGrWMBNegHCZyWfMUw4frduuaKJFzL7wqH-sbIQahCW5v4zvxfsfQosUSNb0Nt-rilLhmBZhLZ97gDOU4qVLpRl4lAFwjJs6N8IBYmM8DdWnm2CNgcLot8v6H7IDVi2LlXpTiIMcVGnrO_TnQso7IOAVXDO-UFP6KCWzZldoVpRRxhEZ-9Zs4garlt2G5JrG4hSghKh2fceUpW3D9SpMTbcaXjSqhMZo9wkWm4X7kHXr7eHter8mdSfY23rKAE6-DIFU_-XLOq5JuzYWrZBUlkGyNRuSLr8Owm9IyulWWABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0PHQl8J5aaGsqOWWsn5jg0TFtvGA%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=yW_9W1eFbST5JEeEy4jkUJjlahUN1xheCI5HOKiVRN7Y82lLc6X4dGmC6zMJZ13xdzbY7qT_9InvqcFmgG2d-8pr_6uQTyZteyCZePPOz6pRk4kZsfdlxbPFeNv3XzM3AmC-kwCxUOsQvkTqCkgDg7vstsGdY0RtYkdfqK5_4gqdSV-OWPen6AH1M_zpOSBrEa4C_tC45i1YmqxMBIW0hXpFW7HMSBI2qE6DkO-eUzjYincSCg2Ypg0fQe97Ci1ApmTr9Q"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 127244527
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Tue, 28 Nov 2023 22:38:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6ob8WTJwH2wcgyAhk9jTPTiOVIRLFBSa5MPQm_D6sep2JBrhWTfB7_ukPiqbZEwZQLnt0BsfvMgfwp9_V5B_wTVgI8-gQdDNESX5FI-1rS5WsVSpB71xZXouTML8FZbN_SovATfSMTF_pyx-PsGnSedxYncGwwUWfUH5qmlSf0_KUkC77ysjKcudmAuSMsC2mZsKGx_jEo-EmKFQ36G6qX4xu9GhiwN0ciVar5djM_2G2NIaBK7FLoqcpz9ASk1RmdCTvnO6eZ_zI1hFg0Ll80Nz8u7TxKOq36p-zTvPor9BMG2EGGGEvSi5UisyanDZVG5WIq-ghRUX9jrx7GcPjFbAJvKUeuLhAH5203Rhl0YZ2HVqU57BR5lsvzDlGJQVfp-HqhU9DDTorpZor33CB6wIVF5Wtho2bEdINgwu6oTZ1_m5FiMuE0RaMZcmHyGuuR27wQ
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6ob8WTJwH2wcgyAhk9jTPTiOVIRLFBSa5MPQm_D6sep2JBrhWTfB7_ukPiqbZEwZQLnt0BsfvMgfwp9_V5B_wTVgI8-gQdDNESX5FI-1rS5WsVSpB71xZXouTML8FZbN_SovATfSMTF_pyx-PsGnSedxYncGwwUWfUH5qmlSf0_KUkC77ysjKcudmAuSMsC2mZsKGx_jEo-EmKFQ36G6qX4xu9GhiwN0ciVar5djM_2G2NIaBK7FLoqcpz9ASk1RmdCTvnO6eZ_zI1hFg0Ll80Nz8u7TxKOq36p-zTvPor9BMG2EGGGEvSi5UisyanDZVG5WIq-ghRUX9jrx7GcPjFbAJvKUeuLhAH5203Rhl0YZ2HVqU57BR5lsvzDlGJQVfp-HqhU9DDTorpZor33CB6wIVF5Wtho2bEdINgwu6oTZ1_m5FiMuE0RaMZcmHyGuuR27wQ
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=6ob8WTJwH2wcgyAhk9jTPTiOVIRLFBSa5MPQm_D6sep2JBrhWTfB7_ukPiqbZEwZQLnt0BsfvMgfwp9_V5B_wTVgI8-gQdDNESX5FI-1rS5WsVSpB71xZXouTML8FZbN_SovATfSMTF_pyx-PsGnSedxYncGwwUWfUH5qmlSf0_KUkC77ysjKcudmAuSMsC2mZsKGx_jEo-EmKFQ36G6qX4xu9GhiwN0ciVar5djM_2G2NIaBK7FLoqcpz9ASk1RmdCTvnO6eZ_zI1hFg0Ll80Nz8u7TxKOq36p-zTvPor9BMG2EGGGEvSi5UisyanDZVG5WIq-ghRUX9jrx7GcPjFbAJvKUeuLhAH5203Rhl0YZ2HVqU57BR5lsvzDlGJQVfp-HqhU9DDTorpZor33CB6wIVF5Wtho2bEdINgwu6oTZ1_m5FiMuE0RaMZcmHyGuuR27wQ HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:49 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2828879
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
resim.cokbilgi.com/hizli-okuma/hizli-okuma-yontemleri.jpg
89.163.225.73404 Not Found 0 B URL HTTP/2 resim.cokbilgi.com/hizli-okuma/hizli-okuma-yontemleri.jpg
IP 89.163.225.73:0
ASN #24961 myLoc managed IT AG
GET /hizli-okuma/hizli-okuma-yontemleri.jpg HTTP/1.1
Host: resim.cokbilgi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bookworm-bilgeadam.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
cache-control: private, no-cache, max-age=0
pragma: no-cache
date: Sat, 03 Dec 2022 22:38:47 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-0nGf4XM2d-4/USDCNEtCRLI/AAAAAAAADC4/CBquFKuPWGk/s320/hizli+okuma.jpg
142.250.74.161200 OK 0 B URL HTTP/1.1 3.bp.blogspot.com/-0nGf4XM2d-4/USDCNEtCRLI/AAAAAAAADC4/CBquFKuPWGk/s320/hizli+okuma.jpg
IP 142.250.74.161:0
GET /-0nGf4XM2d-4/USDCNEtCRLI/AAAAAAAADC4/CBquFKuPWGk/s320/hizli+okuma.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc2e"
Expires: Sun, 04 Dec 2022 22:38:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hizli okuma.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 03 Dec 2022 22:38:47 GMT
Server: fife
Content-Length: 21374
X-XSS-Protection: 0
www.fibhaber.com/images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg
78.135.109.6200 OK 0 B URL HTTP/2 www.fibhaber.com/images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg
IP 78.135.109.6:0
ASN #207983 Codit Teknoloji Tic. Ltd. Sti.
GET /images/haberler/kardelen_kolejinde_ogrencilere_hizli_okuma_teknikleri_dersleri_veriliyor_h1323.jpg HTTP/1.1
Host: www.fibhaber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bookworm-bilgeadam.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
set-cookie: PHPSESSID=154evbdh0mev18ucq83fiip1t3; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 03 Dec 2022 22:38:47 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=1P8RzTJwH2wcgyAhk9jTPTiOVITcNAWo_czePKhbqjWzWHoFcoKSzLSR8OmSHVNaI_CMZ1pkEjoqLhECRKb36d3vERRaqw02eQo7FQKixPuP6QlcSY3PBoazWm4uAts0HdAdLboTC-iGEhoSFoOlAntG4C--DpkMadvIOV9mkf13iAPGF_ifJh6nYufUi-4KZb-RCcU8Q1e1EhVVgVpOeZT4kQDjY109sAa3XMkODoNBWUGpZo1DWyjOnIuG0eCp9oKPimRK5IBlOie_FG88LvBqlRVVttK7ScGiMnxA1sk-jiq62-Ra3XkaXP5FuyIij1BhWVSqvbHF26xVnbTEXvp4BWpXETwF3Hb2J-iDqN2KfbAcvq41-I31M7U2UKzMAX7fY76fbnkZIvjGlBf-ukzJTFs1ICMKxMfmZ4OaYZRv-5MQGuR3_szjJv6wDUsh6kwyRA
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=1P8RzTJwH2wcgyAhk9jTPTiOVITcNAWo_czePKhbqjWzWHoFcoKSzLSR8OmSHVNaI_CMZ1pkEjoqLhECRKb36d3vERRaqw02eQo7FQKixPuP6QlcSY3PBoazWm4uAts0HdAdLboTC-iGEhoSFoOlAntG4C--DpkMadvIOV9mkf13iAPGF_ifJh6nYufUi-4KZb-RCcU8Q1e1EhVVgVpOeZT4kQDjY109sAa3XMkODoNBWUGpZo1DWyjOnIuG0eCp9oKPimRK5IBlOie_FG88LvBqlRVVttK7ScGiMnxA1sk-jiq62-Ra3XkaXP5FuyIij1BhWVSqvbHF26xVnbTEXvp4BWpXETwF3Hb2J-iDqN2KfbAcvq41-I31M7U2UKzMAX7fY76fbnkZIvjGlBf-ukzJTFs1ICMKxMfmZ4OaYZRv-5MQGuR3_szjJv6wDUsh6kwyRA
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=1P8RzTJwH2wcgyAhk9jTPTiOVITcNAWo_czePKhbqjWzWHoFcoKSzLSR8OmSHVNaI_CMZ1pkEjoqLhECRKb36d3vERRaqw02eQo7FQKixPuP6QlcSY3PBoazWm4uAts0HdAdLboTC-iGEhoSFoOlAntG4C--DpkMadvIOV9mkf13iAPGF_ifJh6nYufUi-4KZb-RCcU8Q1e1EhVVgVpOeZT4kQDjY109sAa3XMkODoNBWUGpZo1DWyjOnIuG0eCp9oKPimRK5IBlOie_FG88LvBqlRVVttK7ScGiMnxA1sk-jiq62-Ra3XkaXP5FuyIij1BhWVSqvbHF26xVnbTEXvp4BWpXETwF3Hb2J-iDqN2KfbAcvq41-I31M7U2UKzMAX7fY76fbnkZIvjGlBf-ukzJTFs1ICMKxMfmZ4OaYZRv-5MQGuR3_szjJv6wDUsh6kwyRA HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1929987
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw&u=%7CRnUBcm8RoPd9%2FdlifS%2Fb5LDqP3i6VJWMCw3KtqsRqBo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvXhYKQBCSGBV_URYiUgEyr-gtG26tluU9jeVY_9BsRvVO2brMG-el_E2eViQRANJINsNL2FekJzOcgJDEJJ5UjEHfeDRbqul6wNDiEklAGFB8m4o8CtqoKoBJ0DSMtcFZ4amfDQI75iBzpF_DV-ZDWhrVLXi-NcziHC61q1ciOByIeeITiFAqnpvz8jqHzgyzF7jDAfRJnUkIL0lrhYoQ6KDx0GNK5LtK8EVa9gukLuj4y0zEWuYynRAw0XBBatI0DE4rv2WgkHaXglW_WUP0rb0aG3ifyT0AeB09oXOV133TFEPTg1u6GS0Sd9y-oSduttCFxda21_dfhp88Cu-bYgPCb-LNESUGlisejINJZ9AT1-qAmSDXP6Bu6B-MeRf06HVkM7maroKp1msZZlMD58WLQYVr4xygbPBXMdwrpZAyUgtakpKh9vRvWJDB92Cel_XTwiuuJkndL4WxY0eDfOxOorHe8MsdYK_8HiCu0E2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCX-w1-M-LY_6TE4SjYo6Xn_ADyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQJEv7Qal6yxPqgDAaoE-wFP0LI-gQSa3GW9crLz_VkwXtxcY74CYl1C_S9PKP_oM5vKH9KdrgSK3ee1y6z6cCZi7j-1DlbZ1nzc7rvXOnahho3DqI-XyjzrVfQtw1jdZ-HidD34WPESL6UuOOwr-_ZO5Me81W4BL9mGFCscaLbnHpSFuFNJJev9oLXBiUyF7G1u7X-hlLIPYe2hB1nNuRgyvSaWFB4JqIK96BmI6ceo7PNvEUWB2SIaEYMC1vF08Goktj3BPh0j6SfTqXgXskNdEZApZbPyhzqQjCM-jp4c2l1FXY8MGqWY3lEMdeYFsfN7655oskmNw50_xjcLcO6occfPHpVGc2R9woAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1M75f0QMLnotr82r_lGty2GkIGLQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw&u=%7CRnUBcm8RoPd9%2FdlifS%2Fb5LDqP3i6VJWMCw3KtqsRqBo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvXhYKQBCSGBV_URYiUgEyr-gtG26tluU9jeVY_9BsRvVO2brMG-el_E2eViQRANJINsNL2FekJzOcgJDEJJ5UjEHfeDRbqul6wNDiEklAGFB8m4o8CtqoKoBJ0DSMtcFZ4amfDQI75iBzpF_DV-ZDWhrVLXi-NcziHC61q1ciOByIeeITiFAqnpvz8jqHzgyzF7jDAfRJnUkIL0lrhYoQ6KDx0GNK5LtK8EVa9gukLuj4y0zEWuYynRAw0XBBatI0DE4rv2WgkHaXglW_WUP0rb0aG3ifyT0AeB09oXOV133TFEPTg1u6GS0Sd9y-oSduttCFxda21_dfhp88Cu-bYgPCb-LNESUGlisejINJZ9AT1-qAmSDXP6Bu6B-MeRf06HVkM7maroKp1msZZlMD58WLQYVr4xygbPBXMdwrpZAyUgtakpKh9vRvWJDB92Cel_XTwiuuJkndL4WxY0eDfOxOorHe8MsdYK_8HiCu0E2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCX-w1-M-LY_6TE4SjYo6Xn_ADyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQJEv7Qal6yxPqgDAaoE-wFP0LI-gQSa3GW9crLz_VkwXtxcY74CYl1C_S9PKP_oM5vKH9KdrgSK3ee1y6z6cCZi7j-1DlbZ1nzc7rvXOnahho3DqI-XyjzrVfQtw1jdZ-HidD34WPESL6UuOOwr-_ZO5Me81W4BL9mGFCscaLbnHpSFuFNJJev9oLXBiUyF7G1u7X-hlLIPYe2hB1nNuRgyvSaWFB4JqIK96BmI6ceo7PNvEUWB2SIaEYMC1vF08Goktj3BPh0j6SfTqXgXskNdEZApZbPyhzqQjCM-jp4c2l1FXY8MGqWY3lEMdeYFsfN7655oskmNw50_xjcLcO6occfPHpVGc2R9woAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1M75f0QMLnotr82r_lGty2GkIGLQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y4vP-AAEyf4KGJGEAAfLjsJtX6Nz6CaCFONyDw&u=%7CRnUBcm8RoPd9%2FdlifS%2Fb5LDqP3i6VJWMCw3KtqsRqBo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvXhYKQBCSGBV_URYiUgEyr-gtG26tluU9jeVY_9BsRvVO2brMG-el_E2eViQRANJINsNL2FekJzOcgJDEJJ5UjEHfeDRbqul6wNDiEklAGFB8m4o8CtqoKoBJ0DSMtcFZ4amfDQI75iBzpF_DV-ZDWhrVLXi-NcziHC61q1ciOByIeeITiFAqnpvz8jqHzgyzF7jDAfRJnUkIL0lrhYoQ6KDx0GNK5LtK8EVa9gukLuj4y0zEWuYynRAw0XBBatI0DE4rv2WgkHaXglW_WUP0rb0aG3ifyT0AeB09oXOV133TFEPTg1u6GS0Sd9y-oSduttCFxda21_dfhp88Cu-bYgPCb-LNESUGlisejINJZ9AT1-qAmSDXP6Bu6B-MeRf06HVkM7maroKp1msZZlMD58WLQYVr4xygbPBXMdwrpZAyUgtakpKh9vRvWJDB92Cel_XTwiuuJkndL4WxY0eDfOxOorHe8MsdYK_8HiCu0E2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCX-w1-M-LY_6TE4SjYo6Xn_ADyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQJEv7Qal6yxPqgDAaoE-wFP0LI-gQSa3GW9crLz_VkwXtxcY74CYl1C_S9PKP_oM5vKH9KdrgSK3ee1y6z6cCZi7j-1DlbZ1nzc7rvXOnahho3DqI-XyjzrVfQtw1jdZ-HidD34WPESL6UuOOwr-_ZO5Me81W4BL9mGFCscaLbnHpSFuFNJJev9oLXBiUyF7G1u7X-hlLIPYe2hB1nNuRgyvSaWFB4JqIK96BmI6ceo7PNvEUWB2SIaEYMC1vF08Goktj3BPh0j6SfTqXgXskNdEZApZbPyhzqQjCM-jp4c2l1FXY8MGqWY3lEMdeYFsfN7655oskmNw50_xjcLcO6occfPHpVGc2R9woAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1M75f0QMLnotr82r_lGty2GkIGLQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=eJO8hVeFbST5JEeEML0M3PNieDBu7RrRfCl8zB41akxmE4iJ-bQAAb2mO13HQk_3Lo9EW9ScP1eX26lErVUcJ9STwW-NrPXNo0YtnyOb_tHhtUaJe7v6rvZIvq0naekl7W_tAzUoQtsv-71jjQb6EBor7B2pEw0n8HRR6vJDXVI4YXOVFhm7WQ5epIvZ5SdI0XxfqJg3t-76ScHuGys6n_aDMAnpVT3CNgWpdbqhvoe_z89ddXEo2PQF6TBYaeWt5WR6vA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 106525893
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=t0txgzJwH2wcgyAhk9jTPTiOVITCj5cuhLFRPg6wTFa0kNh4VJsZib1KAG0ewQkWzB-bRXb1jEs9q28jxBegyB_HJvH8GQxQPX4s0EI28V2pLPjTqmAeKuhvGLXsGovTAOyJx-uaDFPyJE9BFYeWSmwGA6wCSBXiDXE5Q851nzUxCF7gqDdzc79s8R71Nrlp5Mwr2yneDr2MOrs0ICio1kaja8ozeKrL-XudwJdRTh4QgNfmgBTSopkSyqHexq8Oy9LOpFK2KaHzUf1QqrV2GEBNv7totRzB2Tj07iV7d8VNORlqtsdRttcodWEGmleBZuyXrlPTCnp5luDZVwoBAPm34KZOLKzntUbr3UfAHPUPsBeook3SyXUlXCJusFKPGXzIELUXqbi6CG2n7dgbDDFI-_kcIgUgjr5K0WZucUo4DOdPI50J69pt6ZYhueU5ICAw1w
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=t0txgzJwH2wcgyAhk9jTPTiOVITCj5cuhLFRPg6wTFa0kNh4VJsZib1KAG0ewQkWzB-bRXb1jEs9q28jxBegyB_HJvH8GQxQPX4s0EI28V2pLPjTqmAeKuhvGLXsGovTAOyJx-uaDFPyJE9BFYeWSmwGA6wCSBXiDXE5Q851nzUxCF7gqDdzc79s8R71Nrlp5Mwr2yneDr2MOrs0ICio1kaja8ozeKrL-XudwJdRTh4QgNfmgBTSopkSyqHexq8Oy9LOpFK2KaHzUf1QqrV2GEBNv7totRzB2Tj07iV7d8VNORlqtsdRttcodWEGmleBZuyXrlPTCnp5luDZVwoBAPm34KZOLKzntUbr3UfAHPUPsBeook3SyXUlXCJusFKPGXzIELUXqbi6CG2n7dgbDDFI-_kcIgUgjr5K0WZucUo4DOdPI50J69pt6ZYhueU5ICAw1w
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=t0txgzJwH2wcgyAhk9jTPTiOVITCj5cuhLFRPg6wTFa0kNh4VJsZib1KAG0ewQkWzB-bRXb1jEs9q28jxBegyB_HJvH8GQxQPX4s0EI28V2pLPjTqmAeKuhvGLXsGovTAOyJx-uaDFPyJE9BFYeWSmwGA6wCSBXiDXE5Q851nzUxCF7gqDdzc79s8R71Nrlp5Mwr2yneDr2MOrs0ICio1kaja8ozeKrL-XudwJdRTh4QgNfmgBTSopkSyqHexq8Oy9LOpFK2KaHzUf1QqrV2GEBNv7totRzB2Tj07iV7d8VNORlqtsdRttcodWEGmleBZuyXrlPTCnp5luDZVwoBAPm34KZOLKzntUbr3UfAHPUPsBeook3SyXUlXCJusFKPGXzIELUXqbi6CG2n7dgbDDFI-_kcIgUgjr5K0WZucUo4DOdPI50J69pt6ZYhueU5ICAw1w HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 22:38:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2806727
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2