r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2759
Expires: Wed, 07 Dec 2022 21:52:59 GMT
Date: Wed, 07 Dec 2022 21:07:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19517
Expires: Thu, 08 Dec 2022 02:32:17 GMT
Date: Wed, 07 Dec 2022 21:07:00 GMT
Connection: keep-alive
bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
172.217.21.161200 OK 27 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash e06dbbfe96de7418fa0395a92c376360
98f5301be492e9848083d1439156da2ca92223c3
d1ed80ed96c27d85cbcb4efffbc116ab9cf5c8472d03a9e8cf296e91ad3220bd
GET /search/label/Kashna%20Yay%C4%B1nlar%C4%B1 HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 07 Dec 2022 21:07:00 GMT
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 26976
Server: GSE
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 20:08:05 GMT
content-type: application/json
age: 3535
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10270
Expires: Wed, 07 Dec 2022 23:58:10 GMT
Date: Wed, 07 Dec 2022 21:07:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: an/82lVRfsf+1Nh09oO43qQJEel0blhEIumcGwdSmQLW9bBwbxkcNmPCEKlaiafJERc2I9Ap/rAGzr98HQaMtg==
x-amz-request-id: QE2DX2YRMW325BNC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 20:49:30 GMT
age: 1050
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 05:25:08 GMT
Expires: Wed, 14 Dec 2022 05:25:08 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 18:52:37 GMT
Content-Type: text/javascript
Age: 56512
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.130200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (3583)
Hash abe81777b22ffaf0362ae20e4b9f612b
4bd0dabcaea4d5dcdc450c6d26dfe7c6858251e8
5c7204ca0f7c00da4eca30e13b627f284c6d5ef5c5ddfb5fa66a56b80a2d45b5
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 07 Dec 2022 21:07:00 GMT
Expires: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 11434475883716027926
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36139
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f844a67fba8889a6b2a6da09b8bdb14
6ba076ed0091144165ae9a850d76a15fa920ee0f
bfff84a114e777161054a146a62fb820f58478e79a586d0259fab07bcbc18d23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9e83e23c9303fc167d2b23bceba4f304
cc712e67770a00bcc9901a6881f5b1cd343cf054
16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/icon_feed12.png
216.58.207.233200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 216.58.207.233:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:00:15 GMT
expires: Tue, 13 Dec 2022 14:00:15 GMT
cache-control: public, max-age=604800
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: image/png
age: 112005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
216.58.207.233200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:06:05 GMT
expires: Tue, 13 Dec 2022 15:06:05 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 01:53:22 GMT
content-type: image/gif
age: 108055
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-netvibes.png
216.58.207.233200 OK 1.4 kB URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:58:30 GMT
expires: Tue, 13 Dec 2022 21:58:30 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 10:54:03 GMT
content-type: image/png
age: 83310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:47:55 GMT
expires: Wed, 06 Dec 2023 21:47:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 21:53:25 GMT
content-type: text/css
age: 83945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.46200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 07 Dec 2022 21:07:00 GMT
expires: Wed, 07 Dec 2022 21:07:00 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
216.58.207.233200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 10:41:41 GMT
expires: Tue, 13 Dec 2022 10:41:41 GMT
cache-control: public, max-age=604800
last-modified: Mon, 05 Dec 2022 10:54:49 GMT
content-type: image/png
age: 123919
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:19:21 GMT
expires: Tue, 13 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 07:54:23 GMT
content-type: image/gif
age: 110859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 49580bf15d6c9cd5b8571621b4e8141c
8e889626f8507eebff70a7e5c74c7348a364c64d
3424d8286f316866dad95f4686bb070e35be4ee7c12cb0975bb159731208b7ae
GET /-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-okumak.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4949
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:54 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "ve28"
Content-Type: image/jpeg
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.161200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:54 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "ve2b"
Content-Type: image/jpeg
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "vb25"
Content-Type: image/jpeg
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "v471"
Content-Type: image/jpeg
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:07:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:00 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:53 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "vc14"
Content-Type: image/jpeg
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-oku.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9483
ETag: "v18e"
Content-Type: image/jpeg
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:07:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:00 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash cbbbf3bb7b15b7eead3c8e6c4ab9c0c9
9697069ea0a0bc837032f2a8f591b8494ef87b5c
a3f8833d2726dd727cfe193d4d8c4a29c95af093216cda7c6cffaede370040fb
GET /blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:07:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:00 GMT
server: fife
content-length: 3345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 157 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Size 157 kB (156915 bytes)
Hash 64d62574443f9d2148012af05abf60ac
16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e
c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 05:43:30 GMT
expires: Wed, 06 Dec 2023 05:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 08:51:54 GMT
content-type: text/javascript
age: 141810
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:56 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fbf3e14fce03cde8539912ad2a0384fc
5ffd5e3b32819c202128ee90148a75c4b8096c6d
e1b84332d9f04fb79a8835608ee562ef992d2df239a0162def37e8a817c0843a
GET /blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:00 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sayac.onlinewebstat.com/c.js
217.195.203.216200 OK 2.4 kB URL HTTP/1.1 sayac.onlinewebstat.com/c.js
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type ASCII text, with CRLF line terminators
Hash 93e259972860a0e13edf59ab0ac01fbc
e5c790c39dca158666bfa94013512ec579042557
a98c5155f8586678344d1c2a312e8098bf72dcc832a5b0c15406c44ed19a7d94
GET /c.js HTTP/1.1
Host: sayac.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:58 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Sun, 18 Jan 2015 06:57:45 GMT
ETag: "251e-50ce7b90a6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2418
Connection: close
Content-Type: application/javascript
kitap.yazarokur.com/_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg
3.127.100.152404 Not Found 196 B URL HTTP/1.1 kitap.yazarokur.com/_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg
IP 3.127.100.152:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg HTTP/1.1
Host: kitap.yazarokur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 07 Dec 2022 21:07:00 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 196
Connection: keep-alive
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.65200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.65:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Thu, 08 Dec 2022 18:28:57 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdd7"
Content-Type: image/gif
Age: 9483
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 17:26:49 GMT
expires: Thu, 07 Dec 2023 17:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 13211
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.130200 OK 47 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.130:0
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Server: cafe
Content-Length: 47
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 16:07:53 GMT
Expires: Wed, 21 Dec 2022 16:07:53 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 17947
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:58 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
i.dr.com.tr/cache/600x600-0/originals/0000000144462-1.jpg
143.204.55.45200 OK 55 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000144462-1.jpg
IP 143.204.55.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 360x600, components 3\012- data
Hash d227ac44964a74c79d71b28c2418979f
eeeec6127535d07ec98bf93092eb880aadb3a962
405835fe8d631d0f5276d6f75e09ce53052f4fd0565eb7c4b4d788f67f5526fe
GET /cache/600x600-0/originals/0000000144462-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 54867
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 08:44:54 GMT
Last-Modified: Sun, 10 Jun 2018 20:37:40 GMT
ETag: "5b1d8c14-d653"
Expires: Sat, 10 Dec 2022 08:44:54 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: byrTji7aT4tg_aFcsC_MeX4WCxxZRe9NK38rFEnq06zg8zVIzfiK3A==
Age: 390126
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.dr.com.tr/cache/600x600-0/originals/0000000377643-1.jpg
143.204.55.45200 OK 60 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000377643-1.jpg
IP 143.204.55.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 341x600, components 3\012- data
Hash 23b4234eb98db526e8d8f85b3065eb2a
660f50145376c04cfa36b9bcee3aae4c0f3bcf0a
930fd27c8ada576348daff097642e7902438ad7add4f61337e685b46512ed7dd
GET /cache/600x600-0/originals/0000000377643-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 59710
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 23:57:08 GMT
Last-Modified: Sat, 09 Jun 2018 13:51:30 GMT
ETag: "5b1bdb62-e93e"
Expires: Sat, 10 Dec 2022 23:57:08 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ExcXNU1TNATr3oVLbOjhg6RMrqm5NsnwKmOGd5Fpy3s6WQWXQ_AIUA==
Age: 335388
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9e83e23c9303fc167d2b23bceba4f304
cc712e67770a00bcc9901a6881f5b1cd343cf054
16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.dr.com.tr/cache/600x600-0/originals/0000000302295-1.jpg
143.204.55.45200 OK 76 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000302295-1.jpg
IP 143.204.55.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 333x600, components 3\012- data
Hash c43e55c5835b2d08533b495594e3df02
123f6832840eab5ef7f2d6a9a66a58c22c695890
429ee9a0bded292711368ca70b65810ec5e6886e7fae8d2e772c7454ec7196e0
GET /cache/600x600-0/originals/0000000302295-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 75830
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 23:57:08 GMT
Last-Modified: Wed, 27 Jun 2018 20:24:47 GMT
ETag: "5b33f28f-12836"
Expires: Sat, 10 Dec 2022 23:57:08 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qYLce6-EkWL40w8W3w-Tg3u1CgkCGovSnvYC1F1Sh8b63bKmHanDag==
Age: 335388
i.dr.com.tr/cache/600x600-0/originals/0000000302296-1.jpg
143.204.55.45200 OK 61 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000302296-1.jpg
IP 143.204.55.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 334x600, components 3\012- data
Hash f872b86f5358dbbe71bf9ba1a210c947
9a844bd9d570b69a29f4a3e18cc8b7fc568b7c3b
86cb8c598e7534b9fbac5da632c3339ab3b28c1bacf1bb3433e3a97cd6d4bd36
GET /cache/600x600-0/originals/0000000302296-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 61410
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 00:50:50 GMT
Last-Modified: Wed, 16 May 2018 15:21:12 GMT
ETag: "5afc4c68-efe2"
Expires: Sat, 10 Dec 2022 00:50:50 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pYsR8CK47_MuicDhlKYHoHDpxBke97t6Gro9ZeHGEqeEDBhhOkiKpQ==
Age: 418565
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ba8392a35e279a05f632a48d38b831f
49fcabcfff2128fb4a87164981595ec9f813f2f6
b82849af3ed3e533f08673c23a3412582bccf9022402a7050d750a96cdf82dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 17:28:13 GMT
expires: Tue, 13 Dec 2022 17:28:13 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 04:51:45 GMT
content-type: image/png
age: 99527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
216.58.207.233200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 216.58.207.233:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 12:40:23 GMT
Expires: Tue, 13 Dec 2022 12:40:23 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 04:51:45 GMT
Content-Type: image/png
Age: 116797
1.bp.blogspot.com/-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png
142.250.74.161200 OK 19 kB URL HTTP/2 1.bp.blogspot.com/-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png
IP 142.250.74.161:0
File type PNG image data, 300 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash ca2832e26ad88468f2e57f4f0a317d6c
fec5b090e6fad381b48f25cfaecbd8254e2353e5
0dcdb273bfc225cceccc7cc180a189a0d6b0095e0a73314a416d5d8ba6dc8963
GET /-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vf2f"
expires: Thu, 08 Dec 2022 21:07:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="register.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:00 GMT
server: fife
content-length: 19003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Dec 2022 21:07:00 GMT
last-modified: Wed, 07 Dec 2022 21:07:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ba8392a35e279a05f632a48d38b831f
49fcabcfff2128fb4a87164981595ec9f813f2f6
b82849af3ed3e533f08673c23a3412582bccf9022402a7050d750a96cdf82dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.130200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (4885)
Hash 1c55745850c8d730ed5a563430fc55d7
53cb8e892c222714a8e4ec68bcab747d1546191f
1a58f92ffff925a2eb15a0b8c77ed669826ab3000c516d829d7d0426f36d2878
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 07 Dec 2022 21:07:00 GMT
Expires: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 4985534125551011722
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52363
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071168
142.250.74.130200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071168
IP 142.250.74.130:0
File type ASCII text, with very long lines (5919)
Size 120 kB (119972 bytes)
Hash a0eb961cd139896d82cc27aa4e3e1e32
8165ff4bf1cab20e80a012674749b1086583676b
3fcf966930dd8f2633e479d3c5f9231300602e59053d69a373c36e7ef9d0dc34
GET /pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071168 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 07 Dec 2022 21:07:00 GMT
expires: Wed, 07 Dec 2022 21:07:00 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 3803200060174440803
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119972
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg
142.250.74.161200 OK 335 B URL HTTP/1.1 2.bp.blogspot.com/-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg
IP 142.250.74.161:0
File type PNG image data, 144 x 400, 4-bit colormap, non-interlaced\012- data
Hash c4908f4189f7698dc8afdd67df8ce041
b6f7cd64ff84e7cedb4b8b92ceb8b9800ad7624a
cfe1d5dd45c7f0897d769e6c95ae9036fbdc7dad76ac9ed6ce6b21a785ecd6de
GET /-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdf8"
Expires: Thu, 08 Dec 2022 21:07:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Bir T_rk D_nyaya Bedel _ki T_rk Lak Lak Eder Erdal Demirk_ran.jpg";filename*=UTF-8''Bir%20T%C3%BCrk%20D%C3%BCnyaya%20Bedel%20%C4%B0ki%20T%C3%BCrk%20Lak%20Lak%20Eder%20Erdal%20Demirk%C4%B1ran.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 07 Dec 2022 21:07:00 GMT
Server: fife
Content-Length: 196646
X-XSS-Protection: 0
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 07:09:35 GMT
Expires: Tue, 13 Dec 2022 07:09:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 06:50:28 GMT
Content-Type: image/png
Age: 136645
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Tue, 06-Dec-2022 21:06:57 GMT; path=/
ASP.NET_SessionId=4qvjreguqubc4r3kowxv40u4; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Thu, 08-Dec-2022 21:06:57 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:56 GMT
Content-Length: 339
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.751689312580579&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.751689312580579&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.751689312580579&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:59 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 20:07:55 GMT
age: 3546
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash aa0e64420f718aa4713e3f080b8d4099
927435ff8af66fa63c34aa0670ae80a997d59cd9
f8e0ab18de96e3d7aa4ed6a819740957b38c0c5d9571c8ccc23ba2dd4530fd42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 0d44ce5ae3cd88dd2409cd3af92f0b80
b7dc445ce989f88992a22e6fecc45b0ec53564db
b538ecff1aef8bc5f5b4ca8e2282172bda67d3daa345516e76b4000782e491bb
GET /gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:07:01 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:07:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA
172.217.21.161200 OK 251 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA
IP 172.217.21.161:0
File type JSON data\012- , ASCII text, with very long lines (394), with no line terminators
Hash 1086e4531a7ba51b756edfb586377f38
865f87bdffc487590cebd7edfe69d683c1c54bbc
3bcc3722eb6cceb6ad88a4831a204d5931a8ccf02498b0f6d370378937dbf0e9
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
Cookie: cwou_bookwormbilgeadam=1670447220; bwou_bookwormbilgeadam=1670447220; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 07 Dec 2022 21:07:01 GMT
Expires: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 251
Server: GSE
adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:07:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1088), with CRLF line terminators
Hash e55a92fcd3f682b9d50e7620cbea9d71
9a093f823bae7fa98ac124c3da702ed9eddae98d
7dd4bb57c2ac16f08d940fca29004048ae178ca5a343b1759b0e1e63a366d6f6
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Tue, 06-Dec-2022 21:06:57 GMT; path=/
ASP.NET_SessionId=14munj0r00kkppr2x3wpo4qk; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:56 GMT
Content-Length: 2747
www.blogger.com/navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
216.58.207.233200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 25197ee7a9bcff961378248ce6a1c810
f3bfd986d52ea4bcc2663d74a18c6ff5803b5a73
59096ab54386f487794724cec5a1756fe9ebbb1a39d47e3d1ead8ab72c939640
GET /navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2631
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5084
Cache-Control: max-age=134673
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:31:34 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash aa0e64420f718aa4713e3f080b8d4099
927435ff8af66fa63c34aa0670ae80a997d59cd9
f8e0ab18de96e3d7aa4ed6a819740957b38c0c5d9571c8ccc23ba2dd4530fd42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c221e4deeb8144b7fc354cce5dc563f8
578e9395e2800e2e19bde2a1d49d9501f6aa3364
258bf83c23b05e8bc9b987e849a194b9f81742ee4268f6453a1e88bfaca959f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/widgets/stats-flipper.png
216.58.207.233200 OK 233 B URL HTTP/2 www.blogger.com/img/widgets/stats-flipper.png
IP 216.58.207.233:0
File type PNG image data, 88 x 30, 8-bit grayscale, non-interlaced\012- data
Hash 99a2cb03ed5a76104972e477196f1f09
4e12527ed6d99f198728c6631bf7a787911bf4bc
2911f4e04096744757ceab7a895e0ee51494b6feaefaef9f1870272b3dc2dcca
GET /img/widgets/stats-flipper.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 13:44:16 GMT
expires: Tue, 13 Dec 2022 13:44:16 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 10:54:03 GMT
content-type: image/png
age: 112965
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 7c6b613326b653f457ea18a1021d0787
e87ec524338257fd33b0680847c578e908b39cad
1dcd77f26a60f337ba20a8a54dd3c697e77ac54f07e7d48ddfab994e6a09cdc7
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "80693f6cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:56 GMT
Content-Length: 2725
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:57 GMT
Content-Length: 43
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:57 GMT
Content-Length: 1261
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 3.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 28\012- data
Hash 504b338076be77e4a2bc400c79177fd0
d91f251482238fc3359e5855e95fb9b09efd5c66
073807612778e4fc61a6ab404ff1cd8b668a5028f74ddd372d5abdc721c8d2fa
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:57 GMT
Content-Length: 3282
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Gi2Lu+zQNFxUT8j1u1I/cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: m5GcVx3p0fHYM0d0WS7qeOqWoiE=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0264363384921479eaf9c1b2194f34b0
424816559e81431859ca5a26b5fec8bed54a1420
e49fdca9ba404b0a8467c2d26872c89a98b6d24f7710ad38f85c5752a4f4f181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0264363384921479eaf9c1b2194f34b0
424816559e81431859ca5a26b5fec8bed54a1420
e49fdca9ba404b0a8467c2d26872c89a98b6d24f7710ad38f85c5752a4f4f181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js
216.58.211.1200 OK 7.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1532)
Hash 8b96e824b8c6b3b385a1876ef7973762
0ff92f9095d3945911b72a8259512a97967783a7
e707746d4baf394759dc9adb8839a736ae7fb901a8e9198c84277b0436f4eb4b
GET /pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7443
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:29:00 GMT
expires: Wed, 21 Dec 2022 02:29:00 GMT
cache-control: public, max-age=1209600
age: 67081
etag: 629801499763588852
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/window_focus_fy2021.js
216.58.211.1200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/window_focus_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221129/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:29:00 GMT
expires: Wed, 21 Dec 2022 02:29:00 GMT
cache-control: public, max-age=1209600
age: 67081
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0264363384921479eaf9c1b2194f34b0
424816559e81431859ca5a26b5fec8bed54a1420
e49fdca9ba404b0a8467c2d26872c89a98b6d24f7710ad38f85c5752a4f4f181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:57 GMT
Content-Length: 3993
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3501)
Hash ef1c9435be063c9ab3d647cf9b724750
103489edc626e6284455cb8b90d2de205856e258
a9855ba62028cd8fad2000099280c6f494e443df6d4a728d4b9719437ffb32dd
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47692
date: Wed, 07 Dec 2022 21:07:01 GMT
expires: Wed, 07 Dec 2022 21:07:01 GMT
cache-control: private, max-age=3000
etag: "1670243872199174"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 54db2aa5029ab3c4ca457cced55c1c4d
790becaae5da563169b3d4fc0ca6018e8ad56cd1
48d1473c9967a42f89d04d012071df7d1e50ee13abe4d7324f91f806fb4988e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3528
Cache-Control: max-age=97508
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Etag: "638fcc91-139"
Expires: Fri, 09 Dec 2022 00:12:09 GMT
Last-Modified: Tue, 06 Dec 2022 23:13:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 54db2aa5029ab3c4ca457cced55c1c4d
790becaae5da563169b3d4fc0ca6018e8ad56cd1
48d1473c9967a42f89d04d012071df7d1e50ee13abe4d7324f91f806fb4988e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3528
Cache-Control: max-age=97508
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Etag: "638fcc91-139"
Expires: Fri, 09 Dec 2022 00:12:09 GMT
Last-Modified: Tue, 06 Dec 2022 23:13:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookworm-bilgeadam.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
Cookie: cwou_bookwormbilgeadam=1670447220; bwou_bookwormbilgeadam=1670447220; woubookwormbilgeadam=t; _ga=GA1.3.756047506.1670447221; _gid=GA1.3.702504664.1670447221; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 07 Dec 2022 21:07:01 GMT
Date: Wed, 07 Dec 2022 21:07:01 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 60bd3b3610704eaf3e3459e8d28d1b6e
1c8412e9d2e833080f85199a105abbfcb311437c
ef4bbbd89350042280fb508e37f3ca3073d9724f0cbde95a979550e298c36b10
GET /blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:07:01 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 13028
expires: Mon, 27 Nov 2023 21:07:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4C6IcpBPxNZyhNwrGJaD20ItqQxeai6RJrnhpQJLlYJir07s8Twon0GC5uALquMxw%2BnefCGuoNtyjsRWEZb19QKWxBo%2BUEphpqyVRwsh1joQY%2FfSFClB1yiRyYb7xskxVZnTd5hX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77603a821b08b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 940d7c307bf7595a44a1cb0b2ce470d9
3f693508b7f0ec10524e03941f9422b13ad733fa
9d2b072a81aaa57162351b491bafbcb5594c939043cb1c3ddf53bef23262a375
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2965
Cache-Control: max-age=148760
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "639096f9-13a"
Expires: Fri, 09 Dec 2022 14:26:22 GMT
Last-Modified: Wed, 07 Dec 2022 13:36:57 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 742888696000838f32ddad875505f28e
fee4854813378a126f954137a4bddef415240661
be9ee25e8b8768fd0645e71ef5a094d88f02fc309906347b333cc4ea2c44eed2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 819
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Last-Modified: Wed, 07 Dec 2022 20:53:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 742888696000838f32ddad875505f28e
fee4854813378a126f954137a4bddef415240661
be9ee25e8b8768fd0645e71ef5a094d88f02fc309906347b333cc4ea2c44eed2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6466
Cache-Control: max-age=154057
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63909dfd-139"
Expires: Fri, 09 Dec 2022 15:54:39 GMT
Last-Modified: Wed, 07 Dec 2022 14:06:53 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEHUAkWMz-aXFO5FB9WA2XQASAAA&wp=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEHUAkWMz-aXFO5FB9WA2XQASAAA&wp=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEHUAkWMz-aXFO5FB9WA2XQASAAA&wp=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 176039
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEHUAkWMBHN_57Wg2EprhMgASAAA&wp=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEHUAkWMBHN_57Wg2EprhMgASAAA&wp=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEHUAkWMBHN_57Wg2EprhMgASAAA&wp=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 228205
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EHUAkWNoxYa9k4_ZY71lCQASAAA&wp=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EHUAkWNoxYa9k4_ZY71lCQASAAA&wp=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EHUAkWNoxYa9k4_ZY71lCQASAAA&wp=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 311950
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 475fa1da3fd4f88775702cd00b9e56ef
4e1f5df96cf80e28e9abe9932479402ee0784a91
f4527e30386f6c797da28268930feca646fae945fa930560df78ef20530364f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4722
Cache-Control: max-age=86413
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "638f9c91-1d7"
Expires: Thu, 08 Dec 2022 21:07:15 GMT
Last-Modified: Tue, 06 Dec 2022 19:48:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Last-Modified: Wed, 07 Dec 2022 19:46:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4868
Cache-Control: max-age=93409
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "638fb753-139"
Expires: Thu, 08 Dec 2022 23:03:51 GMT
Last-Modified: Tue, 06 Dec 2022 21:42:43 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Last-Modified: Wed, 07 Dec 2022 19:46:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Last-Modified: Wed, 07 Dec 2022 19:46:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Last-Modified: Wed, 07 Dec 2022 19:46:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4397
Cache-Control: max-age=143002
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:50:24 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4310
Cache-Control: max-age=142915
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:48:57 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4397
Cache-Control: max-age=143002
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:50:24 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4310
Cache-Control: max-age=142915
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:48:57 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4397
Cache-Control: max-age=143002
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:50:24 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1&b=400
178.250.2.135200 OK 44 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c8ff08c075236ba4e925d1faf40802e8
3d431faaea572b190081a95caa024ccf30441bc3
fb8c3d12c4bbeef1c1e5ba9b9bdd31d8b2f9de9a51e4449b140eec52ea6266bb
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 07 Dec 2022 21:07:02 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 44252
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA&u=%7C8T%2FNDkwcsnxqlvw8Og0Qas6QNojCXU3YIvuUfxRnhSo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbfKuTmFXVYx-NzsEGBPKuQrrzg8cycum5n61K_pWivnbcUxAKfZJ31ND4bg6OlszWQ_uDyz39a20rER2VpEUTG3BjOmL2zNt3HH8utFsn8wHMoGJcTFH2ofjTT76hiD1PlHPkxrSAj1cpH00xQNAzHIoctSMasEtiZcqpGnaA7IyxBvPWcxU3WSuB_FWt232RWZatiumn2Zi1oxvQQYc5cAYUqOb8vyrXnDnXP7i7JQeFZAByR2xkPF2VcMkAiqp_f8VF9peWDVuIFAaB5AGOJfGIQehXKq2tbWThsPL_xRJ6J0kNFkd5qdEg0pA94igct-gk69tY7ForQS9NSlR3_b6m17OnyLWd7GLAF14RoS5mf7bD9Y5X995I7e7g_4RpuClnoQpn5BWXeVwDel9qB52qsniHEg_hFCKowKHKKAnrht4bT0RM8EDE2HS1Wx4-DifH1YwVgEj4O53giHdFqPozO6U3u5j4-PKal8enUjXw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnB2PdQCRY-C5GNXy6gTqrYywCMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIYCT9BC92ivBgFHtHDXBBqUH4z_mOteM4A97Uoxw_fLZ9vXRMotsG3c3h6uNZ_uYFNYG1ycybo6898E3coem4NkZrmzH4X9QV8Y0_0VH2hy7ouYHrDg2arFhH_M-S1Z-eZXjjpMIxNK-NW5VEYr1Pm1LGYBywPRLSLnSErYSkpN01QMbO53eujuDcHtSE3BH_Otb0Opb_xc2bciipyau2Xrr-wpIqnUIVJilV0qnjS_LFNkFWBtRgngJys--Y9wW_Gqos1pK6OQQ7KF8qa-jca_tWPXSOHnuZWDpOjM0QCXCIuTahDM3QAuetRKpJlSMvazzpObpOhRW4hoql-AblJ6kljy3RN4EIAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0wCrv9cV2tKPKKKxV1uQDAFxXbuQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 53 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA&u=%7C8T%2FNDkwcsnxqlvw8Og0Qas6QNojCXU3YIvuUfxRnhSo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbfKuTmFXVYx-NzsEGBPKuQrrzg8cycum5n61K_pWivnbcUxAKfZJ31ND4bg6OlszWQ_uDyz39a20rER2VpEUTG3BjOmL2zNt3HH8utFsn8wHMoGJcTFH2ofjTT76hiD1PlHPkxrSAj1cpH00xQNAzHIoctSMasEtiZcqpGnaA7IyxBvPWcxU3WSuB_FWt232RWZatiumn2Zi1oxvQQYc5cAYUqOb8vyrXnDnXP7i7JQeFZAByR2xkPF2VcMkAiqp_f8VF9peWDVuIFAaB5AGOJfGIQehXKq2tbWThsPL_xRJ6J0kNFkd5qdEg0pA94igct-gk69tY7ForQS9NSlR3_b6m17OnyLWd7GLAF14RoS5mf7bD9Y5X995I7e7g_4RpuClnoQpn5BWXeVwDel9qB52qsniHEg_hFCKowKHKKAnrht4bT0RM8EDE2HS1Wx4-DifH1YwVgEj4O53giHdFqPozO6U3u5j4-PKal8enUjXw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnB2PdQCRY-C5GNXy6gTqrYywCMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIYCT9BC92ivBgFHtHDXBBqUH4z_mOteM4A97Uoxw_fLZ9vXRMotsG3c3h6uNZ_uYFNYG1ycybo6898E3coem4NkZrmzH4X9QV8Y0_0VH2hy7ouYHrDg2arFhH_M-S1Z-eZXjjpMIxNK-NW5VEYr1Pm1LGYBywPRLSLnSErYSkpN01QMbO53eujuDcHtSE3BH_Otb0Opb_xc2bciipyau2Xrr-wpIqnUIVJilV0qnjS_LFNkFWBtRgngJys--Y9wW_Gqos1pK6OQQ7KF8qa-jca_tWPXSOHnuZWDpOjM0QCXCIuTahDM3QAuetRKpJlSMvazzpObpOhRW4hoql-AblJ6kljy3RN4EIAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0wCrv9cV2tKPKKKxV1uQDAFxXbuQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
Hash 8e578a2c0b9fae1f2ba9e01f4e52769f
2cfc856091fbbd40d8e4d49a71a54899decb0297
a72e2f6291dd18bcccfef7cc86d3e97a217433c73360193b898c05b050fd5b10
GET /delivery/r/afr.php?z=Y5EAdQAGHOAKmrlVAAMW6vdzEWonxo0f6VCENA&u=%7C8T%2FNDkwcsnxqlvw8Og0Qas6QNojCXU3YIvuUfxRnhSo%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbfKuTmFXVYx-NzsEGBPKuQrrzg8cycum5n61K_pWivnbcUxAKfZJ31ND4bg6OlszWQ_uDyz39a20rER2VpEUTG3BjOmL2zNt3HH8utFsn8wHMoGJcTFH2ofjTT76hiD1PlHPkxrSAj1cpH00xQNAzHIoctSMasEtiZcqpGnaA7IyxBvPWcxU3WSuB_FWt232RWZatiumn2Zi1oxvQQYc5cAYUqOb8vyrXnDnXP7i7JQeFZAByR2xkPF2VcMkAiqp_f8VF9peWDVuIFAaB5AGOJfGIQehXKq2tbWThsPL_xRJ6J0kNFkd5qdEg0pA94igct-gk69tY7ForQS9NSlR3_b6m17OnyLWd7GLAF14RoS5mf7bD9Y5X995I7e7g_4RpuClnoQpn5BWXeVwDel9qB52qsniHEg_hFCKowKHKKAnrht4bT0RM8EDE2HS1Wx4-DifH1YwVgEj4O53giHdFqPozO6U3u5j4-PKal8enUjXw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnB2PdQCRY-C5GNXy6gTqrYywCMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIYCT9BC92ivBgFHtHDXBBqUH4z_mOteM4A97Uoxw_fLZ9vXRMotsG3c3h6uNZ_uYFNYG1ycybo6898E3coem4NkZrmzH4X9QV8Y0_0VH2hy7ouYHrDg2arFhH_M-S1Z-eZXjjpMIxNK-NW5VEYr1Pm1LGYBywPRLSLnSErYSkpN01QMbO53eujuDcHtSE3BH_Otb0Opb_xc2bciipyau2Xrr-wpIqnUIVJilV0qnjS_LFNkFWBtRgngJys--Y9wW_Gqos1pK6OQQ7KF8qa-jca_tWPXSOHnuZWDpOjM0QCXCIuTahDM3QAuetRKpJlSMvazzpObpOhRW4hoql-AblJ6kljy3RN4EIAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_0wCrv9cV2tKPKKKxV1uQDAFxXbuQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:00 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 50468041
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
178.250.2.135200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 205x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3682dacb7a94af61dee15aa78045a9a5
abcfe697906b924e5a296a4720d72fc30d5e56b2
c8099a2a55044610080b73376df81d8050a41b3dead8b147381fc523037c9d50
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29334558
expires: Sun, 12 Nov 2023 09:36:20 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3670
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw
178.250.2.135200 OK 1.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 196x196, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01f33a498f65bf4bb751def8c06a1991
dd3dc1f876dbec906a17869724b8d3284beb37cb
9e92587541f93124197e414774716e7099233aef4b4d56f4d888e9bb649b5362
GET /img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29593468
expires: Wed, 15 Nov 2023 09:31:31 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29574571
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/93075/221201/634481ac81d24cb0b01b0dafaf652bd8_cpn_300x600_1.jpeg
178.250.0.130200 OK 227 kB URL HTTP/2 static.criteo.net/design/dt/93075/221201/634481ac81d24cb0b01b0dafaf652bd8_cpn_300x600_1.jpeg
IP 178.250.0.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x600, components 3\012- data
Size 227 kB (226581 bytes)
Hash c8162665289ccdc82560d38b17a15369
17768e59e3902fce4db04e14b89d6cf061b851cf
6ff8a282d8bcabb13c99745db674f4d7e1a97ad2415bd37e10683fc627241bba
GET /design/dt/93075/221201/634481ac81d24cb0b01b0dafaf652bd8_cpn_300x600_1.jpeg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/jpeg
content-length: 226581
last-modified: Thu, 01 Dec 2022 23:01:49 GMT
etag: "6389325d-37515"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq
178.250.2.135200 OK 119 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 119 kB (118852 bytes)
Hash 200698e962322837edc124d4feaa562d
a9e3b4a827d662005281794cf3b906e3dbdccf4c
6bfe77e8cc6231bfecdba19a2470460092a859224a733e9a7e28bce31837bb28
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=7086
expires: Wed, 07 Dec 2022 23:05:08 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 118852
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
178.250.2.135200 OK 4.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4f5eb42d3a4558a7c995710ff437cb0
1f73d7b42b3e1f5b8754e62b1ff933f2e69f3d1c
c33b7e6d19155abc7f2ad85172e017a537e0cd29f15fc2cce401bb9f87ec2193
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31061159
expires: Sat, 02 Dec 2023 09:13:01 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30102677
expires: Tue, 21 Nov 2023 06:58:20 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
IP 178.250.2.135:0
File type PNG image data, 415 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash e9b0fd59da29f2602796f49b90db422f
ea6484f5cf21f1bb301e9c98b1fd22f22f786bee
4ebe73165f0a173af9aaf37d37dd09ceee42cc06dadad2d10c564e3c39558128
GET /img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29991748
expires: Mon, 20 Nov 2023 00:09:30 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14495
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l&b=400
178.250.2.135200 OK 45 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ad7b148979d078e6ce6dfd8e49b390a5
c8c32905c3a21cb28e95b27dc3a143bb3d8ad390
3924d75bb3217563bd183dccffbafa3f2cada0165501868015a2b72e85a25186
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 07 Dec 2022 21:07:02 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 44962
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq&b=400
178.250.2.135200 OK 43 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 088c5f52dac37f43999e5c2a4b007462
2a3f7502896de9a26291e91a38676602e27ef59e
e88e85976f8ab93f44e2cb44795c73ab60635e6d055d4481b52000d0f6f48d70
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Acc02e550-3ad1-4a83-9723-a63ab5f22aa9%2FGran_Melia_de_Mar_1SQUARE_800X800.jpg&v=3&w=800&s=dJ8lqJ537lVJvbJD2hqRR-hq&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=7086
expires: Wed, 07 Dec 2022 23:05:08 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 42914
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l
178.250.2.135200 OK 164 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 164 kB (164484 bytes)
Hash dc9df11138206cc67670da79e427e56c
06f1819e3705735a758e465f0841a3059f2dbe9d
dcdf771275395bc89458f0cca7c6fe3fef73b5a8bc326e7c9375da7e9db9c7cb
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A6fa07762-6979-4e8b-9bdc-339919c78c41%2FMelia_Fuerteventura_1_SQUARE_800X800.jpg&v=3&w=800&s=Juw4jeFSQyAsiOm3HPyHBO3l HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=28280
expires: Thu, 08 Dec 2022 04:58:22 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 164484
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1
178.250.2.135200 OK 119 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 119 kB (119138 bytes)
Hash d4583915e8f0f477e3d0f3d574178d04
9d108ebad48bd9c2cab219ceb9f672c6df3bc4f5
8dcada67312cc34fc712ef9177721a44169eb6a6d2a709f2d22aa294248ccbf5
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Ad73c8379-bf91-4d74-864a-b86b2031c722%2FHotel_SPA_Porta_Maris_1SQUARE_800X800.jpg&v=3&w=800&s=4X0X-Nu4RfmYu4fZ7RRnlTf1 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=36344
expires: Thu, 08 Dec 2022 07:12:46 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 119138
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 7.0 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
Hash 5369e448a59f3101785160a2c48d3dc8
fabfae4e01fe37ee42e7cbb9f16ac2debe5c84f3
ea3a05a5ee46efe1d3a20ce9cb6db10485a95030dacdc6183d5ebe65e4ed9536
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg
178.250.2.135200 OK 1.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 266x76, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77c44a633aa284c58f8eb8cbee1f41f3
9b2f34ef9ac2247b0054e1887ff75942006ad623
4b0e48334dcb11bfd656df1098c819acd33c27791a43d966f714f8d11b73e416
GET /img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29561860
expires: Wed, 15 Nov 2023 00:44:42 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
178.250.2.135200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 237x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b573fc470ef8cbc89f1035de8aa998a
3a192b5f9758318437a3d4f5be68f5051af46039
dcc9f88d2c0d057159015782eca9a29d97bd98bcf43565a43c0dddc9a0287fa4
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31386968
expires: Wed, 06 Dec 2023 03:43:10 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e48b6e4bd0b48464865c6cd368b8d0a2
0921498a62c143830f4268cb4cccb5e727585c93
57375b78f38aa3786fe18479a1d6b3ce6882a88251e6b8fad5574a9004c1be01
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29705552
expires: Thu, 16 Nov 2023 16:39:34 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5428
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 341x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea1218da6b26c1eef19a477fdd67a32e
f285d190ed167f19b1db4d2d979d2fbb30cc8344
d86e179e6cb99fd114133f15096f27a203db5c9067eae647500729a50d190cab
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30625459
expires: Mon, 27 Nov 2023 08:11:21 GMT
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10990
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 1.5 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
Hash 17618d59e9d8df6fd4106ea76da81421
78a384074ea661920730ffd260eaad96898b9376
955d42aaf7c3b6b08b56f102e0e0c7cb1432a53556999ebc1350005ab4cc1f6c
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 180861
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=pbt30TJwH2wcgyAhk9jTPTiOVITRG3pPBI57yttxvRZ2RYtzTLNE2_47-2S_6tu3W0g2bRCSAfiYNokjZc501kEHC2dU10eNvIu5pHOa9IBUbUBuNm6AW_W-_xuMJOvoI-4iJdIXIhNN-sInscRoYgDhyIWn6thK9jZcO_P-PJxbgBmW9fDKXnVpg-Nrvf9RcW-0rcmOXylEQhMTszXSCyyoMfDeZkuTO0tJxOmeMgrdCHd1qJGSaOF-HWDdDmLVznlatbJJA4Ex3a_m3KZl-xBNVChJrtnohHRJctoTd1xpubxLBXvDDVXcIH0f4TZYP2-JjMd2K1ipQr7q1thv5YuTPrYSaq4HRGKVCyHoldc46ao-2OQjuTDy3dLK4hSpR4iEeUz-I_tVQGgNzGsREl0c-D8YkzBe9I-R6Q9xJmkrUGU4CS7g4NRPrWsSCKWttYlfoA
178.250.2.148200 OK 24 kB URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=pbt30TJwH2wcgyAhk9jTPTiOVITRG3pPBI57yttxvRZ2RYtzTLNE2_47-2S_6tu3W0g2bRCSAfiYNokjZc501kEHC2dU10eNvIu5pHOa9IBUbUBuNm6AW_W-_xuMJOvoI-4iJdIXIhNN-sInscRoYgDhyIWn6thK9jZcO_P-PJxbgBmW9fDKXnVpg-Nrvf9RcW-0rcmOXylEQhMTszXSCyyoMfDeZkuTO0tJxOmeMgrdCHd1qJGSaOF-HWDdDmLVznlatbJJA4Ex3a_m3KZl-xBNVChJrtnohHRJctoTd1xpubxLBXvDDVXcIH0f4TZYP2-JjMd2K1ipQr7q1thv5YuTPrYSaq4HRGKVCyHoldc46ao-2OQjuTDy3dLK4hSpR4iEeUz-I_tVQGgNzGsREl0c-D8YkzBe9I-R6Q9xJmkrUGU4CS7g4NRPrWsSCKWttYlfoA
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e2abb5f48334e3f668d2766f48cf535a
dc1904430c97388b5df4086040c946d44aab1b0c
ef971b558651f6c48f81fb16b76d39494eb2f6cf980a8595898b20ca6275f2fd
GET /delivery/lg.php?cppv=3&cpp=pbt30TJwH2wcgyAhk9jTPTiOVITRG3pPBI57yttxvRZ2RYtzTLNE2_47-2S_6tu3W0g2bRCSAfiYNokjZc501kEHC2dU10eNvIu5pHOa9IBUbUBuNm6AW_W-_xuMJOvoI-4iJdIXIhNN-sInscRoYgDhyIWn6thK9jZcO_P-PJxbgBmW9fDKXnVpg-Nrvf9RcW-0rcmOXylEQhMTszXSCyyoMfDeZkuTO0tJxOmeMgrdCHd1qJGSaOF-HWDdDmLVznlatbJJA4Ex3a_m3KZl-xBNVChJrtnohHRJctoTd1xpubxLBXvDDVXcIH0f4TZYP2-JjMd2K1ipQr7q1thv5YuTPrYSaq4HRGKVCyHoldc46ao-2OQjuTDy3dLK4hSpR4iEeUz-I_tVQGgNzGsREl0c-D8YkzBe9I-R6Q9xJmkrUGU4CS7g4NRPrWsSCKWttYlfoA HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3208233
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.74200 OK 32 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.74:0
Hash bc00930360f2a5b54c9cac36d699fed3
5f528075e27ed8fc376252e7b2ec0191bb8ad3ef
79a840d708fdd099e9291e77474c79b0b0f429870b8eae95d887ee12100c3361
GET /css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 21:07:02 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.74200 OK 568 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.74:0
Hash 45429d5d9fd7b00e3704563dafda66bb
3c3586455eac40a95188b937377b2d88e391df5e
9066f39859ccc839ca1224e26aa4e7dde5877012497a27d1d495f19960eca2a2
GET /css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 21:07:02 GMT
date: Wed, 07 Dec 2022 21:07:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 21:07:02 GMT
Connection: keep-alive
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 1.5 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
Hash b33f700ac763a39b296e5d0d9eb632be
36da8c57ddb9341ab58fbe0630c011d05bd9c44b
12187eacee4637844ec0775701f9ff0b3e726828d4d40bee8f0deb2ef7d4db49
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 21:07:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 21:07:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KkP8o_5GoqAukEAUkPrvsHE0v_36vO0wI7_97kvnUkqYc4ziC7UPpw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 16:47:32 GMT
age: 15570
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98d2cf29c710d25bd2f03ff216fdd369
b8eb2e11f9655f19334befc036f21489a6473827
614c9b4a7ace908c1ef807964709cb292b33b48ce1d81ccbd2959c2c0ee156ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8351
x-amzn-requestid: 607d07ab-6833-4001-82ed-699ea91f84c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlitFk9oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb611-3e5f14f833b332647ef7358d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0w5Usq-LJMNHxw9UrwUqSslSVROXVHTmY_UhSHNaGh4k4xqh-FSa0A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "b8eb2e11f9655f19334befc036f21489a6473827"
content-type: image/jpeg
age: 83383
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 20:49:36 GMT
age: 1046
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:32:51 GMT
age: 45251
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cmRvAOLmk_xZC4RKdin-lozUNeK9-icqkzsQmSjP9scXnnCLxkvJ5A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:01:53 GMT
age: 83109
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nm0qQpo75zvDYWxv8V3GvOSBFenh8ocfjV9d02Mc2l-ABieIb3h2uA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:53:40 GMT
age: 83602
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=23305&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=23305&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=23305&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:07:03 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=gui3iaCDSIFIGcgj0K_gDDSgRoWZeG2153ImqajPDcUHqMeKxPkaog--; expires=Thu, 04 Jan 2024 21:07:03 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=oUyxD1NUtnMjfl119uxG3n5LqWaZU5LKXOH2ubPnAAlh27MLhx13KZQ1LAPwexHS0vCf_QzM8b_QZ85tGn53PfGBduSr5IOX8H4UBgBIHzIjYsSk76x0x.L7XOcT4ywuE4U-; expires=Thu, 04 Jan 2024 21:07:03 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Thu, 04 Jan 2024 21:07:03 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
sayac.onlinewebstats.com/logo/s.gif
217.195.203.216200 OK 1.1 kB URL HTTP/1.1 sayac.onlinewebstats.com/logo/s.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 90 x 30\012- data
Hash 86b20fb84a3c460bb5b6f28e1fc58a8f
be37c58c27b312e1b8445d446d5e9008843fc8d0
16c7fd0e2962fbb0f79e261c14b3e89f71af00413c77ce6c284c2aabdad557f3
GET /logo/s.gif HTTP/1.1
Host: sayac.onlinewebstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:07:01 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 17 Aug 2006 22:15:44 GMT
ETag: "4a6-41b3dfc23c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1127
Connection: close
Content-Type: image/gif
csm.eu.criteo.net/all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=9Ly4jAlI403XkEPY-PuRaM4Jdon2yHgGqW-U9qDDPNz58XXjwqXBIo79mxief7adqSZLF2i0qcwYnucVfxl_PnSM6wCeF7T3-CBn_EhUXjQUd2a5X6Y_vew7X94Bz4YSNIySOzb5WxHUCsuqqIaK-LLm3i-Sokka1mG3R_uvffPEH13-6SBb4pp_WhPLhf0uM8GC-hXHaQJg0H8drajvAP2gi3OB_mwymjtofKJsjIgRMkG3qtkgcBUXPBGTJw_tGNhxdQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=WRUO1_nTBSVdD-mFds6_mLz8BV89ggOGRgQ0dAi-NpbgpspdHIjclimivbFm1UFxhsnf4L-6jMvJfoTgywBQkqUTFa2rwB5DzqZEABMRrquiLk7Hx8jFSO6bSxs7bIRLLOfo2_mwA50wl-TvkqtvqoiKbGwtfaoZXBq2QbmUBQTJRwc2fkrtFu3upw01u1-QpWiPIxal2CmMfwRB-cTMhycROgMzM-ZUz_XSu_oeAhmr1XPkS-kBJHrSCbi9YAlFKXS8ti8qlXMZLqqIcVgq11M51doiTJ0fDoRghVmon84rvO8f7rjcT3_qOvkksjOifGQmtsIbjmYa47cBQPpZbq7VdXYQr02ImTgKErMDdGLdCB0nzo04OCRxyMJuIpjxzqTiYbna3FGkHYeBylyKJXHSKv4gR_3-1Ws0eijLpNHYAwNM
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=WRUO1_nTBSVdD-mFds6_mLz8BV89ggOGRgQ0dAi-NpbgpspdHIjclimivbFm1UFxhsnf4L-6jMvJfoTgywBQkqUTFa2rwB5DzqZEABMRrquiLk7Hx8jFSO6bSxs7bIRLLOfo2_mwA50wl-TvkqtvqoiKbGwtfaoZXBq2QbmUBQTJRwc2fkrtFu3upw01u1-QpWiPIxal2CmMfwRB-cTMhycROgMzM-ZUz_XSu_oeAhmr1XPkS-kBJHrSCbi9YAlFKXS8ti8qlXMZLqqIcVgq11M51doiTJ0fDoRghVmon84rvO8f7rjcT3_qOvkksjOifGQmtsIbjmYa47cBQPpZbq7VdXYQr02ImTgKErMDdGLdCB0nzo04OCRxyMJuIpjxzqTiYbna3FGkHYeBylyKJXHSKv4gR_3-1Ws0eijLpNHYAwNM
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=WRUO1_nTBSVdD-mFds6_mLz8BV89ggOGRgQ0dAi-NpbgpspdHIjclimivbFm1UFxhsnf4L-6jMvJfoTgywBQkqUTFa2rwB5DzqZEABMRrquiLk7Hx8jFSO6bSxs7bIRLLOfo2_mwA50wl-TvkqtvqoiKbGwtfaoZXBq2QbmUBQTJRwc2fkrtFu3upw01u1-QpWiPIxal2CmMfwRB-cTMhycROgMzM-ZUz_XSu_oeAhmr1XPkS-kBJHrSCbi9YAlFKXS8ti8qlXMZLqqIcVgq11M51doiTJ0fDoRghVmon84rvO8f7rjcT3_qOvkksjOifGQmtsIbjmYa47cBQPpZbq7VdXYQr02ImTgKErMDdGLdCB0nzo04OCRxyMJuIpjxzqTiYbna3FGkHYeBylyKJXHSKv4gR_3-1Ws0eijLpNHYAwNM HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3460197
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=BjEIhDJwH2wcgyAhk9jTPTiOVITG3wXpWG5EWrDnd_uRBIAtnJP1zlyX1UyvPAST27V2N27BSwZT0PFRe7ipe4AnvW6Z9-oXKb-sXDtGSiBThrc47vyiT-0ssE-zQ0p9D5izzD5jfFxVh0ekWF55n2p0gG8_PuZoKUyAms5-NdBjYrg7HFZ3xtMdF7zn8g2R3N5K92pXQ_0pMYc3dEevYRHyWbbemP8BqlQlU30rbd8yylZs3MNSQsAmc52R2oqpFD7i82TTlMeGtX40q0idKdge4YkAf7kUJIgLpLBCTmHtv-PpQyc7IUIVs0NKd-b7ry-5uJGeOaxItpFJ3xSc0FM8iKc4hWB1e385mXUL3cEyxi5HHZhWOU-tSvMYmOxEEjr4znyiUZsUjS0J_rCAaLq4jvKiOUdXvSoSfCPFpsGrcZIXRFmRvwlaAT0u2ybnABxzbw
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=BjEIhDJwH2wcgyAhk9jTPTiOVITG3wXpWG5EWrDnd_uRBIAtnJP1zlyX1UyvPAST27V2N27BSwZT0PFRe7ipe4AnvW6Z9-oXKb-sXDtGSiBThrc47vyiT-0ssE-zQ0p9D5izzD5jfFxVh0ekWF55n2p0gG8_PuZoKUyAms5-NdBjYrg7HFZ3xtMdF7zn8g2R3N5K92pXQ_0pMYc3dEevYRHyWbbemP8BqlQlU30rbd8yylZs3MNSQsAmc52R2oqpFD7i82TTlMeGtX40q0idKdge4YkAf7kUJIgLpLBCTmHtv-PpQyc7IUIVs0NKd-b7ry-5uJGeOaxItpFJ3xSc0FM8iKc4hWB1e385mXUL3cEyxi5HHZhWOU-tSvMYmOxEEjr4znyiUZsUjS0J_rCAaLq4jvKiOUdXvSoSfCPFpsGrcZIXRFmRvwlaAT0u2ybnABxzbw
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=BjEIhDJwH2wcgyAhk9jTPTiOVITG3wXpWG5EWrDnd_uRBIAtnJP1zlyX1UyvPAST27V2N27BSwZT0PFRe7ipe4AnvW6Z9-oXKb-sXDtGSiBThrc47vyiT-0ssE-zQ0p9D5izzD5jfFxVh0ekWF55n2p0gG8_PuZoKUyAms5-NdBjYrg7HFZ3xtMdF7zn8g2R3N5K92pXQ_0pMYc3dEevYRHyWbbemP8BqlQlU30rbd8yylZs3MNSQsAmc52R2oqpFD7i82TTlMeGtX40q0idKdge4YkAf7kUJIgLpLBCTmHtv-PpQyc7IUIVs0NKd-b7ry-5uJGeOaxItpFJ3xSc0FM8iKc4hWB1e385mXUL3cEyxi5HHZhWOU-tSvMYmOxEEjr4znyiUZsUjS0J_rCAaLq4jvKiOUdXvSoSfCPFpsGrcZIXRFmRvwlaAT0u2ybnABxzbw HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3613628
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sat, 02 Dec 2023 21:07:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw&u=%7C8T%2FNDkwcsnx4GktfhxCCoGWB975ylMf6zpR3wNoTXOY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvW7Zd7HDtB2uxiG8-h6C6kvatM9-NPWZlQ64qaZvvwKFhE5u_ss1LaJukF2-Ayv8FnJcgVZT8Rql-gUlQvlcO6N806wR0WNQQzjjCVjDXkwq9WgQCCuN0Dt2j3TbvhOwNO2S7v7kImSbBj2Q68TTLyF597VOR4wJ1pwimlFkF_FnlHx09OnR7oNcajCSwmycUiK2lbPEgRxwpXmZgAlkiYKSJtgdTnv9Naec_Evo73sX9BNiCKXped515TK68PU4RbXo-HrcjC8nV76mvKV8H--8U8y71W51mQny0arHsIpbPgHxHgeEsc88lF7fx0EUK3jy5_YC1blAaTY0Qv99ieQzcrwh1hgsKniyTNFrZ0DakGD2JVM3U5uIhK01oW6y5SZ5BHkDVrazN7XFBpywSlfrdUhKZxu7oVJbMpSSRBVntn7D1PK_gwyyH9VkVtZjd-vQlIipb9QJqMhbxqvsHcINGYKgcqNjCictd9ZLA_Qwg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOaJOdQCRY_HDGLuB78EP1vGW2AbJntKxXM2G49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIB5cqcXLGxPqgDAaoEgAJP0Nojl8UJC78XmbfZOQNNaNpDgqXEpa6-vCjg-hOy_oULC4LdAq_qcLUnTojhSsE7rqUTHwTcuU6f2yWKDrZA_P37MZi6DM0zj8ckKG3WnBo_x3flHe0cvufo6t8bueAkneJudtzFRv9uAAAQLpU9bTsd7fHXx8BgOHVPT6zMVayTL09eZBXFs1_7lwUBVObmM3OvBtB1yvNqLDwy763ZnZs0XqG2CURe6stIoQXhtSzcpQCrjmzjrXPtuPhY90ru1ZS_R_BY-eVjjLzpR8H2Sl3DY_5-Qlce36GSZHB2rISUAzNo3rpCWoPOPUjXPk5YPXmFNrFZBH-EfKDKtrE4gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0edfn0HJgtzJstxygOfX4zisn7aA%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw&u=%7C8T%2FNDkwcsnx4GktfhxCCoGWB975ylMf6zpR3wNoTXOY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvW7Zd7HDtB2uxiG8-h6C6kvatM9-NPWZlQ64qaZvvwKFhE5u_ss1LaJukF2-Ayv8FnJcgVZT8Rql-gUlQvlcO6N806wR0WNQQzjjCVjDXkwq9WgQCCuN0Dt2j3TbvhOwNO2S7v7kImSbBj2Q68TTLyF597VOR4wJ1pwimlFkF_FnlHx09OnR7oNcajCSwmycUiK2lbPEgRxwpXmZgAlkiYKSJtgdTnv9Naec_Evo73sX9BNiCKXped515TK68PU4RbXo-HrcjC8nV76mvKV8H--8U8y71W51mQny0arHsIpbPgHxHgeEsc88lF7fx0EUK3jy5_YC1blAaTY0Qv99ieQzcrwh1hgsKniyTNFrZ0DakGD2JVM3U5uIhK01oW6y5SZ5BHkDVrazN7XFBpywSlfrdUhKZxu7oVJbMpSSRBVntn7D1PK_gwyyH9VkVtZjd-vQlIipb9QJqMhbxqvsHcINGYKgcqNjCictd9ZLA_Qwg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOaJOdQCRY_HDGLuB78EP1vGW2AbJntKxXM2G49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIB5cqcXLGxPqgDAaoEgAJP0Nojl8UJC78XmbfZOQNNaNpDgqXEpa6-vCjg-hOy_oULC4LdAq_qcLUnTojhSsE7rqUTHwTcuU6f2yWKDrZA_P37MZi6DM0zj8ckKG3WnBo_x3flHe0cvufo6t8bueAkneJudtzFRv9uAAAQLpU9bTsd7fHXx8BgOHVPT6zMVayTL09eZBXFs1_7lwUBVObmM3OvBtB1yvNqLDwy763ZnZs0XqG2CURe6stIoQXhtSzcpQCrjmzjrXPtuPhY90ru1ZS_R_BY-eVjjLzpR8H2Sl3DY_5-Qlce36GSZHB2rISUAzNo3rpCWoPOPUjXPk5YPXmFNrFZBH-EfKDKtrE4gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0edfn0HJgtzJstxygOfX4zisn7aA%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y5EAdQAGIfECO8C7AAW41ig3hTdrFJMcbKvlmw&u=%7C8T%2FNDkwcsnx4GktfhxCCoGWB975ylMf6zpR3wNoTXOY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvW7Zd7HDtB2uxiG8-h6C6kvatM9-NPWZlQ64qaZvvwKFhE5u_ss1LaJukF2-Ayv8FnJcgVZT8Rql-gUlQvlcO6N806wR0WNQQzjjCVjDXkwq9WgQCCuN0Dt2j3TbvhOwNO2S7v7kImSbBj2Q68TTLyF597VOR4wJ1pwimlFkF_FnlHx09OnR7oNcajCSwmycUiK2lbPEgRxwpXmZgAlkiYKSJtgdTnv9Naec_Evo73sX9BNiCKXped515TK68PU4RbXo-HrcjC8nV76mvKV8H--8U8y71W51mQny0arHsIpbPgHxHgeEsc88lF7fx0EUK3jy5_YC1blAaTY0Qv99ieQzcrwh1hgsKniyTNFrZ0DakGD2JVM3U5uIhK01oW6y5SZ5BHkDVrazN7XFBpywSlfrdUhKZxu7oVJbMpSSRBVntn7D1PK_gwyyH9VkVtZjd-vQlIipb9QJqMhbxqvsHcINGYKgcqNjCictd9ZLA_Qwg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOaJOdQCRY_HDGLuB78EP1vGW2AbJntKxXM2G49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIB5cqcXLGxPqgDAaoEgAJP0Nojl8UJC78XmbfZOQNNaNpDgqXEpa6-vCjg-hOy_oULC4LdAq_qcLUnTojhSsE7rqUTHwTcuU6f2yWKDrZA_P37MZi6DM0zj8ckKG3WnBo_x3flHe0cvufo6t8bueAkneJudtzFRv9uAAAQLpU9bTsd7fHXx8BgOHVPT6zMVayTL09eZBXFs1_7lwUBVObmM3OvBtB1yvNqLDwy763ZnZs0XqG2CURe6stIoQXhtSzcpQCrjmzjrXPtuPhY90ru1ZS_R_BY-eVjjLzpR8H2Sl3DY_5-Qlce36GSZHB2rISUAzNo3rpCWoPOPUjXPk5YPXmFNrFZBH-EfKDKtrE4gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0edfn0HJgtzJstxygOfX4zisn7aA%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=pDuwMwlI403XkEPY5pJ6MVMN5wcHZVjkP2gPdvJqsbEkv4D4iQXTlQQQYMMimL_VH3HdSAcbbLk7MUG2UADLNb01kif4UEhCaWPBZcSpfPT3DrrGKVvV4Ts5n1n4hocegos2Br-jZMiRmGCjJiuTPbKNc2tQ_1KMr6PihhBMWPrM9jLrNdcf4uZPGa-qKA8W-dK4N4VVKapyzCFO84j0fqb37DaxCzBHGpNZkgCV3UfUxb4EWDfOuvR8iuCVjzGvRZakrg"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 98953621
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=63910075f7097a8ba1d5183904fae1c7
37.157.6.254302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=63910075f7097a8ba1d5183904fae1c7
IP 37.157.6.254:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=63910075f7097a8ba1d5183904fae1c7 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 07 Dec 2022 21:07:02 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=23305&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000250482-1.jpg
143.204.55.45200 OK 0 B URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000250482-1.jpg
IP 143.204.55.45:0
GET /cache/600x600-0/originals/0000000250482-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 63002
Connection: keep-alive
Server: nginx/1.8.1
Date: Wed, 07 Dec 2022 21:06:47 GMT
Last-Modified: Sat, 09 Jun 2018 13:32:59 GMT
ETag: "5b1bd70b-f61a"
Expires: Wed, 14 Dec 2022 21:06:47 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EUhXc2hx_pqGDx_OAThazl9T0U8C9-a2DJWBksyk-ipMeF2XPvFLww==
Age: 13
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA&u=%7C8T%2FNDkwcsnzMVuLwf%2BphqxUHaj%2FfrI2T2cfk5WiZtbY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJZJKSYw99MnSKpaatLBbdYH0bFHRhFfl35MsdwwQxmylV3x_7whpyBc21HLX-vn_-Z_wX6eJ5kOcmIysa35jPkQantQogcAsRD3KnkdoDD3yPFvxCFVJlQYAwYhPzIfY02_sRNKdFjQW2O0Weqox-uFnUMWu7K16piHeP0FBL-VfeuhaJasNGhC4MvKaBwgGXgUw8YtZmk9CPHJucYWxunpPwkXe3ITQv3MoF0PcNiaOUN7nK3ZIdA_KCezitxMTIp954q9bA4EoXwbSsBXL3cOx3gs3fT_0akvzFc3iSW93aobkEy22xq06bYQrKvP4Valgc1NcT8BZAYagZZK1ezdBoturKljO3S2g9LeK74Le428NkvoDKVyiE4wXipQNdEaOg7On4JvW9gi4ufz7L8j8q_05n2b8h8u_IivS0Z_4bnbfg9Bp7tQO89sB10XS7brn7n6y8OrvdKG5Jl3frc20hvtlK-i4Wry-N7abF4HaQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6kXOdQCRY-S9GPuS78EPpoSRGMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIMCT9Cw_SKl4Iexn81ozJ77MN57KJVwhD3SQT1-ymipPQ4liVg7ghNxis2vibWJ02nxZJyfVsZqsfoPvg-O0TC1fNTYwi0NzGb6_C2cIffobdx1FI0xU5CLoxdBUFrIM8tvA6htQ-1NJ-uPAVlOWPQSNzkjyvfep6cGbwMxhN3ZEe6odLJG_KiH2XMVxEsrLv4f724cEr11--4islsfQkxt26ibaCySFEr5YNBezimNtyTF2g-kZRQocjRdKVANyyRwoH7SgmOSXIHVT0qqRD94HGxeh7taJssG-Ug92WTMetqTD4v6_MCX9FgXOh8qMPdHXmPqpug-2sNuoWZxyQxCE_9He4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2tY2U9BPk3oyHs_1toQIGcAPf6QA%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA&u=%7C8T%2FNDkwcsnzMVuLwf%2BphqxUHaj%2FfrI2T2cfk5WiZtbY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJZJKSYw99MnSKpaatLBbdYH0bFHRhFfl35MsdwwQxmylV3x_7whpyBc21HLX-vn_-Z_wX6eJ5kOcmIysa35jPkQantQogcAsRD3KnkdoDD3yPFvxCFVJlQYAwYhPzIfY02_sRNKdFjQW2O0Weqox-uFnUMWu7K16piHeP0FBL-VfeuhaJasNGhC4MvKaBwgGXgUw8YtZmk9CPHJucYWxunpPwkXe3ITQv3MoF0PcNiaOUN7nK3ZIdA_KCezitxMTIp954q9bA4EoXwbSsBXL3cOx3gs3fT_0akvzFc3iSW93aobkEy22xq06bYQrKvP4Valgc1NcT8BZAYagZZK1ezdBoturKljO3S2g9LeK74Le428NkvoDKVyiE4wXipQNdEaOg7On4JvW9gi4ufz7L8j8q_05n2b8h8u_IivS0Z_4bnbfg9Bp7tQO89sB10XS7brn7n6y8OrvdKG5Jl3frc20hvtlK-i4Wry-N7abF4HaQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6kXOdQCRY-S9GPuS78EPpoSRGMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIMCT9Cw_SKl4Iexn81ozJ77MN57KJVwhD3SQT1-ymipPQ4liVg7ghNxis2vibWJ02nxZJyfVsZqsfoPvg-O0TC1fNTYwi0NzGb6_C2cIffobdx1FI0xU5CLoxdBUFrIM8tvA6htQ-1NJ-uPAVlOWPQSNzkjyvfep6cGbwMxhN3ZEe6odLJG_KiH2XMVxEsrLv4f724cEr11--4islsfQkxt26ibaCySFEr5YNBezimNtyTF2g-kZRQocjRdKVANyyRwoH7SgmOSXIHVT0qqRD94HGxeh7taJssG-Ug92WTMetqTD4v6_MCX9FgXOh8qMPdHXmPqpug-2sNuoWZxyQxCE_9He4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2tY2U9BPk3oyHs_1toQIGcAPf6QA%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y5EAdQAGHuQCO8l7AARCJlmiyOD7qbLPDbFFeA&u=%7C8T%2FNDkwcsnzMVuLwf%2BphqxUHaj%2FfrI2T2cfk5WiZtbY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJZJKSYw99MnSKpaatLBbdYH0bFHRhFfl35MsdwwQxmylV3x_7whpyBc21HLX-vn_-Z_wX6eJ5kOcmIysa35jPkQantQogcAsRD3KnkdoDD3yPFvxCFVJlQYAwYhPzIfY02_sRNKdFjQW2O0Weqox-uFnUMWu7K16piHeP0FBL-VfeuhaJasNGhC4MvKaBwgGXgUw8YtZmk9CPHJucYWxunpPwkXe3ITQv3MoF0PcNiaOUN7nK3ZIdA_KCezitxMTIp954q9bA4EoXwbSsBXL3cOx3gs3fT_0akvzFc3iSW93aobkEy22xq06bYQrKvP4Valgc1NcT8BZAYagZZK1ezdBoturKljO3S2g9LeK74Le428NkvoDKVyiE4wXipQNdEaOg7On4JvW9gi4ufz7L8j8q_05n2b8h8u_IivS0Z_4bnbfg9Bp7tQO89sB10XS7brn7n6y8OrvdKG5Jl3frc20hvtlK-i4Wry-N7abF4HaQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC6kXOdQCRY-S9GPuS78EPpoSRGMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCpRgRCfqksT6oAwGqBIMCT9Cw_SKl4Iexn81ozJ77MN57KJVwhD3SQT1-ymipPQ4liVg7ghNxis2vibWJ02nxZJyfVsZqsfoPvg-O0TC1fNTYwi0NzGb6_C2cIffobdx1FI0xU5CLoxdBUFrIM8tvA6htQ-1NJ-uPAVlOWPQSNzkjyvfep6cGbwMxhN3ZEe6odLJG_KiH2XMVxEsrLv4f724cEr11--4islsfQkxt26ibaCySFEr5YNBezimNtyTF2g-kZRQocjRdKVANyyRwoH7SgmOSXIHVT0qqRD94HGxeh7taJssG-Ug92WTMetqTD4v6_MCX9FgXOh8qMPdHXmPqpug-2sNuoWZxyQxCE_9He4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2tY2U9BPk3oyHs_1toQIGcAPf6QA%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:07:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=jFAWnwlI403XkEPYHghUcfmKf2Uz5iskUOcn36VhiIYLp0mwGpqiBzLJ7_6Y8HclzkM7MvQnos3zvD3tRSCTU70vRUD2PkKf1Ez0tpXewN-T1htSqvWozVRylwdKxzlZ5cQw-2gRmtx8hi9igvYdq-7HA8JN_Qhu8gixYd1k_3CY6jT3vMEeMkmE_ELOnzJtoRBmih3Gro-en_TiLq7jMX011h5VveGXPyyk6wZT9AHAknHvaejE6GFnzQH-Csjd_e5SOQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 109427495
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2