dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
114 kB URL dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20457)
Size 114 kB (114362 bytes)
Hash dc781830282d56e2bf9860bbf02be62c
5ceac2aea0b4cde8eeaee6988fa66700e3a2a6b9
f00334f0e6740cb299e7ac0893728957783d5b926777edfac8b0b9f345a179f6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z HTTP/1.1
Host: dua-ogren.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 24 Sep 2023 02:54:19 GMT
date: Sun, 24 Sep 2023 02:54:19 GMT
cache-control: private, max-age=0
last-modified: Fri, 22 Sep 2023 05:36:16 GMT
etag: W/"021300c7988e0fd7e2ce248cebf0777a8f25aff8773470ed5fd8a206ae1e3975"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 114362
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
3.5 kB URL www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (10473)
Hash 158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 24 Sep 2023 02:54:19 GMT
expires: Sun, 24 Sep 2023 02:54:19 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
200 OK 33 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash ddb84c1587287b2df08966081ef063bf
9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f
88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33333
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 00:06:25 GMT
expires: Wed, 18 Sep 2024 00:06:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 442074
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1905229875718790
200 OK 51 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1905229875718790
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (3920)
Hash 9f7713403d4270ab9dd0dd014891c01c
cdb5cfd25b917d0ca3ed41c554d0b94a2cf804f5
9a323b1787095e5e5895bfc01d6f09dba16fb7bb6f223f876356af0521f10d56
GET /pagead/js/adsbygoogle.js?client=ca-pub-1905229875718790 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 24 Sep 2023 02:54:19 GMT
expires: Sun, 24 Sep 2023 02:54:19 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 1295473389960092869
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50907
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2
200 OK 19 kB URL GET HTTP/2 fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 19300, version 1.0\012- data
Hash 03724bc4fe96f498dc2945e967b4e84d
a4d4cacf44c2e6a9bf6b63110bfd4ecf8361b31b
7ff7d3790060dcf14289ea0e50e7df1f00893e53e882ff3101e078b2f948589f
GET /s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 11:17:18 GMT
expires: Sun, 22 Sep 2024 11:17:18 GMT
cache-control: public, max-age=31536000
age: 56222
last-modified: Tue, 21 Feb 2023 21:45:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 21:03:55 GMT
expires: Sat, 21 Sep 2024 21:03:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
age: 107425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJPkq1umA.woff2
200 OK 9.5 kB URL GET HTTP/2 fonts.gstatic.com/s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJPkq1umA.woff2
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 9488, version 1.0\012- data
Hash 9e313777dff25583903212b0b0001262
4cf98938a62547fe2c5515a644ec6f6e493375cb
8ca42fbad41ff91c41e383599ab39745d0252b3c5dba60cb4dd117242f18a99a
GET /s/lora/v32/0QI6MX1D_JOuGQbT0gvTJPa787weuxJPkq1umA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9488
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 11:07:33 GMT
expires: Sun, 22 Sep 2024 11:07:33 GMT
cache-control: public, max-age=31536000
age: 56807
last-modified: Tue, 21 Feb 2023 21:45:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff2
200 OK 38 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff2
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 37824, version 1.0\012- data
Hash 4d3f6b26b9a9546cf17b59f2983b0e4f
15fdb817ccaef89eba11c1fdc3f6c567cf723d53
b8bbb479c272a3669f0a05b93946ddbfe6bba7cb8133558b155844371b30c09c
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 18:12:53 GMT
expires: Wed, 18 Sep 2024 18:12:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:31:51 GMT
content-type: font/woff2
age: 376887
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/3024481792-rockpool_compiled.js
200 OK 47 kB URL GET HTTP/2 resources.blogblog.com/blogblog/data/res/3024481792-rockpool_compiled.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (1733)
Hash c1715cd6a2daeff2d1fe52b1ede736f4
d1dc5c0933535f99ab4295ff1718d8342b949e5a
5218c286d18d1f6341b99a448db086023b2789a9e382647a7bdd7499f6db2ff3
GET /blogblog/data/res/3024481792-rockpool_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47403
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 03:59:32 GMT
expires: Fri, 29 Sep 2023 03:59:32 GMT
cache-control: public, max-age=604800
last-modified: Thu, 21 Sep 2023 10:58:39 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 168888
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 51 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (3920)
Hash 36152c792de291ae3ed7e566ce73f885
a6f99d189f8ac71bbedd1a49eec35cbcaffa689d
09b081dd45054c633331893c0651d90dfebb2d3d00f8e6670ff90c40f12b8c14
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 24 Sep 2023 02:54:20 GMT
expires: Sun, 24 Sep 2023 02:54:20 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 112237152588745151
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dua-ogren.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/3 dua-ogren.blogspot.com/js/cookienotice.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/cookienotice.js HTTP/1.1
Host: dua-ogren.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 24 Sep 2023 02:54:20 GMT
expires: Sun, 01 Oct 2023 02:54:20 GMT
cache-control: public, max-age=604800
last-modified: Sat, 23 Sep 2023 18:51:29 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dua-ogren.blogspot.com/responsive/sprite_v1_6.css.svg
200 OK 2.2 kB URL GET HTTP/3 dua-ogren.blogspot.com/responsive/sprite_v1_6.css.svg
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7657)
Hash d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: dua-ogren.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 18:39:30 GMT
expires: Mon, 25 Sep 2023 18:39:30 GMT
cache-control: public, max-age=604800
last-modified: Sun, 17 Sep 2023 20:50:28 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 461690
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
35 kB URL fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 03:57:33 GMT
expires: Wed, 18 Sep 2024 03:57:33 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
age: 428207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 09:00:39 GMT
expires: Wed, 18 Sep 2024 09:00:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 410021
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/562952797-widgets.js
200 OK 160 kB URL GET HTTP/3 www.blogger.com/static/v1/widgets/562952797-widgets.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (2215)
Size 160 kB (160393 bytes)
Hash 0804e4c7fd72aea2ce34a04d9ec9686c
9f46bef1076230a1271d151a506fd1d91ae7df93
5ea4b0b19c5f030a3b42b570c07cbea89a7899f1d824a95b53ad2c4ca18a2b5c
GET /static/v1/widgets/562952797-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 160393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 02:21:50 GMT
expires: Thu, 19 Sep 2024 02:21:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 00:55:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 347550
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
200 OK 4.0 kB URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type ASCII text, with very long lines (20367), with no line terminators
Hash 72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 18:36:14 GMT
expires: Fri, 20 Sep 2024 18:36:14 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 202686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-1905229875718790&plah=dua-ogren.blogspot.com
200 OK 132 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-1905229875718790&plah=dua-ogren.blogspot.com
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (2079)
Size 132 kB (131563 bytes)
Hash 977c33b8e339d73db015b5d07717b405
e04b58cf1e6a0fb0caefa0c6deecd463b0c55996
5ae56cdb5ef29e3086234db2b8537cef7e7f76279ac89b52ce11a56642ad6783
GET /pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-1905229875718790&plah=dua-ogren.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 24 Sep 2023 02:54:20 GMT
expires: Sun, 24 Sep 2023 02:54:20 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 1040907028406535580
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 131563
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cse.google.com/cse.js?cx=018380583225472879999:76_1d5jzbh8
200 OK 3.0 kB URL GET HTTP/2 cse.google.com/cse.js?cx=018380583225472879999:76_1d5jzbh8
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (3170)
Hash 8336a9d133ad1cec58d7143f1c38ca6e
3ab1ece56673cf4215a6f608c6520ffa85d2d6fc
997c961e393e185bed085214d53198564a444d6d16e7b549ee044ba4ec837ba0
GET /cse.js?cx=018380583225472879999:76_1d5jzbh8 HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-eVQ-vvAQHsUWNTaew0wo4w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 24 Sep 2023 02:54:20 GMT
server: gws
content-length: 3002
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+081; expires=Tue, 23-Sep-2025 02:54:20 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 24 Sep 2023 02:54:20 GMT
cache-control: private
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.7oys_F1j_Ks.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq1hgtdi168tW40ImsstAJbL5yjCA/m=el_main
200 OK 78 kB URL GET HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.7oys_F1j_Ks.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq1hgtdi168tW40ImsstAJbL5yjCA/m=el_main
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type ASCII text, with very long lines (1660)
Hash d6a5cd989485c06a7ecf8500cb064345
af916a6f31c3f695444cdeaf47449ff9b02c1809
07e4580c8a2e3079fe0704dcbe0163aac0c4be58208a370aaf61c968215be2cf
GET /_/translate_http/_/js/k=translate_http.tr.no.7oys_F1j_Ks.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq1hgtdi168tW40ImsstAJbL5yjCA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 78269
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 19:14:48 GMT
expires: Fri, 20 Sep 2024 19:14:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:12:20 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 200372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/cse/static/style/look/v4/default.css
200 OK 1.3 kB URL GET HTTP/2 www.google.com/cse/static/style/look/v4/default.css
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintD2:77:FE:08:C6:61:6A:42:5C:1F:85:13:DA:23:B2:B8:46:20:45:88
ValidityMon, 04 Sep 2023 08:23:29 GMT - Mon, 27 Nov 2023 08:23:28 GMT
Hash c14e45e189f801818b14f1315605a632
dd7e7fb9d156b343beef0155b41da1c847d69e41
dcec22bbcb68119d6c7d6d5e088fb82183a9826d0c9e3403f1386fd837f06a89
GET /cse/static/style/look/v4/default.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1345
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 24 Sep 2023 02:47:37 GMT
expires: Sun, 24 Sep 2023 03:37:37 GMT
cache-control: public, max-age=3000
age: 403
last-modified: Wed, 17 Jun 2020 00:00:00 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/cse/static/element/e992cd4de3c7044f/cse_element__tr.js?usqp=CAI%3D
200 OK 106 kB URL GET HTTP/2 www.google.com/cse/static/element/e992cd4de3c7044f/cse_element__tr.js?usqp=CAI%3D
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintD2:77:FE:08:C6:61:6A:42:5C:1F:85:13:DA:23:B2:B8:46:20:45:88
ValidityMon, 04 Sep 2023 08:23:29 GMT - Mon, 27 Nov 2023 08:23:28 GMT
File type ASCII text, with very long lines (1925)
Size 106 kB (105585 bytes)
Hash c2298ed6369fb9b2ff6ad4387845aa1d
be521565f1441310b79711f578a719f2a314a84b
0230934c0d2be9be8de6c9a0a6da18da9e4006d7ff12835d2d97f5d97f997f97
GET /cse/static/element/e992cd4de3c7044f/cse_element__tr.js?usqp=CAI%3D HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 105585
date: Sun, 24 Sep 2023 02:54:20 GMT
expires: Sun, 24 Sep 2023 02:54:20 GMT
cache-control: private, max-age=31536000
last-modified: Mon, 31 Jul 2023 17:25:05 GMT
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/cse/static/element/e992cd4de3c7044f/default+tr.css
9.1 kB URL www.google.com/cse/static/element/e992cd4de3c7044f/default+tr.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintD2:77:FE:08:C6:61:6A:42:5C:1F:85:13:DA:23:B2:B8:46:20:45:88
ValidityMon, 04 Sep 2023 08:23:29 GMT - Mon, 27 Nov 2023 08:23:28 GMT
Hash cceef64799f5bf61b9dcb5cfc675ed55
f2eae36d5c2cab03d77d5d3601e0d12457d88b11
c965aefdb4c6acf10f46758dc1601a64d811dcf3a378bf9e90278916aa47508f
GET /cse/static/element/e992cd4de3c7044f/default+tr.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 9102
date: Sun, 24 Sep 2023 02:54:20 GMT
expires: Sun, 24 Sep 2023 02:54:20 GMT
cache-control: private, max-age=31536000
last-modified: Mon, 31 Jul 2023 17:25:05 GMT
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
200 OK 3.3 kB URL GET HTTP/3 fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Hash 2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 16:41:37 GMT
expires: Thu, 19 Sep 2024 16:41:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 295964
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
200 OK 910 B URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 18:59:20 GMT
expires: Thu, 19 Sep 2024 18:59:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
age: 287701
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/product/2x/translate_24dp.png
200 OK 1.8 kB URL GET HTTP/3 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 14:17:19 GMT
expires: Tue, 17 Sep 2024 14:17:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 477422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
partner.googleadservices.com/gampad/cookie.js?domain=dua-ogren.blogspot.com&callback=_gfp_s_&client=ca-pub-1905229875718790
200 OK 252 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=dua-ogren.blogspot.com&callback=_gfp_s_&client=ca-pub-1905229875718790
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
FingerprintEB:BF:81:86:29:44:29:54:16:A0:12:6C:6C:7F:D1:8D:ED:9E:97:1A
ValidityMon, 04 Sep 2023 08:21:47 GMT - Mon, 27 Nov 2023 08:21:46 GMT
File type ASCII text, with very long lines (391), with no line terminators
Hash 66c2422d313286b675d935960f029c8c
d3510201eb876c8e11de3ef598126cb3a0441bca
276e3dcb20b9e767d5aef806f7d47ea188ce864f2d6baff0424432c89d6baa7c
GET /gampad/cookie.js?domain=dua-ogren.blogspot.com&callback=_gfp_s_&client=ca-pub-1905229875718790 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 24 Sep 2023 02:54:21 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL GET HTTP/3 www.blogger.com/img/blogger_logo_round_35.png
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:32:02 GMT
expires: Mon, 25 Sep 2023 07:32:02 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 05:51:50 GMT
content-type: image/png
age: 501739
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/cse/static/images/1x/tr/branding.png
200 OK 1.8 kB URL GET HTTP/3 www.google.com/cse/static/images/1x/tr/branding.png
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type PNG image data, 214 x 15, 8-bit colormap, non-interlaced\012- data
Hash 6a631d9ab14d2f7abe4c16f76907cdb6
78b84cf427431419f089a0c759f40c2d67bf154c
b2e8c76f5c2f01e43cd86ff8f53321caee35ea4715b9cce5de9b8b03e8222bae
GET /cse/static/images/1x/tr/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1782
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 15:48:36 GMT
expires: Sun, 22 Sep 2024 15:48:36 GMT
cache-control: public, max-age=31536000
age: 39945
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/cse/static/css/v2/clear.png
200 OK 1.0 kB URL GET HTTP/3 www.google.com/cse/static/css/v2/clear.png
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 2df778bf2e22d52fe849babb330ec977
0f833f030bb43f282473bddd3a33b5f8cba7a845
329d1a750114920332eadc55c129957d9dbe5a1b25745e2f7e0ed4fad75e04cd
GET /cse/static/css/v2/clear.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/cse/static/element/e992cd4de3c7044f/default+tr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 07:51:44 GMT
expires: Sun, 22 Sep 2024 07:51:44 GMT
cache-control: public, max-age=31536000
age: 68557
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
dua-ogren.blogspot.com/favicon.ico
200 OK 911 B URL GET HTTP/3 dua-ogren.blogspot.com/favicon.ico
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash c90258d5fd1eb0f44505dce629ebf762
82834e3ab40d3675d530bca74adbb7675c5be7e1
31d64f1216d63221c1320eb6b5ef3cea6e093a3110063baccc1b6eab14d20760
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: dua-ogren.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sun, 24 Sep 2023 02:54:21 GMT
date: Sun, 24 Sep 2023 02:54:21 GMT
cache-control: private, max-age=86400
last-modified: Fri, 22 Sep 2023 05:36:16 GMT
etag: W/"021300c7988e0fd7e2ce248cebf0777a8f25aff8773470ed5fd8a206ae1e3975"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 911
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
clients1.google.com/generate_204
204 No Content 0 B URL GET HTTP/2 clients1.google.com/generate_204
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204 HTTP/1.1
Host: clients1.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sun, 24 Sep 2023 02:54:21 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cse.google.com/adsense/search/async-ads.js
200 OK 66 kB URL GET HTTP/3 cse.google.com/adsense/search/async-ads.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type gzip compressed data, max compression\012- data
Hash 5c42de3b8f10dc00d7a1de1f7cd811f4
fef67855e5a8a7315a1ceb3082aea4bd1f7da412
678612cf21670a288d970161e14d665f14b34abea6cff30b98e8d5b51bbf9f66
GET /adsense/search/async-ads.js HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Sun, 24 Sep 2023 02:54:21 GMT
expires: Sun, 24 Sep 2023 02:54:21 GMT
cache-control: private, max-age=3600
etag: "18043562029580667637"
x-content-type-options: nosniff
link: <https://afs.googlesyndication.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
1.4 kB URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
Hash a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 24 Sep 2023 02:54:21 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=R_YkdApVpbWBVq5PtZ7jHLR5a3byGjZ0bYqrXVcABbM3KoOe7hiViReFRz39bAj38TvBpyC9kKV49H1dvBgX3Uui1Ayki68iBNF0Le3qr7DhZh8NYHNkEo1Q4sDwisWm7cnL_BtDm9GhOyfpM8MfRU4-GwBo3xwfbeRpwhqTFA8; expires=Mon, 25-Mar-2024 02:54:21 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+027; expires=Tue, 23-Sep-2025 02:54:21 GMT; path=/; domain=.googleapis.com; Secure
expires: Sun, 24 Sep 2023 02:54:21 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.google.com/gen204?sl=tr&nca=te_ap&client=te&logld=vTE_20230920
204 No Content 0 B URL GET HTTP/3 translate.google.com/gen204?sl=tr&nca=te_ap&client=te&logld=vTE_20230920
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=tr&nca=te_ap&client=te&logld=vTE_20230920 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 24 Sep 2023 02:54:21 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-oJGoeYfAUNLVu2jmCPkf7Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=15.SE=oDsXt2w-JTqRt2YJJI-nszpkaIsT1IeSOvROKSjgnHt5ArlZsN6Wthy7tpBWsxUAUOMto0qBytGh04wFhp5LIdvYUe_EZlXiRaT_J7GQ-se2Q2TqI3befj-2uoay17q-xnKBiRZNLI0kTUMvmR1alTmMzqpK-O_OHvoAYMbqk-0; expires=Wed, 23-Oct-2024 19:12:39 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL GET HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint51:2A:C5:84:C9:49:F8:BA:3F:D9:82:0E:BA:01:C7:D5:36:C2:BA:64
ValidityMon, 04 Sep 2023 08:22:41 GMT - Mon, 27 Nov 2023 08:22:40 GMT
File type ASCII text, with very long lines (1321)
Hash 2cc87e9764aebcbbf36ff2061e6a2793
b4f2ffdf4c695aa79f0e63651c18a88729c2407b
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 24 Sep 2023 02:54:21 GMT
expires: Sun, 24 Sep 2023 02:54:21 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL GET HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint51:2A:C5:84:C9:49:F8:BA:3F:D9:82:0E:BA:01:C7:D5:36:C2:BA:64
ValidityMon, 04 Sep 2023 08:22:41 GMT - Mon, 27 Nov 2023 08:22:40 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash 1d3d22df067f5219073f9c0fabb74fdd
d5c226022639323d93946df3571404116041e588
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 03:47:15 GMT
expires: Thu, 19 Sep 2024 03:47:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 342426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js
15 kB URL pagead2.googlesyndication.com/bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (37385)
Hash a325f5c00749f9340329610f4d80371b
41126a232c6859b49eab99a0a269fcb56a3f01ef
b467032f1667c5c6639deaba6537cc84b48a99545a34070120a1f120a1b47c87
GET /bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 18:54:58 GMT
expires: Thu, 19 Sep 2024 18:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Sep 2023 15:38:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 287964
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=3056707916557585&rc=
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=3056707916557585&rc=
IP
Requested by https://www.google.com/recaptcha/api2/aframe
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=3056707916557585&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 24 Sep 2023 02:54:22 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tpc.googlesyndication.com/generate_204?DRABgA
0 B URL tpc.googlesyndication.com/generate_204?DRABgA
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint51:2A:C5:84:C9:49:F8:BA:3F:D9:82:0E:BA:01:C7:D5:36:C2:BA:64
ValidityMon, 04 Sep 2023 08:22:41 GMT - Mon, 27 Nov 2023 08:22:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?DRABgA HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sun, 24 Sep 2023 02:54:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=3056707916557585&bg=!JCelJ2jNAAYrDsWMCw47ADQBe5WfOAc5yUobhcB-r4AaNQL1JApqyf1PCE5n1xUvOQq7Bfo6BkMQWmbEuUxBgQbKpRJjAgAAARpSAAAADmgBBwoAut0hsbT-OPasOc7nN9wC6h-eDNRhDkTHcZ7dhLCKpy7SGGXDLoHMd1fLpLuw8LKPzOyWSMFsIn12urSXrB-ygJnLYP23QPKeXtfP3UoBDlfjugXd_JSR-MKGHGkevDBr6P4kuT1xssxb9nOkz5ektILhWWQxJXcunDrJiXeT6Q9bsLL8N3LLn54pjXmuGU-yfobNvrDpkL5tR2R4Fh8scq2MCMDuAkQ9OrMESfsUbUaGXs_DxCu-Xc14YJkChDGkcWm4ExO184yk8bWOksm_2zjphS6hIVF2kCs6-USbJPlBugHcrhPM10cFMOrIwNN9CEx5OvbzGvlJafrr5vSlxT4Khm5S9wNBoF7RKsR-xHSIEPUSCmKazPuFvo9yXJ1iKU_sPCR11N3hPBtmrKOyCqQ9qzZP9R3DQYWDgHjMRETpe6TomeHyGFlVh9697beqOXPdPAyXclTbDIMVIIa6qPkI7H9EtjSj0BDE9OU0HjGbAYmDebwMCMvQkd_xi-DMC4Ucdn_oeDbh-iNgmD_MImjjN8WCKaDZQRzsXPOGiKPJEYl5GFxgRdXxN9GgfyAH7ph6YqVQg7NGyCTXNUnKQ1FxbU-GObZxrSaqlCIhRhSpQDzR4vecOGzJvw6UCnoi7_yJSUV8Udicy-lC7nZ9PKLzpBHUUVFKgTdZwzbgc3hBGX1XF0Ik7qnj9Mo6e7pXeGTAMSFYLUTGf9XDBmalW3AU6gqVjmu2hU9rB7137bR14HY5m68dU5Ymv5tyf4P1yc6lP2SAPEr4jUJmSMusYJ1SGj-PNg324X9uTOEOwbiwYWFIFaR0tVZNEJ77DbZY9xToIOZqSySrX6Iry4bHcpJD47F8mlB6DM57jYrhRGCE5aS80CLUP5TRJ8s-bvA8fPGqGntKfKUQhVWz4_cu3J3KetV_LMV7O5gSmAOW_I4kZ487F-3m07tJlReEMfJvK07HloGWRZnp4eowq1-FjHTlC1ayJJAMDvLeIdPXJZTzejvtkD_UTI7CDXhiWJB0DZxQwSthaGNA2ayVx0pT0P5mHHEgohBZShwuqFCoaGkgc7MCbTHU3e5dTVMRIGGSCy7GbjhRTJj7jJExl41v7d5H
0 B URL pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=3056707916557585&bg=!JCelJ2jNAAYrDsWMCw47ADQBe5WfOAc5yUobhcB-r4AaNQL1JApqyf1PCE5n1xUvOQq7Bfo6BkMQWmbEuUxBgQbKpRJjAgAAARpSAAAADmgBBwoAut0hsbT-OPasOc7nN9wC6h-eDNRhDkTHcZ7dhLCKpy7SGGXDLoHMd1fLpLuw8LKPzOyWSMFsIn12urSXrB-ygJnLYP23QPKeXtfP3UoBDlfjugXd_JSR-MKGHGkevDBr6P4kuT1xssxb9nOkz5ektILhWWQxJXcunDrJiXeT6Q9bsLL8N3LLn54pjXmuGU-yfobNvrDpkL5tR2R4Fh8scq2MCMDuAkQ9OrMESfsUbUaGXs_DxCu-Xc14YJkChDGkcWm4ExO184yk8bWOksm_2zjphS6hIVF2kCs6-USbJPlBugHcrhPM10cFMOrIwNN9CEx5OvbzGvlJafrr5vSlxT4Khm5S9wNBoF7RKsR-xHSIEPUSCmKazPuFvo9yXJ1iKU_sPCR11N3hPBtmrKOyCqQ9qzZP9R3DQYWDgHjMRETpe6TomeHyGFlVh9697beqOXPdPAyXclTbDIMVIIa6qPkI7H9EtjSj0BDE9OU0HjGbAYmDebwMCMvQkd_xi-DMC4Ucdn_oeDbh-iNgmD_MImjjN8WCKaDZQRzsXPOGiKPJEYl5GFxgRdXxN9GgfyAH7ph6YqVQg7NGyCTXNUnKQ1FxbU-GObZxrSaqlCIhRhSpQDzR4vecOGzJvw6UCnoi7_yJSUV8Udicy-lC7nZ9PKLzpBHUUVFKgTdZwzbgc3hBGX1XF0Ik7qnj9Mo6e7pXeGTAMSFYLUTGf9XDBmalW3AU6gqVjmu2hU9rB7137bR14HY5m68dU5Ymv5tyf4P1yc6lP2SAPEr4jUJmSMusYJ1SGj-PNg324X9uTOEOwbiwYWFIFaR0tVZNEJ77DbZY9xToIOZqSySrX6Iry4bHcpJD47F8mlB6DM57jYrhRGCE5aS80CLUP5TRJ8s-bvA8fPGqGntKfKUQhVWz4_cu3J3KetV_LMV7O5gSmAOW_I4kZ487F-3m07tJlReEMfJvK07HloGWRZnp4eowq1-FjHTlC1ayJJAMDvLeIdPXJZTzejvtkD_UTI7CDXhiWJB0DZxQwSthaGNA2ayVx0pT0P5mHHEgohBZShwuqFCoaGkgc7MCbTHU3e5dTVMRIGGSCy7GbjhRTJj7jJExl41v7d5H
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=3056707916557585&bg=!JCelJ2jNAAYrDsWMCw47ADQBe5WfOAc5yUobhcB-r4AaNQL1JApqyf1PCE5n1xUvOQq7Bfo6BkMQWmbEuUxBgQbKpRJjAgAAARpSAAAADmgBBwoAut0hsbT-OPasOc7nN9wC6h-eDNRhDkTHcZ7dhLCKpy7SGGXDLoHMd1fLpLuw8LKPzOyWSMFsIn12urSXrB-ygJnLYP23QPKeXtfP3UoBDlfjugXd_JSR-MKGHGkevDBr6P4kuT1xssxb9nOkz5ektILhWWQxJXcunDrJiXeT6Q9bsLL8N3LLn54pjXmuGU-yfobNvrDpkL5tR2R4Fh8scq2MCMDuAkQ9OrMESfsUbUaGXs_DxCu-Xc14YJkChDGkcWm4ExO184yk8bWOksm_2zjphS6hIVF2kCs6-USbJPlBugHcrhPM10cFMOrIwNN9CEx5OvbzGvlJafrr5vSlxT4Khm5S9wNBoF7RKsR-xHSIEPUSCmKazPuFvo9yXJ1iKU_sPCR11N3hPBtmrKOyCqQ9qzZP9R3DQYWDgHjMRETpe6TomeHyGFlVh9697beqOXPdPAyXclTbDIMVIIa6qPkI7H9EtjSj0BDE9OU0HjGbAYmDebwMCMvQkd_xi-DMC4Ucdn_oeDbh-iNgmD_MImjjN8WCKaDZQRzsXPOGiKPJEYl5GFxgRdXxN9GgfyAH7ph6YqVQg7NGyCTXNUnKQ1FxbU-GObZxrSaqlCIhRhSpQDzR4vecOGzJvw6UCnoi7_yJSUV8Udicy-lC7nZ9PKLzpBHUUVFKgTdZwzbgc3hBGX1XF0Ik7qnj9Mo6e7pXeGTAMSFYLUTGf9XDBmalW3AU6gqVjmu2hU9rB7137bR14HY5m68dU5Ymv5tyf4P1yc6lP2SAPEr4jUJmSMusYJ1SGj-PNg324X9uTOEOwbiwYWFIFaR0tVZNEJ77DbZY9xToIOZqSySrX6Iry4bHcpJD47F8mlB6DM57jYrhRGCE5aS80CLUP5TRJ8s-bvA8fPGqGntKfKUQhVWz4_cu3J3KetV_LMV7O5gSmAOW_I4kZ487F-3m07tJlReEMfJvK07HloGWRZnp4eowq1-FjHTlC1ayJJAMDvLeIdPXJZTzejvtkD_UTI7CDXhiWJB0DZxQwSthaGNA2ayVx0pT0P5mHHEgohBZShwuqFCoaGkgc7MCbTHU3e5dTVMRIGGSCy7GbjhRTJj7jJExl41v7d5H HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 24 Sep 2023 02:54:23 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
0 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://dua-ogren.blogspot.com/
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://dua-ogren.blogspot.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Sun, 24 Sep 2023 02:54:31 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+781; expires=Tue, 23-Sep-2025 02:54:31 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 24 Sep 2023 02:54:31 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
131 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 319
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://dua-ogren.blogspot.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 24 Sep 2023 02:54:31 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+788; expires=Tue, 23-Sep-2025 02:54:31 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 24 Sep 2023 02:54:31 GMT
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200 OK 87 kB URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (2450)
Hash 0ec0969f9b3973751d5f864ad27b104c
e947f07cbadb3b4accfe864dc096561f8071f260
8e77400c8fc742e5b8385eb98176676cee95bb494af25e9f011042545f31e0b5
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 24 Sep 2023 02:54:20 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+091; expires=Tue, 23-Sep-2025 02:54:20 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env
200 OK 16 kB URL GET HTTP/3 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type JSON data\012- , ASCII text, with very long lines (15761), with no line terminators
Hash 8e0b99ed7c28aa5f2f23642787772d26
d0e0176f33c5ffb2fd49111fa2ae1a66bd6ddffe
9b5fa187c4fcc7954f9f7e1079593052defba093c1a26742035ae6fc57414304
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dua-ogren.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 24 Sep 2023 02:54:21 GMT
server: cafe
content-length: 11894
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/aframe
200 OK 829 B URL GET HTTP/3 www.google.com/recaptcha/api2/aframe
IP
Requested by https://dua-ogren.blogspot.com/search/label/Risale-i%20Nur%20%C4%B0kinci%20S%C3%B6z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (853), with no line terminators
Hash c605749b7df9955d0447aac6e8e7eb55
057315238f59ddb9e00fb85fcfdbb13fda65ae37
9641da2138b6616092aebecc28d70d83ad402e138d817401a4152b960825f257
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dua-ogren.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 24 Sep 2023 02:54:21 GMT
date: Sun, 24 Sep 2023 02:54:21 GMT
cache-control: private, max-age=300
content-security-policy: script-src 'nonce--EFSz5qhvnEcpL65ucwD0w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
142.250.74.97
0.0.0.0