r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2461
Expires: Fri, 16 Dec 2022 23:39:01 GMT
Date: Fri, 16 Dec 2022 22:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13154
Expires: Sat, 17 Dec 2022 02:37:14 GMT
Date: Fri, 16 Dec 2022 22:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12265
Expires: Sat, 17 Dec 2022 02:22:25 GMT
Date: Fri, 16 Dec 2022 22:58:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 16 Dec 2022 22:34:06 GMT
content-type: application/json
age: 1434
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: R/S64J4jy7ZjKR1slJLIoeFDdshdl0V9rGMdFufPkm8W/yLGrxmQ7hsxtKzW8x9kxnE34O6Gmk0=
x-amz-request-id: 2Z1P1R455R4DTG2F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 16 Dec 2022 22:51:32 GMT
age: 388
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:58:00 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 16 Dec 2022 22:08:00 GMT
age: 3001
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 142400be99b933ea5e0c68ea6a6b3e89
80e94132940e5ebe69dd0a03396764127b8fda49
20e8cde3c6907a3c5d97fe9fbcf6a44035e1f7482f7e166adb2c38a30a9084ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3917
Cache-Control: max-age=126848
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:01 GMT
Etag: "639c352c-1d7"
Expires: Sun, 18 Dec 2022 10:12:09 GMT
Last-Modified: Fri, 16 Dec 2022 09:06:52 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.rafist.com/teknoloji/pille-calisan-otomobil.html
200 OK 12 kB URL HTTP/1.1 www.rafist.com/teknoloji/pille-calisan-otomobil.html
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4832), with CRLF, LF line terminators
Hash 8787aa704269ca0c1dd512268dc1fbbe
d808d2b7962ac2cdc4ec24d14d49bdaaf7df6523
0de646bf81f4f993d2c3c87ceb26cdfe5232e6ae9863161e4dcf17910b7b7b24
Analyzer Verdict Alert fortinet Malware
GET /teknoloji/pille-calisan-otomobil.html HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.6.40
content-type: text/html; charset=UTF-8
set-cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9; path=/
x-pingback: http://www.rafist.com/xmlrpc.php
link: <http://www.rafist.com/wp-json/>; rel="https://api.w.org/", <http://www.rafist.com/wp-json/wp/v2/posts/10444>; rel="alternate"; type="application/json", <http://www.rafist.com/?p=10444>; rel=shortlink
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
platform.twitter.com/widgets.js
200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 763
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:01 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
www.google.com/friendconnect/script/friendconnect.js
404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/friendconnect/script/friendconnect.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 8dc494040a252b9a3a9ea04255941cd6
663805a606e28589d28362cc1d8fa19a5bc56860
24d511499e91216fa0deefaf1c2875a378f83b01b170f2dfc50d27f2a4978a0a
GET /friendconnect/script/friendconnect.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1598
Date: Fri, 16 Dec 2022 22:58:01 GMT
code.jquery.com/jquery-1.10.2.min.js
200 OK 33 kB URL HTTP/1.1 code.jquery.com/jquery-1.10.2.min.js
IP
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:01 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 32788
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-16bb3"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1671231481.dop229.sk1.t,1671231481.cds243.sk1.c
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (3583)
Hash ca819af919859a96e3a0f36fc1338b52
3bcc1fadce32ae446bcdf96171b83998dcad5609
8f627448792212132e6b02718797198f28c59c5e562daba8990f780b817ec5bb
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 16 Dec 2022 22:58:01 GMT
Expires: Fri, 16 Dec 2022 22:58:01 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 8378242567964252588
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36239
X-XSS-Protection: 0
www.rafist.com/wp-content/themes/internet-10/style.css
200 OK 2.0 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/style.css
IP
ASN #59674 Aysima Bilisim Teknolojileri
Hash e1755bf67f1a7fe1aa2dc6e805e24b75
a3df0dada92accd793a18022101c343ba269ed9a
78596413493a762a94bd0621551f6d997bcd94c11576a83b792741c632c7a209
GET /wp-content/themes/internet-10/style.css HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: text/css
last-modified: Mon, 23 Apr 2012 08:02:01 GMT
etag: "1c7f-4f950c79-6c21ba463c3d5095;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2014
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.2
200 OK 10 kB URL HTTP/1.1 www.rafist.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.2
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 915898ebd9c4735f3af4fe57348658a9
85d4bddc401bb373c291e46e617f9daa12e7883d
e25d0e73f89dc6245fde7c71d631bbec9f4c56d52a9a796af2e890ba1304605b
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.2 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: text/css
last-modified: Mon, 06 Dec 2021 19:38:17 GMT
etag: "13abe-61ae66a9-674a08ebbb803691;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 10496
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
ocsp.digicert.com/
200 OK 279 B IP
Hash 0a8bc9f1d8d0906414fae2d849c1030c
cc5044d28cea72dad3d3f855d947c0d1551f07bc
d92841a6eb917d665bd04d323e803abd50516ed74a186307a5c469f8c56a0ba5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2452
Cache-Control: max-age=150222
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:01 GMT
Etag: "639c9633-117"
Expires: Sun, 18 Dec 2022 16:41:43 GMT
Last-Modified: Fri, 16 Dec 2022 16:00:51 GMT
Server: ECS (amb/6B7B)
X-Cache: HIT
Content-Length: 279
static.addtoany.com/buttons/share_save_171_16.png
200 OK 1.7 kB URL HTTP/2 static.addtoany.com/buttons/share_save_171_16.png
IP
File type PNG image data, 171 x 16, 8-bit colormap, non-interlaced\012- data
Hash a9951636f4e162bbe9997b13099c3697
e7711c0e4056a64f5b96d3fbc542cf124f3f5f03
2bd00c5fbf0d687a1dab7f7874c1a57ed73b855813f313ac4e1ec274c58eaa29
GET /buttons/share_save_171_16.png HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:01 GMT
content-type: image/png
content-length: 1657
cache-control: max-age=315360000, immutable
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2572
age: 8034629
etag: "a0c-4ddea93a51d00"
last-modified: Thu, 30 May 2013 07:37:56 GMT
via: e1s
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77ab057809e7b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 0a8bc9f1d8d0906414fae2d849c1030c
cc5044d28cea72dad3d3f855d947c0d1551f07bc
d92841a6eb917d665bd04d323e803abd50516ed74a186307a5c469f8c56a0ba5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2452
Cache-Control: max-age=150222
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:01 GMT
Etag: "639c9633-117"
Expires: Sun, 18 Dec 2022 16:41:43 GMT
Last-Modified: Fri, 16 Dec 2022 16:00:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
www.rafist.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
200 OK 129 B URL HTTP/1.1 www.rafist.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with no line terminators
Hash 5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: application/javascript
last-modified: Mon, 06 Dec 2021 19:52:28 GMT
etag: "81-61ae69fc-aec1ee974bcf1457;;;"
accept-ranges: bytes
content-length: 129
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-includes/js/wp-embed.min.js?ver=5.8.2
200 OK 769 B URL HTTP/1.1 www.rafist.com/wp-includes/js/wp-embed.min.js?ver=5.8.2
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8.2 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: application/javascript
last-modified: Mon, 06 Dec 2021 19:31:23 GMT
etag: "592-61ae650b-b5599861828c382d;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 769
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.2 kB URL HTTP/1.1 www.rafist.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with very long lines (11126)
Hash c41f3a82e911de81a1817131069bc7d2
1e883290a0b794916cead41e5f0705716fd77b89
e9791f24770f098ea30bb4d25e2e10bdedb97132d0bbf7d2bd79eedac22efa27
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: application/javascript
last-modified: Mon, 06 Dec 2021 19:37:23 GMT
etag: "2bd8-61ae6673-d4aff6121782fbaa;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4168
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
200 OK 241 B URL HTTP/1.1 www.rafist.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
IP
ASN #59674 Aysima Bilisim Teknolojileri
Hash adf659d40cdbf40aa150c2c765242b7e
139f21a147d8ff38610e3b30224e333e5b2f4825
52082cf36af67385b80b5b67ae80cdef7296ef940bdd67a244bc582b89fb658b
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: text/css
last-modified: Mon, 06 Dec 2021 19:54:16 GMT
etag: "176-61ae6a68-60b34deb3f940692;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 241
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15
200 OK 486 B URL HTTP/1.1 www.rafist.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with very long lines (1519), with no line terminators
Hash 24fd55e75c0e55acafd43f93e8343c26
8d89ac6650f2b11623992db77fd1c48084a4ae18
820789fea848fa67db89200ffb57a82eebe880de4cc3db4bea6f98ffb9552cb8
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: text/css
last-modified: Mon, 06 Dec 2021 19:52:28 GMT
etag: "5ef-61ae69fc-32f5faac3a81a033;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 486
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.2
200 OK 4.9 kB URL HTTP/1.1 www.rafist.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.2
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with very long lines (15224)
Hash c5861eec8c65717219134960db9e361e
7a9a5ed5ca3de9e30fa3c14d1ada2ecb6eb4505f
b96639b87d4a408e9cddadc6f2a1228cbb20678f3f069785fe0614c0db78430d
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.2 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: application/javascript
last-modified: Mon, 06 Dec 2021 19:32:01 GMT
etag: "4705-61ae6531-82f5db8f0f3e14ce;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4937
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
www.rafist.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 31 kB URL HTTP/1.1 www.rafist.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type ASCII text, with very long lines (65447)
Hash 554969c8ed0e4b5eece1261c4e1e9cd0
3b514b21c2e26b2caa15054e43ed00184a8ebc38
4a10709ca76c5112fbaf69e065b4ef93dd37bcffd4ae39b351e56d40c9322123
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: application/javascript
last-modified: Mon, 06 Dec 2021 19:37:22 GMT
etag: "15db1-61ae6672-3d85f05f45f39527;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 30969
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ba1ZHEnTm0RX4O59vDJyTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AGL87aHwtFg1HWFxfnAkt2vNhwE=
toplist.sk/count.asp?id=1239364
301 Moved Permanently 0 B URL HTTP/1.1 toplist.sk/count.asp?id=1239364
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /count.asp?id=1239364 HTTP/1.1
Host: toplist.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://toplist.sk/count.asp?id=1239364
toplist.cz/count.asp?id=1258593
301 Moved Permanently 0 B URL HTTP/1.1 toplist.cz/count.asp?id=1258593
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /count.asp?id=1258593 HTTP/1.1
Host: toplist.cz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://toplist.cz/count.asp?id=1258593
www.rafist.com/wp-content/themes/internet-10/images/comment.gif
200 OK 257 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/comment.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 16\012- data
Hash 3b967759fddccb24519d3a5d8a16adda
bb6d5bbd898ac8a6163cccdaedd24464c23bc4ff
f8e3fa1c28678c564afdf457d1d81f915b1bb8486298c0aae2fd3cd2b3bfa0ab
GET /wp-content/themes/internet-10/images/comment.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:25 GMT
etag: "101-4f950df9-1d9fcd4b228460a8;;;"
accept-ranges: bytes
content-length: 257
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/timeicon.gif
200 OK 207 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/timeicon.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 16\012- data
Hash cebf0d8c08804c222a97850ff556d6f7
f97818deec45a2787cdd059aefcae010b18a441b
490f47c0dad65dc119f7c92455c40dd2b7f63bdb48b97690cb97441db7207258
GET /wp-content/themes/internet-10/images/timeicon.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:32 GMT
etag: "cf-4f950e00-bd2d01fd4ac1a30b;;;"
accept-ranges: bytes
content-length: 207
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/xmlsitemap.png
200 OK 273 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/xmlsitemap.png
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type PNG image data, 80 x 15, 8-bit/color RGB, non-interlaced\012- data
Hash 035834fd82fcff368a9d1072008c5553
0b206c56943d48aaa201c7df4c65b2f896afe2dc
c8cedaabdc248b16aa9af0b24367126342b5e2b927106d731fd34ed54e3647ad
GET /wp-content/themes/internet-10/images/xmlsitemap.png HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/png
last-modified: Mon, 23 Apr 2012 08:08:32 GMT
etag: "111-4f950e00-4834b12f649ed77e;;;"
accept-ranges: bytes
content-length: 273
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/com_form.png
200 OK 1.9 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/com_form.png
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data
Hash c01c0770d9ba38c354f0be88acdadaba
47745e2551c8e4982d5507261a6b54e7ab4409e0
6e2961ee278a2a38f92e87d4b71599df2ce94c4597b3f1914635a8b03c9c327b
GET /wp-content/themes/internet-10/images/com_form.png HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/png
last-modified: Mon, 23 Apr 2012 08:08:25 GMT
etag: "777-4f950df9-dae5c07302a5c1d4;;;"
accept-ranges: bytes
content-length: 1911
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/digg.gif
200 OK 245 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/digg.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 14\012- data
Hash 2544327e9e076e0d47d7d61e3782e3da
0047c7c0cc5bacfbe040c836fee5708e22990f42
e4fb197ba9164b84bacc78856ea01599624d25065fd4df81499746e9ff62d66c
GET /wp-content/themes/internet-10/images/digg.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:26 GMT
etag: "f5-4f950dfa-62562bdd0dd74efa;;;"
accept-ranges: bytes
content-length: 245
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/folder.gif
200 OK 274 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/folder.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 16\012- data
Hash e00a9767c5e0d703eef931e036cd63fa
e220ba12f15c75236e06da840e5d97701e58072c
30d9435caaf4e28152d2b2d76b191b7ccc34b57bd48d402a3d9071320d4b972e
GET /wp-content/themes/internet-10/images/folder.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:26 GMT
etag: "112-4f950dfa-b849865e8fab9f1e;;;"
accept-ranges: bytes
content-length: 274
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.internethaber.com/images/news/60386.jpg
301 Moved Permanently 166 B URL HTTP/1.1 www.internethaber.com/images/news/60386.jpg
IP
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /images/news/60386.jpg HTTP/1.1
Host: www.internethaber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 22:58:01 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://www.internethaber.com/images/news/60386.jpg
X-Edge: de-fra-dp-s03
Server: MerlinCDN
Via: HTTP/1.1 Merlin CDN
www.facebook.com/plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 16 Dec 2022 22:58:01 GMT
Connection: keep-alive
Content-Length: 0
www.rafist.com/wp-content/themes/internet-10/images/tabmenu.gif
200 OK 4.8 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/tabmenu.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 960 x 39\012- data
Hash e20eb47b9e6129e3a59feeaba88707e1
ca3298670d165744819b01c5398f37c98579338d
1fccde1d8c91f5923d301e6af228a3ec88022ba4de8ef3a647a0e7d4435fd596
GET /wp-content/themes/internet-10/images/tabmenu.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:32 GMT
etag: "12dc-4f950e00-f0a61be8075026e9;;;"
accept-ranges: bytes
content-length: 4828
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/barbg.gif
200 OK 982 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/barbg.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 82 x 32\012- data
Hash 8a4331a30416cf454ad2b0abc835c896
13f3a5a40cb75258f71b43b98abaa566138a4963
2367039c876efe5532796cdfeec5298a8026316c7091c7b8b44c425084f16558
GET /wp-content/themes/internet-10/images/barbg.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:23 GMT
etag: "3d6-4f950df7-558634703051d872;;;"
accept-ranges: bytes
content-length: 982
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/searchbg.gif
200 OK 5.3 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/searchbg.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 960 x 62\012- data
Hash dc50cf7cd190c424a469f362bfd3e0c6
c6ab373f20adfd8003ed654030f7dacf14897024
0d74b8e82110e6876d0c21c498d894a0d62c5189f190a172810d052d89b1704c
GET /wp-content/themes/internet-10/images/searchbg.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:30 GMT
etag: "14c7-4f950dfe-a28a27adb3e534e9;;;"
accept-ranges: bytes
content-length: 5319
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/delicious.gif
200 OK 103 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/delicious.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 16\012- data
Hash 7b25927bd164778f4d3833065ad9ce3e
29aef72fab3d8ad3eaa87ca0c5c4039057cd875d
ba143df18daa5c1bb6f3187fca87f0abfa08865ec998b68cb5cc224d4c07eb54
GET /wp-content/themes/internet-10/images/delicious.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:25 GMT
etag: "67-4f950df9-1678e1f69de25baf;;;"
accept-ranges: bytes
content-length: 103
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/rss.gif
200 OK 1.1 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/rss.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 16 x 16\012- data
Hash 8241f89b2241fd3b946a5bedd9ba0788
740d56b5186d4e031e6b6a8c1493e8c82b266fe5
6511b1a23a8027bcf8e79861cedaa4a0919c06f90c969655fdf594086ccbd86e
GET /wp-content/themes/internet-10/images/rss.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:29 GMT
etag: "425-4f950dfd-7b6c67f0f4d453ea;;;"
accept-ranges: bytes
content-length: 1061
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
ocsp.digicert.com/
200 OK 471 B IP
Hash a504ef384345940f7ad9b039fd2deca2
d0ce426041271eefff01a53ad9d3dc568a368cec
813e762dfbfdfff6f740f9bffce03c72ce9e4eb2c855ffb2305d4bf8d48d6753
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:01 GMT
Last-Modified: Fri, 16 Dec 2022 21:22:28 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f983457d43b1e7ecb76e4180c12de344
46e2190ee97b7b65c6cde10b7a81d3470fe9372e
d93a84401aea18626f21a292fb9421c963ce7997e347e59b2663fee2b18e2ca3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93A84401AEA18626F21A292FB9421C963CE7997E347E59B2663FEE2B18E2CA3"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3183
Expires: Fri, 16 Dec 2022 23:51:04 GMT
Date: Fri, 16 Dec 2022 22:58:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b4e1f0548ee0950822315c5eb312181d
ea89d8de4d2980c5e850f3bbd45c4161713d7581
96b31994e1fdc0a6696ad2123017de4f3420533087f68ecf103a76aa18552e98
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96B31994E1FDC0A6696AD2123017DE4F3420533087F68ECF103A76AA18552E98"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11651
Expires: Sat, 17 Dec 2022 02:12:12 GMT
Date: Fri, 16 Dec 2022 22:58:01 GMT
Connection: keep-alive
www.facebook.com/plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.facebook.com/yolguzergahi&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.rafist.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: jFlaNJR4ADkiUCgNTd+p3ddqPqwUB++j7fGo1Ed047zCIrYe91vJYHek4CqYQTFbWQ6bM9gh51UxBRGhQsqPfA==
content-length: 0
date: Fri, 16 Dec 2022 22:58:01 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a504ef384345940f7ad9b039fd2deca2
d0ce426041271eefff01a53ad9d3dc568a368cec
813e762dfbfdfff6f740f9bffce03c72ce9e4eb2c855ffb2305d4bf8d48d6753
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:01 GMT
Last-Modified: Fri, 16 Dec 2022 21:22:28 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.rafist.com/wp-content/themes/internet-10/images/shadow.gif
200 OK 1.1 kB URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/shadow.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 65 x 70\012- data
Hash 0c5cd362d75428a7056c36db279d3408
b6d425fa3360e9f36c310028ccc5dc7020be3474
c33f60eeb7b27583fd79c56c6b7ae208092d9deae86b9098bbcb9937824602b0
GET /wp-content/themes/internet-10/images/shadow.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:30 GMT
etag: "469-4f950dfe-1369923be64a2334;;;"
accept-ranges: bytes
content-length: 1129
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.kalipci.com/images/cnc.png
200 OK 55 kB URL HTTP/1.1 www.kalipci.com/images/cnc.png
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 6b019c92889629583a42e6df5115bb5e
9e1a58bc67037f36cbda05165d4d385ccc075e3d
8b92a316e4e7650ed1ce79ab3377baa0b25d033bc0f2753d69428914670496f1
GET /images/cnc.png HTTP/1.1
Host: www.kalipci.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:01 GMT
content-type: image/png
last-modified: Tue, 02 Aug 2016 13:47:21 GMT
etag: "d6ff-57a0a469-d98890f38df5442a;;;"
accept-ranges: bytes
content-length: 55039
date: Fri, 16 Dec 2022 22:58:01 GMT
server: LiteSpeed
vary: User-Agent
www.rafist.com/wp-content/themes/internet-10/images/boxtop.gif
200 OK 538 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/boxtop.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 292 x 19\012- data
Hash 56e961a57fd7ce4a784c4dddef635620
cbc329427dc680a1b5a4fa1cd9142d42608e3973
5d4c304e65461b75fe2b0a30ffc4583a8058413737284d04e2814dc5a55f1d9b
GET /wp-content/themes/internet-10/images/boxtop.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:02 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:24 GMT
etag: "21a-4f950df8-47e429598fac3d5;;;"
accept-ranges: bytes
content-length: 538
date: Fri, 16 Dec 2022 22:58:02 GMT
server: LiteSpeed
vary: User-Agent
www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FDestegi%2F173214066036266&width=270&colorscheme=light&connections=8&stream=false&header=true&height=290
301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FDestegi%2F173214066036266&width=270&colorscheme=light&connections=8&stream=false&header=true&height=290
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FDestegi%2F173214066036266&width=270&colorscheme=light&connections=8&stream=false&header=true&height=290 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FDestegi%2F173214066036266&width=270&colorscheme=light&connections=8&stream=false&header=true&height=290
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 16 Dec 2022 22:58:02 GMT
Connection: keep-alive
Content-Length: 0
www.google.com/friendconnect/script/friendconnect.js
404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/friendconnect/script/friendconnect.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 8dc494040a252b9a3a9ea04255941cd6
663805a606e28589d28362cc1d8fa19a5bc56860
24d511499e91216fa0deefaf1c2875a378f83b01b170f2dfc50d27f2a4978a0a
GET /friendconnect/script/friendconnect.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1598
Date: Fri, 16 Dec 2022 22:58:02 GMT
www.rafist.com/wp-content/themes/internet-10/images/gbox.gif
200 OK 622 B URL HTTP/1.1 www.rafist.com/wp-content/themes/internet-10/images/gbox.gif
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type GIF image data, version 89a, 960 x 35\012- data
Hash 74b83d05db89ac7f9371aa2d3db8a9a4
dc4998e4e519e1afe2edb7b84a2484976bf1eb45
4a16648e3dbc15a146cf35d92d322ab4c81bccb1893daa0f393d3af7f20ffbba
GET /wp-content/themes/internet-10/images/gbox.gif HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/wp-content/themes/internet-10/style.css
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:02 GMT
content-type: image/gif
last-modified: Mon, 23 Apr 2012 08:08:27 GMT
etag: "26e-4f950dfb-31fc738e46d7fa4d;;;"
accept-ranges: bytes
content-length: 622
date: Fri, 16 Dec 2022 22:58:02 GMT
server: LiteSpeed
vary: User-Agent
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 51897d39745c8e158c6aa45675fba554
6375d83cc7c622cc7c550202fc5636f8fe1e5674
059cad6e3c71bf7510064b487d808503ba72fa5958a062bf429a8846e4a0487a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 20 Dec 2022 20:14:30 GMT
ETag: "6375d83cc7c622cc7c550202fc5636f8fe1e5674"
Last-Modified: Fri, 16 Dec 2022 20:14:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ab0579e9dfb521-OSL
static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/Z4iR9Jq38WK.css?_nc_x=Ij3Wp8lg5Kz
200 OK 4.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y9/l/0,cross/Z4iR9Jq38WK.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4431)
Hash 73a7901544d5e35ddbad5677e4d442ec
40b1d634be74bdf9593ef741efb2d4509cf9e2df
527f958c88ac376a34bf3e567ea9d62df43847a42b8739f843333fe3de961e51
GET /rsrc.php/v3/y9/l/0,cross/Z4iR9Jq38WK.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Dec 2023 16:30:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: c6eQFUTV413brVZ35NRC7A==
x-fb-debug: Aeqe15TAJWAZWkQz1nr5rGVPww2qI0Gc9o8b2SCExYgMMlb5zNfYU+X0OQtfRnKuQ/pIMFGqGrh5Ev682dwZ0w==
priority: u=2
content-length: 4910
x-fb-trip-id: 1904183273
date: Fri, 16 Dec 2022 22:58:02 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
srv.sayyac.net/sa.js?_salogin=rafist&_sav=4.3
200 OK 0 B URL HTTP/1.1 srv.sayyac.net/sa.js?_salogin=rafist&_sav=4.3
IP
ASN #197720 TURKTICARET.NET YAZILIM HIZMETLERI SAN. ve TIC. A.S.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sa.js?_salogin=rafist&_sav=4.3 HTTP/1.1
Host: srv.sayyac.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: application/x-javascript
Content-Length: 0
Last-Modified: Wed, 16 Mar 2022 15:00:14 GMT
Connection: close
ETag: "6231fb7e-0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-Ranges: bytes
www.internethaber.com/images/news/60386.jpg
200 OK 9.2 kB URL HTTP/2 www.internethaber.com/images/news/60386.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x190, components 3\012- data
Hash 9daad3dfeacb22d3bde66916fd170df5
ecb9706b396b7ceca8a170f9777e1705f88fb89c
4fecd824380d05a3d1ca107beb0e07dfc0a436c0a180967ff8345a7b4d4e7950
GET /images/news/60386.jpg HTTP/1.1
Host: www.internethaber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.rafist.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
content-type: image/jpeg
content-length: 9187
last-modified: Thu, 04 Feb 2010 14:13:03 GMT
etag: "4b6ad5ef-23e3"
access-control-allow-origin: *
x-midtier: de-fra-lea-s01
x-mcache: MISS
x-ecache: MISS
via: HTTP/2.0 Merlin CDN
age: 0
x-edge: de-fra-dp-s03
server: MerlinCDN
allow: GET, HEAD, POST
cache-control: max-age=30
accept-ranges: bytes
X-Firefox-Spdy: h2
tcr.tynt.com/ti.js
200 OK 42 kB IP
Hash d8b0453b4ee516013c464dffb44ff9be
5c52f8614e0dcc8314c34f567d373f26fad9ace9
dd51b8f7628b9669fc05d1ee3e970a95c739523a806665617b62cb687d84d91e
GET /ti.js HTTP/1.1
Host: tcr.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 98955
Expires: Mon, 19 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 77ab057d2bc1b515-OSL
widgets.amung.us/small.js
200 OK 3.5 kB URL HTTP/1.1 widgets.amung.us/small.js
IP
File type ASCII text, with very long lines (8560), with no line terminators
Hash 08283f674ed2a3a87b0ca0b64950ef28
1d6018c4a9104d337726cfe9f67b43ff37acc0cb
442e1c2e9e1692d86c6c4df3c68167fbddb4ec4ec7fa90258fd683f5a5f3578d
GET /small.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 15 Dec 2022 21:42:03 GMT
etag: W/"639b94ab-2170"
expires: Sat, 17 Dec 2022 22:00:39 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 3443
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ab057d3a6e0d42-ARN
www.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 16 Dec 2022 21:06:08 GMT
Expires: Fri, 16 Dec 2022 23:06:08 GMT
Cache-Control: public, max-age=7200
Age: 6714
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.rafist.com
200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.rafist.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.rafist.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 77434
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:02 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
www.rafist.com/favicon.ico
200 OK 4.8 kB URL HTTP/1.1 www.rafist.com/favicon.ico
IP
ASN #59674 Aysima Bilisim Teknolojileri
File type MS Windows icon resource - 4 icons, 16x16, 16 colors, 4 bits/pixel, 48x48, 8 bits/pixel\012- data
Hash 0c2638253fbb0b1fac78238fbb0f70be
e98a61f9be45f619be47e1bfbfbbeba9876ad77a
d0959bcb72da7102d3744f6d3c0c6c1822aa15af07a5536edda59849c010b748
GET /favicon.ico HTTP/1.1
Host: www.rafist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/teknoloji/pille-calisan-otomobil.html
Cookie: sayfa_sayac_okunan=YToxOntpOjA7aToxMDQ0NDt9
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 22:58:02 GMT
content-type: image/x-icon
last-modified: Mon, 23 Apr 2012 07:54:32 GMT
etag: "1e26-4f950ab8-48322b867f0c3a88;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4765
date: Fri, 16 Dec 2022 22:58:02 GMT
server: LiteSpeed
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP
Hash 18f7c6b0ee01eebadeab8fd715a7b316
3ebcb51c755280d4660d02d51de6f7f5b4aa4571
516d9eea964a47419a8e3ce8bc2d3fceed14a1c9236bb97651ccef3b4b274003
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
toplist.sk/count.asp?id=1239364
200 OK 120 kB URL HTTP/2 toplist.sk/count.asp?id=1239364
IP
File type PNG image data, 88 x 31, 4-bit colormap, non-interlaced\012- data
Size 120 kB (120083 bytes)
Hash c89c4796b8e3c522ebc03414048e2a08
64d2112562abda33c14b7535280d59e7493e9a5c
2a57aecad52580e2c017e630dd0968fd0d973f3b6895535c89129ace5c8796a8
GET /count.asp?id=1239364 HTTP/1.1
Host: toplist.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.rafist.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:01 GMT
server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9
pragma: no-cache
cache-control: private,no-cache,no-store,must-revalidate,max-age=0
expires: Thu, 01 Dec 1994 16:00:00 GMT
p3p: CP="NON DSP ADM DEV PSD CUSo OUR IND STP PRE NAV UNI"
x-w: 9
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1121053382&utmhn=www.rafist.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&utmhid=706319917&utmr=-&utmp=%2Fteknoloji%2Fpille-calisan-otomobil.html&utmht=1671231479381&utmac=UA-5464494-5&utmcc=__utma%3D16126261.203367281.1671231479.1671231479.1671231479.1%3B%2B__utmz%3D16126261.1671231479.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1280446306&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1121053382&utmhn=www.rafist.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&utmhid=706319917&utmr=-&utmp=%2Fteknoloji%2Fpille-calisan-otomobil.html&utmht=1671231479381&utmac=UA-5464494-5&utmcc=__utma%3D16126261.203367281.1671231479.1671231479.1671231479.1%3B%2B__utmz%3D16126261.1671231479.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1280446306&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1121053382&utmhn=www.rafist.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&utmhid=706319917&utmr=-&utmp=%2Fteknoloji%2Fpille-calisan-otomobil.html&utmht=1671231479381&utmac=UA-5464494-5&utmcc=__utma%3D16126261.203367281.1671231479.1671231479.1671231479.1%3B%2B__utmz%3D16126261.1671231479.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1280446306&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Fri, 16 Dec 2022 22:58:02 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
ocsp.digicert.com/
200 OK 313 B IP
Hash f2f54f5b44fa37debd7e80b70fe18bfb
920e58b3eb06fbc0d58ce5fc3684ca9c996f2a39
6c4152abe622e0accb7ba5c6061fc9debac044250cd4b77578c90a6b6d228df1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5959
Cache-Control: max-age=114472
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Etag: "639bfcdb-139"
Expires: Sun, 18 Dec 2022 06:45:54 GMT
Last-Modified: Fri, 16 Dec 2022 05:06:35 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
whos.amung.us/pingjs/?k=roa03d91thhu&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&c=s&x=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&y=&a=0&d=1.928&v=27&r=4884
200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=roa03d91thhu&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&c=s&x=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&y=&a=0&d=1.928&v=27&r=4884
IP
File type ASCII text, with no line terminators
Hash bd0a0e5f5e708504f4ac60ac1e3e8f93
9d2cd3125daf1704255bd3f605b0ec468efc58b2
5aa003be51b3fd63027592a10a14fdeec0ff1c0f7bb90f462b2fd022815cc532
GET /pingjs/?k=roa03d91thhu&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&c=s&x=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&y=&a=0&d=1.928&v=27&r=4884 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rafist.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ab057e4c3e95e4-ARN
adservice.google.no/adsid/integrator.js?domain=www.rafist.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.rafist.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.rafist.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.rafist.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.rafist.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.rafist.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
200 OK 402 B URL HTTP/2 syndication.twitter.com/settings?session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
IP
File type JSON data\012- , ASCII text, with very long lines (1109), with no line terminators
Hash 20129f6ba74cadb768c12cfebff99625
744c5248ab9712adf0179067dbadae75464f7383
53476bf04ddc3dbf9b75ba3f96f28a345c9cac4d9f7b0f57f901870692a4acf2
GET /settings?session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Fri, 16 Dec 2022 22:58:02 GMT
content-length: 402
content-encoding: gzip
x-transaction-id: 748372d46ff44a85
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 113
x-connection-hash: 1f6f0fa789a5f68566d3fb226a7782649899ca2ed208b9dc06a1d7f6b1d8af70
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7670
Expires: Sat, 17 Dec 2022 01:05:52 GMT
Date: Fri, 16 Dec 2022 22:58:02 GMT
Connection: keep-alive
adservice.google.com/adsid/integrator.js?domain=www.rafist.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.rafist.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.rafist.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2acab402381f19830cb38a330fad29f3
04066039213672a571687711d39598104ca5b6a9
d901d3af43eea2d140377599a985ccfefe31575daa1e23fe6a9e272c398ca40a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0991e368-99b1-4e13-ad85-32e41c11922d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5520
x-amzn-requestid: 970d0949-100c-4fce-8b9c-1351ab50e095
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7Gp2oAMFRiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-2e216c22383a85a639331fc1;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _B9qbbv-CbjdG0NeW7VIqzX82pPaVKCfQGwNxcQEq7-WpxmLO6zrqg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:26 GMT
etag: "04066039213672a571687711d39598104ca5b6a9"
content-type: image/jpeg
age: 4656
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7670
Expires: Sat, 17 Dec 2022 01:05:52 GMT
Date: Fri, 16 Dec 2022 22:58:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d2294cdacdc84b8b19874ba56035a6d
53009a81b15e464d5529d36b1e04b841b2ae034e
67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G1MopDnv-WOAbIBMe0v-V9xXeJIVDReKWSMG33dQt1q5GpK41RU0PQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 07:15:01 GMT
age: 56581
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fae5a52ce167de2a060dc814a744e98
4b108a79a4ad796a34f4b2b8950df907137680e3
61e1fe4a8c074a031e0628ca393449e42d70dcf3411481936c26c1fad7a5451b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9837
x-amzn-requestid: 7c104466-a4d8-4e03-94e6-79a18bd3bf54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjWiEMlIAMFaaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce5c3-4b0e776f4f0edd533795a6ee;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BoDm_UMgTvGhUoJOaM2x6-YXgFOFuLanBV4hjgsPNTFxn_9CQjELUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
etag: "4b108a79a4ad796a34f4b2b8950df907137680e3"
content-type: image/jpeg
age: 4663
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2c81b67adbfb8bf94378229e1edcfd8
4f8f964aa0b97794efa025d7dab09e802205ab26
1d2eba6d15e288a1ca66f0f3c6c055d7e390323bd0a8c9030ab528499b6503cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5851
x-amzn-requestid: 80799fe1-b9bf-4f9d-a5d0-18caae663a7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC5GeFIAMF_SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-3db2e2d50b3a2a6865b56e3e;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YLsxuwuas79rrcMWXiFPhFxtR9qQhVp763LFbrYsCW6L_R8ZiWr2jA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:28 GMT
age: 4654
etag: "4f8f964aa0b97794efa025d7dab09e802205ab26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7670
Expires: Sat, 17 Dec 2022 01:05:52 GMT
Date: Fri, 16 Dec 2022 22:58:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dce7a87ac0852f838007018af2e83cb5
379f7844a18284958ec0250cc45f2c91ac1ddfcf
31a5191700b9d5c2e471c0e6db15d43f1804b61c6a0867340e8001c32a0dabb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: f8f1832c-4269-4c4b-83c0-4c2d8c2fdd8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7GLSIAMFd4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-4c54f9704a32da245a90ab0d;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CrmrekFQeOTjAkIBgbGSNGN66ysdrtGK1uuzJV-b6nB1WFrOrtf1OA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
etag: "379f7844a18284958ec0250cc45f2c91ac1ddfcf"
content-type: image/jpeg
age: 4663
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9bdbce312552cda92300b2738618960c
f6b4eb3131180554afee194b65f8cc40644eadc3
57198fe0107e926ce4762f57f067215d43c00b9bd68b5e8117e3709392125534
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae934ee-7c6e-4784-90fd-ef6c864097ef.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae934ee-7c6e-4784-90fd-ef6c864097ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c3454ef9b4c0d31eecf53e44471cecb
f1182e860380b637388fa7f90c36e0a8c9edd657
c474493452d48121f0050efdd197231909d3c9de0fccbe07bf5706162b848624
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ae934ee-7c6e-4784-90fd-ef6c864097ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7048
x-amzn-requestid: d2665a61-0c5f-429e-bd9c-f4c6aec4fe14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjEvH6VIAMFd2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce551-65d1775b5f07d8bf10beae48;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zWO_LMG3fez0GBfCwXtYm9IPAN1LKsomAPVR8ApRb44i2UAf5tOHAw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:30 GMT
age: 4652
etag: "f1182e860380b637388fa7f90c36e0a8c9edd657"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1032968991&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=27&bdt=584&idt=663&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&correlator=2869528629583&frm=20&pv=2&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=164&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=JcuXUzZKRo&p=http%3A//www.rafist.com&dtd=771
400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1032968991&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=27&bdt=584&idt=663&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&correlator=2869528629583&frm=20&pv=2&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=164&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=JcuXUzZKRo&p=http%3A//www.rafist.com&dtd=771
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1032968991&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=27&bdt=584&idt=663&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&correlator=2869528629583&frm=20&pv=2&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=164&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=JcuXUzZKRo&p=http%3A//www.rafist.com&dtd=771 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Dec-2022 23:13:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=600&slotname=1657224608&adk=3061699995&adf=3066035636&pi=t.ma~as.1657224608&w=160&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231479016&bpp=6&bdt=708&idt=675&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=887&ady=462&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Ce%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=0Vcw3YgkJq&p=http%3A//www.rafist.com&dtd=730
400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=600&slotname=1657224608&adk=3061699995&adf=3066035636&pi=t.ma~as.1657224608&w=160&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231479016&bpp=6&bdt=708&idt=675&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=887&ady=462&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Ce%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=0Vcw3YgkJq&p=http%3A//www.rafist.com&dtd=730
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7960993394641930&output=html&h=600&slotname=1657224608&adk=3061699995&adf=3066035636&pi=t.ma~as.1657224608&w=160&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231479016&bpp=6&bdt=708&idt=675&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=887&ady=462&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Ce%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=5&uci=a!5&fsb=1&xpc=0Vcw3YgkJq&p=http%3A//www.rafist.com&dtd=730 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Dec-2022 23:13:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1461408954&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=8&bdt=585&idt=673&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=494&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=EVr426KRhD&p=http%3A//www.rafist.com&dtd=777
400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1461408954&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=8&bdt=585&idt=673&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=494&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=EVr426KRhD&p=http%3A//www.rafist.com&dtd=777
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7960993394641930&output=html&h=250&slotname=9615964169&adk=1925752539&adf=1461408954&pi=t.ma~as.9615964169&w=300&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=8&bdt=585&idt=673&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=494&ady=423&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7ClE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=EVr426KRhD&p=http%3A//www.rafist.com&dtd=777 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Dec-2022 23:13:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=325288813&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=12&bdt=584&idt=724&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1363&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&btvi=2&fsb=1&xpc=MTYfiAjpJE&p=http%3A//www.rafist.com&dtd=789
400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=325288813&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=12&bdt=584&idt=724&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1363&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&btvi=2&fsb=1&xpc=MTYfiAjpJE&p=http%3A//www.rafist.com&dtd=789
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=325288813&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=12&bdt=584&idt=724&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169%2C1314715223&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1363&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=4&uci=a!4&btvi=2&fsb=1&xpc=MTYfiAjpJE&p=http%3A//www.rafist.com&dtd=789 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Dec-2022 23:13:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=1013883472&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=6&bdt=584&idt=676&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1288&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&btvi=1&fsb=1&xpc=DyBxen7fB4&p=http%3A//www.rafist.com&dtd=783
400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=1013883472&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=6&bdt=584&idt=676&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1288&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&btvi=1&fsb=1&xpc=DyBxen7fB4&p=http%3A//www.rafist.com&dtd=783
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7960993394641930&output=html&h=15&slotname=1314715223&adk=371351906&adf=1013883472&pi=t.ma~as.1314715223&w=468&lmt=1671231479&url=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&wgl=1&dt=1671231478892&bpp=6&bdt=584&idt=676&shv=r20221207&mjsv=m202212070101&ptt=5&saldr=sa&abxe=1&prev_slotnames=9615964169%2C9615964169&correlator=2869528629583&frm=20&pv=1&ga_vid=203367281.1671231479&ga_sid=1671231479&ga_hid=706319917&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=245&ady=1288&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31071276%2C44779794%2C44780792&oid=2&pvsid=3702640780036842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cebr%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&btvi=1&fsb=1&xpc=DyBxen7fB4&p=http%3A//www.rafist.com&dtd=783 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 16 Dec 2022 22:58:02 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Dec-2022 23:13:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&j=
200 OK 1.3 kB URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&j=
IP
File type ASCII text, with very long lines (2077)
Hash 95639f27e37ba8ceeefd2d3bc53dc1fe
9c7b3d022f359124ecc6cd7e532a58a19f817396
8897778635cc56085380cc615399b135879556596430dca1c0322e88038eb6f2
GET /i/?l=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 17-Dec-2022 00:21:22 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sat, 17-Dec-2022 02:58:02 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1671231482; Domain=dtscout.com; Expires=Sun, 26-Mar-2023 22:58:02 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.559
expires: Fri, 16 Dec 2022 22:58:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BYHwRLzo9Nibz5RnZn8tPcWrpoCNW4JzAYNqUmovo28KojyNzBwX6JADYlPF2kuRLw2vlEFKnN4AZ8IDT3TZ0wnX6GTQeC6JMe4Q5LMGkVBPxZI48Adj8eWgwQds%2FVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ab057dea060a37-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4beafb95d0a662fa7eb81909b51358ff
c4d7240463ae3f6f8b96286fb35174c34aee6964
e39ff4ed5f0ac4c67cf6618e63360e532fe16a1b27e6d17831ef32ef9658a735
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 23:33:40 GMT
Expires: Wed, 21 Dec 2022 23:33:39 GMT
Etag: "c4d7240463ae3f6f8b96286fb35174c34aee6964"
Cache-Control: max-age=433536,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ab05804fd0b503-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9bdbce312552cda92300b2738618960c
f6b4eb3131180554afee194b65f8cc40644eadc3
57198fe0107e926ce4762f57f067215d43c00b9bd68b5e8117e3709392125534
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4beafb95d0a662fa7eb81909b51358ff
c4d7240463ae3f6f8b96286fb35174c34aee6964
e39ff4ed5f0ac4c67cf6618e63360e532fe16a1b27e6d17831ef32ef9658a735
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:58:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 23:33:40 GMT
Expires: Wed, 21 Dec 2022 23:33:39 GMT
Etag: "c4d7240463ae3f6f8b96286fb35174c34aee6964"
Cache-Control: max-age=433536,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77ab057fc88bb506-OSL
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP
File type ASCII text, with very long lines (7017), with no line terminators
Hash 83616664e4155f8af0efb0576f8920cf
1277b0f4f935bec3ada0f87c45395bb6d9b2efbc
bb19d85932c5e8a952b6fc28c1df42aed6d6920f79ee3f2217d2484294d575d3
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 77424
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:03 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&cu=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&cu=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler&cu=http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26401)
Hash 5b6eacf8366355e295156bc22b73d149
99b2bc06459f9bdd5f56be679f9e4b037240dbc1
4a9108d556fbb6eed9ab92f81b4fd15202ed5504ad32d39ee2ff19445fe943c0
GET /widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 77190
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:03 GMT
Etag: "309f7bc00699d43138a43b3eefbc89f6+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:55 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15412
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash cd8176e04a5a760140a9de9ffe9d8a17
f3b4514c9df71da30eadd2d87fd6131e5c3bf7e3
601089b9e7dcd29e255c391dff1c3da64dd80bb72ee047561592d86dbbc4c472
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 77423
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:03 GMT
Etag: "126ffb93f08e989b18a6e1fc082c9e33+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26401)
Hash 5b6eacf8366355e295156bc22b73d149
99b2bc06459f9bdd5f56be679f9e4b037240dbc1
4a9108d556fbb6eed9ab92f81b4fd15202ed5504ad32d39ee2ff19445fe943c0
GET /widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 77087
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:03 GMT
Etag: "309f7bc00699d43138a43b3eefbc89f6+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:55 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F719)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15412
platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26401)
Hash 5b6eacf8366355e295156bc22b73d149
99b2bc06459f9bdd5f56be679f9e4b037240dbc1
4a9108d556fbb6eed9ab92f81b4fd15202ed5504ad32d39ee2ff19445fe943c0
GET /widgets/follow_button.644279d1635fd969e87af94a98bd232b.tr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 73048
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 16 Dec 2022 22:58:03 GMT
Etag: "309f7bc00699d43138a43b3eefbc89f6+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:55 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FC)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15412
t.dtscout.com/pv/?_a=v&_h=rafist.com&_ss=fz0r9vl62c&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6mfv&_cb=_dtspv.c
200 OK 52 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=rafist.com&_ss=fz0r9vl62c&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6mfv&_cb=_dtspv.c
IP
File type ASCII text, with no line terminators
Hash 54ef77494e4a2bcf971aa9390c7d11a7
177d2f771cc3736ce4e6dcc5896e033d228fbb70
7a39da9d6bf346e9ff4e833ec41d74dabdabd292729d49a8c7083404e8928602
GET /pv/?_a=v&_h=rafist.com&_ss=fz0r9vl62c&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6mfv&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Cookie: m=1; oa=1; df=1671231482
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:03 GMT
content-type: application/javascript
x-t: 0.151
x-c: 0
expires: Fri, 16 Dec 2022 22:58:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1cXFdU7BJBeyJxLDEUjliMieiVZy1YrsDBsILgHt8QcoIVzbKbiMO77x5f9YUDvK%2FAoXgqL0tnpNcQofAF%2BJSVTNeIyBMAidcpJB7%2BJRyXqMvxxzhEFLQ7Tpe9MJ1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ab057fabbf0a37-ARN
content-encoding: br
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=anehAeJVKr4lROadbi-bpO~w!roa03d91thhu&dn=TI&cc=1&r=
200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=anehAeJVKr4lROadbi-bpO~w!roa03d91thhu&dn=TI&cc=1&r=
IP
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=anehAeJVKr4lROadbi-bpO~w!roa03d91thhu&dn=TI&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sat, 17 Dec 2022 22:58:03 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Fri, 16 Dec 2022 22:58:03 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480053%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480053%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480053%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 16 Dec 2022 22:58:03 GMT
content-length: 43
x-transaction-id: a8d03676aa324b72
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 1f6f0fa789a5f68566d3fb226a7782649899ca2ed208b9dc06a1d7f6b1d8af70
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480052%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480052%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480052%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 16 Dec 2022 22:58:03 GMT
content-length: 43
x-transaction-id: 562a453a6c2e04de
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 1f6f0fa789a5f68566d3fb226a7782649899ca2ed208b9dc06a1d7f6b1d8af70
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480051%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480051%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480051%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 16 Dec 2022 22:58:03 GMT
content-length: 43
x-transaction-id: d24e5e4d08bf9def
strict-transport-security: max-age=631138519
x-response-time: 113
x-connection-hash: 1f6f0fa789a5f68566d3fb226a7782649899ca2ed208b9dc06a1d7f6b1d8af70
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0&t=Pille%20%C3%A7al%C4%B1%C5%9Fan%20otomobil%20-%20Rafist%20Genel%20Bilgiler HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480050%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480050%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.rafist.com%2Fteknoloji%2Fpille-calisan-otomobil.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22tr%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1671231480050%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=e59ecca55a2b3ce4086c3d80e21416fea9523538 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:02 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 16 Dec 2022 22:58:03 GMT
content-length: 43
x-transaction-id: 592d91e1e241d2c2
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 1f6f0fa789a5f68566d3fb226a7782649899ca2ed208b9dc06a1d7f6b1d8af70
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=anehAeJVKr4lROadbi-bpO&lm=0&ts=1671231479348&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bebec1b3d6a2a08f17ac8b4a894fc3aa
5e572097e18361889e8365294ffb39b608e8d033
cdc447855a71b329cfb19b6652ef6c5fbaa926776bcbeac480b10c066d47dd67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.tynt.com/tc.js
200 OK 11 kB IP
Hash 0256fb397605986a8e90e6d0fad35d8b
5f808a45d8e3ec114671f8cf787dcf2bca935c20
c219178c0ca98ea280ccfaf7f605511f8ac68efb8062dcfa659285c1a981f212
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:03 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:21 GMT
vary: Accept-Encoding
etag: W/"62d96951-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 113463
expires: Mon, 19 Dec 2022 22:58:03 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 77ab0580bb901c0a-OSL
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 16 Dec 2022 22:58:03 GMT
expires: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:31:48 GMT
expires: Sat, 16 Dec 2023 17:31:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 19575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c8a49c10c60b31f85897b10f4ec4cf83
a36d1f2e9c383be9d1e8f3582e4245848c737942
96090cb245f690b7cc9a8b4cd11b6fbb1eede6e139f3a5485c8e58196024e7bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 93a751897eba87495f3bd1ac3c4a9ea9
504e3a0cd1e34a1db3bae2930e6fc7d6aaee08e0
e8ed837ad9333425c3d5b120c07d56e842ddb42d9bb63008ab30405c3b5dba80
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 16 Dec 2022 22:58:03 GMT
date: Fri, 16 Dec 2022 22:58:03 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-TA1r6d0w1bv03wmdeIoXSg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac96a0cab4c96df122836bceb4850207
661d83a82eadfe8b2582a0550f6f1fd8af550695
a611f9d423d24a7461aea0d50d8bf1730ac24ab368f5f240349fa983a670fa03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4922
x-amzn-requestid: 2d4d89a2-5ac9-40e5-9a5e-9bbcf2c3708b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dOj89G7UoAMFeWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639c19ec-2472c71330e0a5ae08fea9f4;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 07:10:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LEJlE4T5uEsDprOHhOTAeEG_tNxYttx13OOmtHAD9iRGpZsLbrkLyQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
age: 4670
etag: "661d83a82eadfe8b2582a0550f6f1fd8af550695"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:01 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 53299
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77ab057809e4b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
toplist.cz/count.asp?id=1258593
200 OK 0 B URL HTTP/2 toplist.cz/count.asp?id=1258593
IP
GET /count.asp?id=1258593 HTTP/1.1
Host: toplist.cz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.rafist.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:01 GMT
server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9
pragma: no-cache
cache-control: private,no-cache,no-store,must-revalidate,max-age=0
expires: Thu, 01 Dec 1994 16:00:00 GMT
p3p: CP="NON DSP ADM DEV PSD CUSo OUR IND STP PRE NAV UNI"
x-w: 4
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sc.tynt.com/script/sc/anehAeJVKr4lROadbi-bpO.js
200 OK 0 B URL HTTP/2 sc.tynt.com/script/sc/anehAeJVKr4lROadbi-bpO.js
IP
GET /script/sc/anehAeJVKr4lROadbi-bpO.js HTTP/1.1
Host: sc.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.rafist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:58:03 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=86400, public, s-maxage=172800
last-modified: Thu, 15 Dec 2022 15:04:43 GMT
x-xss-protection: 1; mode=block
x-request-id: 22e3fe84-364b-47a5-840d-27c554d059bf
x-content-digest: 72a6195042fe9092998fb2abfd618ab5ee05170f
x-runtime: 0.003269
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Fri, 16 Dec 2022 23:18:50 GMT
content-encoding: gzip
cf-cache-status: HIT
age: 82893
server: cloudflare
cf-ray: 77ab05811c171c0a-OSL
X-Firefox-Spdy: h2
185.179.25.119
34.117.237.239
88.86.101.2
185.102.219.172
104.18.20.226
31.13.72.36
93.184.220.29
23.36.76.226