r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14939
Expires: Sat, 17 Dec 2022 02:37:14 GMT
Date: Fri, 16 Dec 2022 22:28:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4246
Expires: Fri, 16 Dec 2022 23:39:01 GMT
Date: Fri, 16 Dec 2022 22:28:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 16 Dec 2022 21:45:12 GMT
content-type: application/json
age: 2583
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14050
Expires: Sat, 17 Dec 2022 02:22:25 GMT
Date: Fri, 16 Dec 2022 22:28:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SX0xvODnX0AtYEZQVQePxltuvUKRavD4jsjNINB6iUhmtgunB3RN6AkeZE3M1lNG/bKEgHvyd1o=
x-amz-request-id: H0J9M4H9MJYQE2PJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 16 Dec 2022 21:51:30 GMT
age: 2205
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:15 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html
172.217.21.161200 OK 19 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash 3c105efd722b7d584bff874aa2dd422c
d04bdb42023436e660dcd7a817be20bab8927a5d
a2e8c61d53446411eb0914cfd460402da9345eee18b97ab07a960ba4cf7c6af6
GET /2012/12/sozun-gucu_22.html HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 16 Dec 2022 22:28:15 GMT
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 18952
Server: GSE
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.34200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (3583)
Hash 631d78f793e5d922b820ca3a83ee4121
61590e20a94b568203c43b4f9b1778d92a059a56
0f74069036eaedb668633ebbb9227cbe9f9e6e47484b7d410cc74ce90115edad
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 16 Dec 2022 22:28:15 GMT
Expires: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 12214163904195370715
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36219
X-XSS-Protection: 0
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Dec 2022 04:18:03 GMT
Expires: Thu, 22 Dec 2022 04:18:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 15 Dec 2022 01:54:46 GMT
Content-Type: text/javascript
Age: 151812
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 38d30195e5ac974729f24024ab3380f2
74ada6b82223011cddea668efa7397d3620fd6d0
d85cdd2f7fba1b3249bccffa017de80460f11ad2eb54e3bc1b201741924ede33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 107db8cf13f1c823ac6391567acb2965
d815f75731307e7ce8afb672953b3b5d522105bd
674033c21e0f655e36a65fdbb26711159384ed0c1897e54c9a2ae1c3d9523529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 107db8cf13f1c823ac6391567acb2965
d815f75731307e7ce8afb672953b3b5d522105bd
674033c21e0f655e36a65fdbb26711159384ed0c1897e54c9a2ae1c3d9523529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 107db8cf13f1c823ac6391567acb2965
d815f75731307e7ce8afb672953b3b5d522105bd
674033c21e0f655e36a65fdbb26711159384ed0c1897e54c9a2ae1c3d9523529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a1d368b1eb99c48990a02fe6dcd0461
e8e47cf6263b037e7809363f0789aacb0cbcdd23
f171bbb13efe07faecb8b6b6f3c54f9e04dc332408525d57ebc820a211fcea80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:15 GMT
expires: Sat, 16 Dec 2023 13:33:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 16 Dec 2022 03:52:09 GMT
content-type: text/css
age: 32100
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:13 GMT
expires: Sat, 16 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 16 Dec 2022 03:52:09 GMT
content-type: text/javascript
age: 32102
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Fri, 16 Dec 2022 22:28:15 GMT
expires: Fri, 16 Dec 2022 22:28:15 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (4885)
Hash 159c694faa8313a3ad893a0250c7ea15
bba574bf4102fccbaef46c41420e9292486ecc48
7830897c7684243b35f67dafef89c6487f54ccc52325bc0911ddce7784251364
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 16 Dec 2022 22:28:15 GMT
Expires: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 18138272199526180790
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52161
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/2092647672-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 02:10:48 GMT
expires: Fri, 15 Dec 2023 02:10:48 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 10 Dec 2022 00:52:24 GMT
content-type: text/javascript
age: 159447
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 14:19:22 GMT
expires: Tue, 20 Dec 2022 14:19:22 GMT
cache-control: public, max-age=604800
last-modified: Mon, 12 Dec 2022 12:50:23 GMT
content-type: image/gif
age: 288533
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon_feed12.png
216.58.207.233200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 216.58.207.233:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 07:01:27 GMT
expires: Fri, 23 Dec 2022 07:01:27 GMT
cache-control: public, max-age=604800
last-modified: Fri, 16 Dec 2022 05:50:17 GMT
content-type: image/png
age: 55608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-netvibes.png
216.58.207.233200 OK 1.4 kB URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 21:58:30 GMT
expires: Tue, 20 Dec 2022 21:58:30 GMT
cache-control: public, max-age=604800
last-modified: Tue, 13 Dec 2022 19:55:52 GMT
content-type: image/png
age: 260985
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
216.58.207.233200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:22 GMT
expires: Fri, 23 Dec 2022 13:33:22 GMT
cache-control: public, max-age=604800
last-modified: Thu, 15 Dec 2022 17:05:30 GMT
content-type: image/gif
age: 32093
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
216.58.207.233200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 10:41:42 GMT
expires: Tue, 20 Dec 2022 10:41:42 GMT
cache-control: public, max-age=604800
last-modified: Tue, 13 Dec 2022 06:58:47 GMT
content-type: image/png
age: 301593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.34200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.34:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 18:06:43 GMT
Expires: Fri, 30 Dec 2022 18:06:43 GMT
Cache-Control: public, max-age=1209600
Age: 15692
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
www.batmangazetesi.com/images/yazarlar/13349252327849.JPG
104.21.55.133301 Moved Permanently 0 B URL HTTP/1.1 www.batmangazetesi.com/images/yazarlar/13349252327849.JPG
IP 104.21.55.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/yazarlar/13349252327849.JPG HTTP/1.1
Host: www.batmangazetesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Dec 2022 22:28:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 16 Dec 2022 23:28:15 GMT
Location: https://www.batmangazetesi.com/images/yazarlar/13349252327849.JPG
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=14WTEi4rByKIzdDH9sJTuDObbnlmGOBuG%2FjEItED6lT3b7YeAoCd%2BxGmZLUgy1bCdSlRJMgY1nELEI7YqAS2UEaYVMRE4QHXqChUpCqzghVhOZbBp6h8IW0T5hhRw1AvmHLmicGRqK6v"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77aad9de0e72b51d-OSL
alt-svc: h2=":443"; ma=60
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (580)
Hash 3e7852e3ac3d1921ddb7302c569bdb8f
85e8bdb23ef407fb3770ec0a9588d85c725930d3
20cd515349665d62191e0c15ea1b9f3b5c4e35d36313d1e7fdc8af83b9663a78
GET /_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57931
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 19:13:25 GMT
expires: Wed, 13 Dec 2023 19:13:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Dec 2022 15:21:53 GMT
content-type: text/javascript; charset=UTF-8
age: 270890
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 107db8cf13f1c823ac6391567acb2965
d815f75731307e7ce8afb672953b3b5d522105bd
674033c21e0f655e36a65fdbb26711159384ed0c1897e54c9a2ae1c3d9523529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 17:28:13 GMT
expires: Tue, 20 Dec 2022 17:28:13 GMT
cache-control: public, max-age=604800
last-modified: Tue, 13 Dec 2022 01:53:33 GMT
content-type: image/png
age: 277202
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0vPR1lwyXMVVxr_-08RlAB9RYgdMVRiI3uelk2dibetDQFc6m_vMP_tEIurB7wuXDNh0DSJVf7h9zDDSGfiZAGQQ3IqdYjAoKQ9JJHIQFLFgXoE9mNLgVSwWc=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0vPR1lwyXMVVxr_-08RlAB9RYgdMVRiI3uelk2dibetDQFc6m_vMP_tEIurB7wuXDNh0DSJVf7h9zDDSGfiZAGQQ3IqdYjAoKQ9JJHIQFLFgXoE9mNLgVSwWc=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha0vPR1lwyXMVVxr_-08RlAB9RYgdMVRiI3uelk2dibetDQFc6m_vMP_tEIurB7wuXDNh0DSJVf7h9zDDSGfiZAGQQ3IqdYjAoKQ9JJHIQFLFgXoE9mNLgVSwWc=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 17 Dec 2022 22:28:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 22:28:15 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
216.58.207.233200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 216.58.207.233:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 12:40:25 GMT
Expires: Tue, 20 Dec 2022 12:40:25 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 12 Dec 2022 16:52:30 GMT
Content-Type: image/png
Age: 294470
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2SRxKNRpy-N1eAXg_8fZykAK7GtGfL93fOMpeBzwid06WC95nQuan8G3N9VzjIWDj1Bo4AMfntSvu3cKb9zSVNF8vVA2veNXIcYWEWGGAP_N-agPINBv48yzEczEnhy94OzsIjirvuOoWZjg=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2SRxKNRpy-N1eAXg_8fZykAK7GtGfL93fOMpeBzwid06WC95nQuan8G3N9VzjIWDj1Bo4AMfntSvu3cKb9zSVNF8vVA2veNXIcYWEWGGAP_N-agPINBv48yzEczEnhy94OzsIjirvuOoWZjg=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 65810421f26bae7b9b2e8910761e7250
219ac53cb08ff00e7ea3c7f3b0cef7f44bf948a9
803b6156ce5b0d1b975d79e562dfe4eb72f53b4fa441642f0fadaf8dda05864f
GET /blogger_img_proxy/ANbyha2SRxKNRpy-N1eAXg_8fZykAK7GtGfL93fOMpeBzwid06WC95nQuan8G3N9VzjIWDj1Bo4AMfntSvu3cKb9zSVNF8vVA2veNXIcYWEWGGAP_N-agPINBv48yzEczEnhy94OzsIjirvuOoWZjg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 22:28:15 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 107db8cf13f1c823ac6391567acb2965
d815f75731307e7ce8afb672953b3b5d522105bd
674033c21e0f655e36a65fdbb26711159384ed0c1897e54c9a2ae1c3d9523529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 38d30195e5ac974729f24024ab3380f2
74ada6b82223011cddea668efa7397d3620fd6d0
d85cdd2f7fba1b3249bccffa017de80460f11ad2eb54e3bc1b201741924ede33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sayac.onlinewebstat.com/c.js
217.195.203.216200 OK 2.4 kB URL HTTP/1.1 sayac.onlinewebstat.com/c.js
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type ASCII text, with CRLF line terminators
Hash 93e259972860a0e13edf59ab0ac01fbc
e5c790c39dca158666bfa94013512ec579042557
a98c5155f8586678344d1c2a312e8098bf72dcc832a5b0c15406c44ed19a7d94
GET /c.js HTTP/1.1
Host: sayac.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:28:13 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Sun, 18 Jan 2015 06:57:45 GMT
ETag: "251e-50ce7b90a6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2418
Connection: close
Content-Type: application/javascript
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:28:13 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.65200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.65:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 22:28:15 GMT
Expires: Fri, 16 Dec 2022 04:18:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdd7"
Content-Type: image/gif
Age: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 16 Dec 2022 22:08:00 GMT
age: 1215
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.65200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve2b"
Expires: Sat, 17 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 22:28:15 GMT
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.65200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb25"
Expires: Sat, 17 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 22:28:15 GMT
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221207/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221207/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:07:11 GMT
expires: Fri, 30 Dec 2022 03:07:11 GMT
cache-control: public, max-age=1209600
age: 69664
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 07:09:35 GMT
Expires: Tue, 20 Dec 2022 07:09:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 12 Dec 2022 12:50:23 GMT
Content-Type: image/png
Age: 314320
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.65200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v471"
Expires: Sat, 17 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 22:28:15 GMT
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071219
142.250.74.34200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071219
IP 142.250.74.34:0
File type ASCII text, with very long lines (5919)
Size 120 kB (119970 bytes)
Hash 560bb244fabae4f20729831fc2c66e44
f5b262afc4d428877b820ac5c51c1c8faa17b71d
a2d386684f999b237eeda9e645f50f4cf3ff1c762905a3afacbe4405561d01d6
GET /pagead/managed/js/adsense/m202212050101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071219 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 16 Dec 2022 22:28:15 GMT
expires: Fri, 16 Dec 2022 22:28:15 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10734512133637177888
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119970
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.65200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v18e"
Expires: Sat, 17 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kitap-oku.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 22:28:15 GMT
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.65200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc14"
Expires: Sat, 17 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 22:28:15 GMT
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cffeaa037aa43ee5dd38d9bf940f0ec
385130d35323155499a61e73e16a9d9e7a6448b5
2938e838bf98de278488e22b736756400136c887e31b44fc608c4da2a07e6ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 16 Dec 2022 20:41:08 GMT
expires: Fri, 16 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 6427
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html&w=1280&h=1024&n=1&ce=true&r=0.411495601814566&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html&w=1280&h=1024&n=1&ce=true&r=0.411495601814566&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html&w=1280&h=1024&n=1&ce=true&r=0.411495601814566&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:28:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 142400be99b933ea5e0c68ea6a6b3e89
80e94132940e5ebe69dd0a03396764127b8fda49
20e8cde3c6907a3c5d97fe9fbcf6a44035e1f7482f7e166adb2c38a30a9084ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2131
Cache-Control: max-age=126847
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Etag: "639c352c-1d7"
Expires: Sun, 18 Dec 2022 09:42:23 GMT
Last-Modified: Fri, 16 Dec 2022 09:06:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cffeaa037aa43ee5dd38d9bf940f0ec
385130d35323155499a61e73e16a9d9e7a6448b5
2938e838bf98de278488e22b736756400136c887e31b44fc608c4da2a07e6ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Thu, 15-Dec-2022 22:28:06 GMT; path=/
ASP.NET_SessionId=mcxlhsc1fgtgcwffiiqu1pzi; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Sat, 17-Dec-2022 22:28:06 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 339
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bdbce312552cda92300b2738618960c
f6b4eb3131180554afee194b65f8cc40644eadc3
57198fe0107e926ce4762f57f067215d43c00b9bd68b5e8117e3709392125534
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
216.58.207.226200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash d013af079f433d11d3408a43be4b13da
92ca071c43ae9bfb62706d9820dedeccda3c981a
49cd39353fea5795e0435fd51b3807fe592eb8af92f5bc1a3dda4fe4c562515e
GET /gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:28:16 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:28:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1NugSZbYWPO1oTwDnFp0Kw33DyiWwOh4q7qPiXPQkdeA0hNczbC_cVgvf43qU6QhVgS0kdyIpkEgKuDuMqHhrXtw7Cc2_hC2RJ6jeJZzUYYWBVJ6etSNodQcbUoR8Kka7Iy1o6bKUhbnO2bFDziQyEga4W9NGamKkF8Jk3bTmCDaY_qe8Sog=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1NugSZbYWPO1oTwDnFp0Kw33DyiWwOh4q7qPiXPQkdeA0hNczbC_cVgvf43qU6QhVgS0kdyIpkEgKuDuMqHhrXtw7Cc2_hC2RJ6jeJZzUYYWBVJ6etSNodQcbUoR8Kka7Iy1o6bKUhbnO2bFDziQyEga4W9NGamKkF8Jk3bTmCDaY_qe8Sog=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash cbbbf3bb7b15b7eead3c8e6c4ab9c0c9
9697069ea0a0bc837032f2a8f591b8494ef87b5c
a3f8833d2726dd727cfe193d4d8c4a29c95af093216cda7c6cffaede370040fb
GET /blogger_img_proxy/ANbyha1NugSZbYWPO1oTwDnFp0Kw33DyiWwOh4q7qPiXPQkdeA0hNczbC_cVgvf43qU6QhVgS0kdyIpkEgKuDuMqHhrXtw7Cc2_hC2RJ6jeJZzUYYWBVJ6etSNodQcbUoR8Kka7Iy1o6bKUhbnO2bFDziQyEga4W9NGamKkF8Jk3bTmCDaY_qe8Sog=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 17 Dec 2022 22:28:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 22:28:16 GMT
server: fife
content-length: 3345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Dec 2022 22:28:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bdbce312552cda92300b2738618960c
f6b4eb3131180554afee194b65f8cc40644eadc3
57198fe0107e926ce4762f57f067215d43c00b9bd68b5e8117e3709392125534
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCC45dwer08vArFch_sqDddQAmLQmfboEPw8rckPKupJA-o4JPZlpoB1giZzI6q76F4M3oWwLRVlaOGqVVjwMSVXyN6cg
172.217.21.161200 OK 263 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCC45dwer08vArFch_sqDddQAmLQmfboEPw8rckPKupJA-o4JPZlpoB1giZzI6q76F4M3oWwLRVlaOGqVVjwMSVXyN6cg
IP 172.217.21.161:0
File type JSON data\012- , ASCII text, with very long lines (403), with no line terminators
Hash 553955fe0c1613bade303e24154b90e7
74c7e8b00493d5933a297b60e2fe5ac0b0e36396
5ed08d832e3b95ff0bdada9322f02d53cefa805bfb3d34183b10d8d02034a1c5
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCC45dwer08vArFch_sqDddQAmLQmfboEPw8rckPKupJA-o4JPZlpoB1giZzI6q76F4M3oWwLRVlaOGqVVjwMSVXyN6cg HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html
Cookie: cwou_bookwormbilgeadam=1671229693; bwou_bookwormbilgeadam=1671229693; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 16 Dec 2022 22:28:16 GMT
Expires: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 263
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.8 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1108), with CRLF line terminators
Hash 2928c0a317fb48c66b6787b4a150fc37
b63d1c34bbca87f668ea06ba57e42a44aca1d70a
751677b599a753bdf99780b42f944e1cde8bc2820730f295eaa913c057b233af
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Thu, 15-Dec-2022 22:28:06 GMT; path=/
ASP.NET_SessionId=zeeuz10t4fmwvjhrqrhfuv0t; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 2804
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+034; expires=Sun, 15-Dec-2024 22:28:16 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 16 Dec 2022 22:28:16 GMT
cache-control: private
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
last-modified: Fri, 16 Dec 2022 22:28:16 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 05f0d40d1f28b1d712aece07305291fd
f1a0380583923652b55db613f291212475e6134d
0a9941a67555fb82da90077ead0981adc4ab10eb45d26ebd34193e3bfdf9ca6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116452
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Etag: "639c14e4-118"
Expires: Sun, 18 Dec 2022 06:49:08 GMT
Last-Modified: Fri, 16 Dec 2022 06:49:08 GMT
Server: nginx
Content-Length: 280
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.78200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.78:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2975
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+218; expires=Sun, 15-Dec-2024 22:28:16 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 16 Dec 2022 22:28:16 GMT
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha35Dcg2RgWQ4wxcOOYOVN9lHX4wSLgHrIj29i635FMiySYIJLMJIbVbod0Hw2kEj1yYpKE3nyjZhVN2WLRGtquBbTEpx5jK6ec_i7lwaoSUBtrPIVd-sosHFGMOJY1P8hFCghZdlXg=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha35Dcg2RgWQ4wxcOOYOVN9lHX4wSLgHrIj29i635FMiySYIJLMJIbVbod0Hw2kEj1yYpKE3nyjZhVN2WLRGtquBbTEpx5jK6ec_i7lwaoSUBtrPIVd-sosHFGMOJY1P8hFCghZdlXg=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha35Dcg2RgWQ4wxcOOYOVN9lHX4wSLgHrIj29i635FMiySYIJLMJIbVbod0Hw2kEj1yYpKE3nyjZhVN2WLRGtquBbTEpx5jK6ec_i7lwaoSUBtrPIVd-sosHFGMOJY1P8hFCghZdlXg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 17 Dec 2022 22:28:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 22:28:16 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c8a49c10c60b31f85897b10f4ec4cf83
a36d1f2e9c383be9d1e8f3582e4245848c737942
96090cb245f690b7cc9a8b4cd11b6fbb1eede6e139f3a5485c8e58196024e7bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2E4qKZs2802ntkSxqxHeuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lIfVXl+CfvrRnWkI3jbhkm+9Evs=
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 664 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 89486fe9ec07bff5d79774e8d16db47e
f0230bbcbe6c9b34f55418ce31e55a6846918fae
dbdb631be170e6ab604cdf0bd3548704097d4030b97aa559b325fce656acb6ba
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 16 Dec 2022 22:28:16 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 664
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 7c6b613326b653f457ea18a1021d0787
e87ec524338257fd33b0680847c578e908b39cad
1dcd77f26a60f337ba20a8a54dd3c697e77ac54f07e7d48ddfab994e6a09cdc7
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "80693f6cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 2725
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash adcdbcc032f763fb6df3452d06cec25f
92a7bf8209930989013619971c6abf39b5c639d4
25ac98be2316dd7238a2ef038b27642270be777b7425bbfcdb1ca09f8bedcb5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 43
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 1261
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bebec1b3d6a2a08f17ac8b4a894fc3aa
5e572097e18361889e8365294ffb39b608e8d033
cdc447855a71b329cfb19b6652ef6c5fbaa926776bcbeac480b10c066d47dd67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bebec1b3d6a2a08f17ac8b4a894fc3aa
5e572097e18361889e8365294ffb39b608e8d033
cdc447855a71b329cfb19b6652ef6c5fbaa926776bcbeac480b10c066d47dd67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (649)
Size 163 kB (163396 bytes)
Hash aa75370bb1ce2d5b05b0d02f6feecba4
f110915b53288da7b267c51210cfc239dc0b5591
cfb8dadaba93a5e0a08739ce589b55cc61fb93d0c616da564394ce925bef6197
GET /recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 16:24:11 GMT
expires: Thu, 14 Dec 2023 16:24:11 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 01:21:32 GMT
content-type: text/javascript
age: 194645
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
216.58.211.2200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 216.58.211.2:0
File type ASCII text, with very long lines (3501)
Hash 0aea457deb170b60b680d7d723b4a6e2
3acbe700c709c2c5c07d6fb145ea7b448cc07a90
86c662679bc2508be7e8064c91055a3c5be7db2c24d58e5f27676f35702ba339
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47725
date: Fri, 16 Dec 2022 22:28:16 GMT
expires: Fri, 16 Dec 2022 22:28:16 GMT
cache-control: private, max-age=3000
etag: "1670417373259609"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/window_focus_fy2021.js
172.217.21.161200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221207/r20110914/client/window_focus_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221207/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Fri, 16 Dec 2022 22:02:26 GMT
expires: Fri, 30 Dec 2022 22:02:26 GMT
cache-control: public, max-age=1209600
age: 1550
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 3.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 28\012- data
Hash 504b338076be77e4a2bc400c79177fd0
d91f251482238fc3359e5855e95fb9b09efd5c66
073807612778e4fc61a6ab404ff1cd8b668a5028f74ddd372d5abdc721c8d2fa
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 3282
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Fri, 16 Dec 2022 22:28:06 GMT
Content-Length: 3993
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash c36cb4af167057712f486678e89b82c0
309af093083fe13c7876e294bdf453652995c025
0f4a96ef7b3061c8f1545725655865baf1502b1fab8e3486e8f8d22d00bc4ceb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Last-Modified: Fri, 16 Dec 2022 20:57:11 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e0185d10670d02d05aae967856a54b1f
539bda11bb3c7c28b5da3511af24c84c04d755b3
030ee367448fd7e7b6deb9f48bbdb7efa0bdedfdd10f100ced0d2c3cdbbbe033
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4481
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Last-Modified: Fri, 16 Dec 2022 21:13:35 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e0185d10670d02d05aae967856a54b1f
539bda11bb3c7c28b5da3511af24c84c04d755b3
030ee367448fd7e7b6deb9f48bbdb7efa0bdedfdd10f100ced0d2c3cdbbbe033
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=93567
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Etag: "639baa14-139"
Expires: Sun, 18 Dec 2022 00:27:43 GMT
Last-Modified: Thu, 15 Dec 2022 23:13:24 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e0185d10670d02d05aae967856a54b1f
539bda11bb3c7c28b5da3511af24c84c04d755b3
030ee367448fd7e7b6deb9f48bbdb7efa0bdedfdd10f100ced0d2c3cdbbbe033
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4481
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:16 GMT
Last-Modified: Fri, 16 Dec 2022 21:13:35 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEADxnGPEAW_ituDsjvOWfwASAAA&wp=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEADxnGPEAW_ituDsjvOWfwASAAA&wp=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPTpDbOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEADxnGPEAW_ituDsjvOWfwASAAA&wp=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 179657
date: Fri, 16 Dec 2022 22:28:15 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/2012/12/sozun-gucu_22.html
Cookie: cwou_bookwormbilgeadam=1671229693; bwou_bookwormbilgeadam=1671229693; woubookwormbilgeadam=t; _ga=GA1.3.1533187816.1671229693; _gid=GA1.3.320943881.1671229693; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Fri, 16 Dec 2022 22:28:16 GMT
Date: Fri, 16 Dec 2022 22:28:16 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEP_wnGMdP4-n9qP3FJHhYwASAAA&wp=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEP_wnGMdP4-n9qP3FJHhYwASAAA&wp=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPTpDbOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEP_wnGMdP4-n9qP3FJHhYwASAAA&wp=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 284174
date: Fri, 16 Dec 2022 22:28:15 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2922d0457a5ed92d4b0adfcbcabbe7cd
62bf985f7a7e711222edfb225c37a431d6b9af9b
63b3dc6b3304602c72609207e96ebe26b8d2a653e2f2232bbbdbc6f4dbbc4a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1420
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Last-Modified: Fri, 16 Dec 2022 22:04:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2922d0457a5ed92d4b0adfcbcabbe7cd
62bf985f7a7e711222edfb225c37a431d6b9af9b
63b3dc6b3304602c72609207e96ebe26b8d2a653e2f2232bbbdbc6f4dbbc4a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1435
Cache-Control: max-age=171509
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639ce65c-139"
Expires: Sun, 18 Dec 2022 22:06:46 GMT
Last-Modified: Fri, 16 Dec 2022 21:42:52 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2922d0457a5ed92d4b0adfcbcabbe7cd
62bf985f7a7e711222edfb225c37a431d6b9af9b
63b3dc6b3304602c72609207e96ebe26b8d2a653e2f2232bbbdbc6f4dbbc4a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1420
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Last-Modified: Fri, 16 Dec 2022 22:04:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWawC2ASdg2ICAgAAAGtD7PegAgx1EADxnGN46Hsy-tQjqMMuDgASAAA&wp=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWawC2ASdg2ICAgAAAGtD7PegAgx1EADxnGN46Hsy-tQjqMMuDgASAAA&wp=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPTpDbOzWawC2ASdg2ICAgAAAGtD7PegAgx1EADxnGN46Hsy-tQjqMMuDgASAAA&wp=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 247106
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b47f481e877e432dbb2afff41df3fac1
e5b956ae40a354bbc30f93bdefb2c066e7e8f6b7
e7c8846893fe763c3b5e41bd53e53d1ab1eb1539bcf7bc9aaae4ddb14633398c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2039
Cache-Control: max-age=144761
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c7b83-138"
Expires: Sun, 18 Dec 2022 14:40:58 GMT
Last-Modified: Fri, 16 Dec 2022 14:06:59 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 233d22ba07bdab34dc3887a3ee9b9af1
cf1729e5aa0eadb04c3abcea484289b7efcaaa1d
e269a42c926a021e62f09031d12c431ee3fb4c3a9f55ea2b96edf2f091478661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4979
Cache-Control: max-age=138722
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c5870-13a"
Expires: Sun, 18 Dec 2022 13:00:19 GMT
Last-Modified: Fri, 16 Dec 2022 11:37:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 233d22ba07bdab34dc3887a3ee9b9af1
cf1729e5aa0eadb04c3abcea484289b7efcaaa1d
e269a42c926a021e62f09031d12c431ee3fb4c3a9f55ea2b96edf2f091478661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 328
Cache-Control: max-age=134071
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c5870-13a"
Expires: Sun, 18 Dec 2022 11:42:48 GMT
Last-Modified: Fri, 16 Dec 2022 11:37:20 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 233d22ba07bdab34dc3887a3ee9b9af1
cf1729e5aa0eadb04c3abcea484289b7efcaaa1d
e269a42c926a021e62f09031d12c431ee3fb4c3a9f55ea2b96edf2f091478661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4979
Cache-Control: max-age=138722
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c5870-13a"
Expires: Sun, 18 Dec 2022 13:00:19 GMT
Last-Modified: Fri, 16 Dec 2022 11:37:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 233d22ba07bdab34dc3887a3ee9b9af1
cf1729e5aa0eadb04c3abcea484289b7efcaaa1d
e269a42c926a021e62f09031d12c431ee3fb4c3a9f55ea2b96edf2f091478661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 328
Cache-Control: max-age=134071
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c5870-13a"
Expires: Sun, 18 Dec 2022 11:42:48 GMT
Last-Modified: Fri, 16 Dec 2022 11:37:20 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 233d22ba07bdab34dc3887a3ee9b9af1
cf1729e5aa0eadb04c3abcea484289b7efcaaa1d
e269a42c926a021e62f09031d12c431ee3fb4c3a9f55ea2b96edf2f091478661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 286
Cache-Control: max-age=134028
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 22:28:17 GMT
Etag: "639c5870-13a"
Expires: Sun, 18 Dec 2022 11:42:05 GMT
Last-Modified: Fri, 16 Dec 2022 11:37:20 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x215, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a8c54ae76cb59ff01aa7db465e05573f
904693dd7924a11b52841bc98295618881ad6b43
166e8af8adca384f1ee68949bb463e69545efa4ae7e8b7361f884500b1ce9e06
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=681
expires: Fri, 16 Dec 2022 22:39:38 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11438
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=196&s=-_wZ_2RCUmD6LrQqArGFxlcx
178.250.0.139200 OK 4.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=196&s=-_wZ_2RCUmD6LrQqArGFxlcx
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 196x205, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 408c031c22524a27aa5504099129a64a
f525dd01f41c7695cda5e6faf19438b6be05121c
3bc62b12960c71a8c5587d76f310d3e1585ac2e0ed4704f4e9123258f62d3120
GET /img/img?h=556&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=196&s=-_wZ_2RCUmD6LrQqArGFxlcx HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30712395
expires: Thu, 07 Dec 2023 09:41:33 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4808
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 390x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eecc4b2e106e52cc18195d87fde04306
7f863035d9a2f5a47106679fc0e63c9c49de7a30
6308a0453b6c0a229aff85e92e226176ee87fc3bdc3626ed07b5b336e8d82f15
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=976
expires: Fri, 16 Dec 2022 22:44:33 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13208
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400
178.250.0.139200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x135, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc3fc2c1ef36e93d1410da1cd0199d5f
f615d90828dd6bf875e9609c1a14539a1a5a067d
9050f8e129f3bc31803d31f286a5b243b2c09422eabbc91c0a21710ce096d269
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 16 Dec 2022 22:28:17 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7554
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1cmInw2s5-c25sPfHaJIWw3B4rlnxkkwH_cp02u3FI4elwME3zc0wXaxkP1qRKW9xJh6USdhntdZ_wi4kikPu3bAYbVh2sj9VOxO2Clc2nNM96qfg9B72-0Pg-GPg88h_FbhU79KEyzjsCqJyK-VF7mg=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1cmInw2s5-c25sPfHaJIWw3B4rlnxkkwH_cp02u3FI4elwME3zc0wXaxkP1qRKW9xJh6USdhntdZ_wi4kikPu3bAYbVh2sj9VOxO2Clc2nNM96qfg9B72-0Pg-GPg88h_FbhU79KEyzjsCqJyK-VF7mg=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 3ea5c53c3b9821fc03672703aa4b3e7c
590fd45b786004d7154f56d6df1dd44dbac5610f
01e01661be02499037ecdc94443185bfc45ee1a6be5b956dfdec625bf3e9540d
GET /blogger_img_proxy/ANbyha1cmInw2s5-c25sPfHaJIWw3B4rlnxkkwH_cp02u3FI4elwME3zc0wXaxkP1qRKW9xJh6USdhntdZ_wi4kikPu3bAYbVh2sj9VOxO2Clc2nNM96qfg9B72-0Pg-GPg88h_FbhU79KEyzjsCqJyK-VF7mg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 22:28:17 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2019%2Fpurelux_terrain_360_spot_1.JPG&v=3&w=400&s=RCEvKQIZ8K7eq9V64Wm_-3IU&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2019%2Fpurelux_terrain_360_spot_1.JPG&v=3&w=400&s=RCEvKQIZ8K7eq9V64Wm_-3IU&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 494b08b185e9e0fa61a660b5e6565317
f0b611de5eac07ec0d41efd17a89928352ef8dc3
58402e9ab490ac4fc48b39018912bd25f360ae8c32d6a8fe9d93b0c96834c288
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2019%2Fpurelux_terrain_360_spot_1.JPG&v=3&w=400&s=RCEvKQIZ8K7eq9V64Wm_-3IU&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=263
expires: Fri, 16 Dec 2022 22:32:40 GMT
date: Fri, 16 Dec 2022 22:28:17 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17994
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_S2RII%2Folight_s2r_ii_baton_1.jpg&v=3&w=800&s=ysOxZuKyge_v8rX2m0mGt3lW&b=400
178.250.0.139200 OK 9.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_S2RII%2Folight_s2r_ii_baton_1.jpg&v=3&w=800&s=ysOxZuKyge_v8rX2m0mGt3lW&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x172, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 28e267b6b3b840a2ef287ee88aa8569d
00e3ac32691a1681bb3fae7aa863716ee1070655
fc6e7ec78bc9de7ba089a97db135df77e1b8a17e134040adcc0ebb5913c78482
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_S2RII%2Folight_s2r_ii_baton_1.jpg&v=3&w=800&s=ysOxZuKyge_v8rX2m0mGt3lW&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1778
expires: Fri, 16 Dec 2022 22:57:55 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9944
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x215, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a8c54ae76cb59ff01aa7db465e05573f
904693dd7924a11b52841bc98295618881ad6b43
166e8af8adca384f1ee68949bb463e69545efa4ae7e8b7361f884500b1ce9e06
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=681
expires: Fri, 16 Dec 2022 22:39:38 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11438
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=gfKP6S2sPkATsn0o2il55y9i
178.250.0.139200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=gfKP6S2sPkATsn0o2il55y9i
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 379x104, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash caa83c3bbb7f86262b17390a870e1768
fc5092eec77a1038196cd8b9dc19d5d03189a86d
0e74049c6af981e235d1c94f878e9f70b58638680c53f3bfacf52823e43c7b65
GET /img/img?h=104&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=gfKP6S2sPkATsn0o2il55y9i HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29577691
expires: Fri, 24 Nov 2023 06:29:49 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3698
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_flush_mount_1.jpg&v=3&w=800&s=KwToBYEEdH0-GQgRVc44T1_K&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_flush_mount_1.jpg&v=3&w=800&s=KwToBYEEdH0-GQgRVc44T1_K&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x392, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b60946cbe44d8a1083fa5a1604d0e62
1659b300fcc7f8c0bc3bbb962df6d03788feda88
9ecfb2c02118df8be7375386ad19d9408fc7bb26d621d400de32f88e52b8fd95
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_flush_mount_1.jpg&v=3&w=800&s=KwToBYEEdH0-GQgRVc44T1_K&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 16 Dec 2022 22:28:17 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12616
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x327, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9e5224585739a368e646538ca153738e
6fded7f9f92f8f7bb90eba52188952c238c8b974
618356c80458b2a4d4fdf884de50a5b45cf2c88ecc0d189948dbb85a32e6a0b3
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 16 Dec 2022 22:28:17 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12962
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Heat_9200__Round__22_cm__200W__Ref_50%2Fpurelux_heat_9200_2pcs_2.jpg&v=3&w=800&s=UXQ2ALXFb3aK0x6skMMiue2k&b=400
178.250.0.139200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Heat_9200__Round__22_cm__200W__Ref_50%2Fpurelux_heat_9200_2pcs_2.jpg&v=3&w=800&s=UXQ2ALXFb3aK0x6skMMiue2k&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x237, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2372449094ed8ac6c5752886ff3a870b
bc8028ffc78292b4b86e6f165bf513ef2aac5cc1
9330d96ead07fbd491e8ca0aa58b129f163386408cd69118877507cf959119ac
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Heat_9200__Round__22_cm__200W__Ref_50%2Fpurelux_heat_9200_2pcs_2.jpg&v=3&w=800&s=UXQ2ALXFb3aK0x6skMMiue2k&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1781
expires: Fri, 16 Dec 2022 22:57:58 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 16570
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=800&s=dXvZanhUAVabbzzN_pOW3H3T&b=400
178.250.0.139200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=800&s=dXvZanhUAVabbzzN_pOW3H3T&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x135, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc3fc2c1ef36e93d1410da1cd0199d5f
f615d90828dd6bf875e9609c1a14539a1a5a067d
9050f8e129f3bc31803d31f286a5b243b2c09422eabbc91c0a21710ce096d269
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=800&s=dXvZanhUAVabbzzN_pOW3H3T&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 16 Dec 2022 22:28:17 GMT
date: Fri, 16 Dec 2022 22:28:17 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7554
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FMagnet_mount_Purelux_Pro_Magnet_Horizontal_1_pc%2Fpurelux_pro_magnet_horizontal_2pcs.png&v=3&w=800&s=YXiYNMteinldRd0hdhb3p9E3&b=400
178.250.0.139200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FMagnet_mount_Purelux_Pro_Magnet_Horizontal_1_pc%2Fpurelux_pro_magnet_horizontal_2pcs.png&v=3&w=800&s=YXiYNMteinldRd0hdhb3p9E3&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x326, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8b95e4413a66d63b1cf788c8b6b11b2d
8b4f20f48a792de60794adb07a59e9df95e51603
7112e040942fee4d541c63df808a38cb4478e11334f8145c6a8a5041f5677505
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FMagnet_mount_Purelux_Pro_Magnet_Horizontal_1_pc%2Fpurelux_pro_magnet_horizontal_2pcs.png&v=3&w=800&s=YXiYNMteinldRd0hdhb3p9E3&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1011
expires: Fri, 16 Dec 2022 22:45:09 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7988
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400
178.250.0.139200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x237, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb8478edb6b0e81b10ececacf2803c10
637eb1e8a1a7f67c41d086c74874e6f4c2173805
620896e5216d1d64eb9ca9c4edfca0804553152e50e7fbb829cdcd7f540856c8
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=869
expires: Fri, 16 Dec 2022 22:42:46 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14118
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FDriving_light_Purelux_Black_XSlim_S520_52_cm_2020%2Fpurelux_road_black_xlim_520_set1_1.jpg&v=3&w=800&s=JyF4RN-H9ZgA1s2wh-zmi9y-&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FDriving_light_Purelux_Black_XSlim_S520_52_cm_2020%2Fpurelux_road_black_xlim_520_set1_1.jpg&v=3&w=800&s=JyF4RN-H9ZgA1s2wh-zmi9y-&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3e89e13d398f55d40ea2a9caa23da113
77c757887da94a8c2a2ca407279ed7e6ffd248a1
fee972982ad4ddb91f3597eff979c1be24a2a3d174651845ba8dcaf62560c8bc
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FDriving_light_Purelux_Black_XSlim_S520_52_cm_2020%2Fpurelux_road_black_xlim_520_set1_1.jpg&v=3&w=800&s=JyF4RN-H9ZgA1s2wh-zmi9y-&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=519
expires: Fri, 16 Dec 2022 22:36:56 GMT
date: Fri, 16 Dec 2022 22:28:17 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12692
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=800&s=Ro94wrXs-cBDRmmarWgJVVkz&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=800&s=Ro94wrXs-cBDRmmarWgJVVkz&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 390x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eecc4b2e106e52cc18195d87fde04306
7f863035d9a2f5a47106679fc0e63c9c49de7a30
6308a0453b6c0a229aff85e92e226176ee87fc3bdc3626ed07b5b336e8d82f15
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=800&s=Ro94wrXs-cBDRmmarWgJVVkz&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=975
expires: Fri, 16 Dec 2022 22:44:33 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13208
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400
178.250.0.139200 OK 6.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x365, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 972c733a00c9939933c61f65a9a39e8e
d5b8864161081e987bd9b9522131f3c9cb51ee94
c2491f2951f5a1c0ea3bbf2708d1a411ff6adb686a29de0d1f6159c73bb3fba3
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=267
expires: Fri, 16 Dec 2022 22:32:44 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6196
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Road_Curve_C550__Curved__55_cm__120W__Ref_40%2Fpurelux_road_curve_c550_kit_2_1.jpg&v=3&w=400&s=j7ILwNj8USEeWIcKf2HJL1io&b=400
178.250.0.139200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Road_Curve_C550__Curved__55_cm__120W__Ref_40%2Fpurelux_road_curve_c550_kit_2_1.jpg&v=3&w=400&s=j7ILwNj8USEeWIcKf2HJL1io&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 395x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a76c5ae6656cf089cba4734b849b908
09e706f23ca653f4bedfb26bf895ab2045aa40fe
4b0f205d3607dbe8ef6dfaf22eefd82bbd8d36b7a084584f7f187c81d2598b47
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Road_Curve_C550__Curved__55_cm__120W__Ref_40%2Fpurelux_road_curve_c550_kit_2_1.jpg&v=3&w=400&s=j7ILwNj8USEeWIcKf2HJL1io&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 16 Dec 2022 22:28:17 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11560
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FWiring_harness_Purelux_2_output%2Fpurelux_wiring_harness_dt_1x.jpg&v=3&w=400&s=WTPHrEjnqLzctphjtj5wi-eq&b=400
178.250.0.139200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FWiring_harness_Purelux_2_output%2Fpurelux_wiring_harness_dt_1x.jpg&v=3&w=400&s=WTPHrEjnqLzctphjtj5wi-eq&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 369x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 513bcaa460b8a8069e02d2acc7d140a5
b3a8c3e14aa2490b164720cdd791ad16d31e8ef2
c458d148ca0f4b01ca74e0102ad3ab9753d616d67757d8b30064a35ce37e5694
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FWiring_harness_Purelux_2_output%2Fpurelux_wiring_harness_dt_1x.jpg&v=3&w=400&s=WTPHrEjnqLzctphjtj5wi-eq&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1512
expires: Fri, 16 Dec 2022 22:53:29 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13662
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=LLxt6S3Xi6tixH6M-8P_c2-a
178.250.0.139200 OK 2.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=LLxt6S3Xi6tixH6M-8P_c2-a
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 277x76, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d722919cda3bb492e9ef7714e68943b7
4de9fdc4ef79e25e54ebbd4ec42e44e7f86b8219
371398bf3aaed5b7629648adf661138e2705442f0543abca67c9ba3ae510a62c
GET /img/img?h=76&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2Ff1ab5b17de014b0097e5a6aaa2110286_valostore_logo.jpg&v=3&w=596&s=LLxt6S3Xi6tixH6M-8P_c2-a HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29577691
expires: Fri, 24 Nov 2023 06:29:49 GMT
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2766
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 21:48:03 GMT
expires: Fri, 15 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 88814
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 16:40:43 GMT
expires: Fri, 15 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 107254
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400
178.250.0.139304 Not Modified 0 B URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400
IP 178.250.0.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_1_1.jpeg&v=3&w=400&s=oq6SYVucXa86LfvhsPxuVId5&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Wed, 4 Jun 2008 06:06:06 GMT
TE: trailers
HTTP/2 304 Not Modified
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9455
Expires: Sat, 17 Dec 2022 01:05:52 GMT
Date: Fri, 16 Dec 2022 22:28:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9455
Expires: Sat, 17 Dec 2022 01:05:52 GMT
Date: Fri, 16 Dec 2022 22:28:17 GMT
Connection: keep-alive
ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA&u=%7CDjzSwRpj81nwrwmeo6IASp4B4%2BJr8x%2Fquw3A8QgYt3g%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD9qFQZVNz0gdA2xfz9nbXpHaAtV7mnkFRXTNwbNfi5phphRGrjKTP5jpTO-Pi_YABU1QuKhC5qdyRdX3_WjGzRRw8KVIyO7bqWxwM3E5kocyVUkExSCu-hcMfegqm_p2ppvn8o7UDsZpfMyHnaXIWD4076YX5Bxf3eVhwoFV2HpGxAYJElvDGCPe27ESLMkqBhs1Y8lP1rlBucig_B_yvWB_8dHiPMI74WXsl-QMcbUuDMMD55F9Rpb8OT8foQ0kN4gsKveiPT03q0ulPm9w4z-Owmu2DIFRLdCDgFoRYfqKQgzQZg_IcED1WIggYXRBFe3wYiYZudR_0p8Tzd8ps-OvMXXpELLX0XXtQEqvshToatnhCx1WFNZSL7sJ516mRwLeHDpJUvtcLGUFrf23lx-JRgTf5BJjhwPKEZBg0KVT9q0sw6b3q2ZAK_n6tb9KkjlhO0rJwVH_a2zyT3DboKSlXVzXaJwuc_Ktrh9fjqxaRs-Yn3D-7hMp9Yn0vxDb3XrBzjACuStFLVIJe1qvQiIo7OjQwZPv6NcT3PUA5Hi_nEvcSVE7Afc&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC8OUeAPGcY_b9FY77ywWAs7b4Bcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCiHIF3NHKsT6oAwGqBIYCT9BTGB201ZCCbnYzbQ5R1L96K6jwQARjh27Co3MLHxx4ZRqlt8uw2lW8zzNeB7G1n-wRjPO4PpHPAkQ3k6iOs_ulkY_UBHIcWCmAgLjqdNTqta9KT-hv7kIQTQnDU50sWpSBvRCe6vFUBPO5CgqoP7XMlI8FaGkib3bW08oC3-cdxyQssCa0cMP2ukxL5z1PC5jJoyVRs73II_whjLzoOAyqd9oY2z8yHkxjgsd11XndBGzO1A5_bxwVbMrRRN9bGow6h9m8S1vyDy-6dZXKJY7i7DKjVETdCH08N-ehjXw-HHae_23xX2gMyMLmmqj2qt8xulTkJRzYMNA2pXctoJwgWinsp4AGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1SUd6VvJCObGMEvkzmf1cNKutr4A%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 57 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA&u=%7CDjzSwRpj81nwrwmeo6IASp4B4%2BJr8x%2Fquw3A8QgYt3g%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD9qFQZVNz0gdA2xfz9nbXpHaAtV7mnkFRXTNwbNfi5phphRGrjKTP5jpTO-Pi_YABU1QuKhC5qdyRdX3_WjGzRRw8KVIyO7bqWxwM3E5kocyVUkExSCu-hcMfegqm_p2ppvn8o7UDsZpfMyHnaXIWD4076YX5Bxf3eVhwoFV2HpGxAYJElvDGCPe27ESLMkqBhs1Y8lP1rlBucig_B_yvWB_8dHiPMI74WXsl-QMcbUuDMMD55F9Rpb8OT8foQ0kN4gsKveiPT03q0ulPm9w4z-Owmu2DIFRLdCDgFoRYfqKQgzQZg_IcED1WIggYXRBFe3wYiYZudR_0p8Tzd8ps-OvMXXpELLX0XXtQEqvshToatnhCx1WFNZSL7sJ516mRwLeHDpJUvtcLGUFrf23lx-JRgTf5BJjhwPKEZBg0KVT9q0sw6b3q2ZAK_n6tb9KkjlhO0rJwVH_a2zyT3DboKSlXVzXaJwuc_Ktrh9fjqxaRs-Yn3D-7hMp9Yn0vxDb3XrBzjACuStFLVIJe1qvQiIo7OjQwZPv6NcT3PUA5Hi_nEvcSVE7Afc&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC8OUeAPGcY_b9FY77ywWAs7b4Bcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCiHIF3NHKsT6oAwGqBIYCT9BTGB201ZCCbnYzbQ5R1L96K6jwQARjh27Co3MLHxx4ZRqlt8uw2lW8zzNeB7G1n-wRjPO4PpHPAkQ3k6iOs_ulkY_UBHIcWCmAgLjqdNTqta9KT-hv7kIQTQnDU50sWpSBvRCe6vFUBPO5CgqoP7XMlI8FaGkib3bW08oC3-cdxyQssCa0cMP2ukxL5z1PC5jJoyVRs73II_whjLzoOAyqd9oY2z8yHkxjgsd11XndBGzO1A5_bxwVbMrRRN9bGow6h9m8S1vyDy-6dZXKJY7i7DKjVETdCH08N-ehjXw-HHae_23xX2gMyMLmmqj2qt8xulTkJRzYMNA2pXctoJwgWinsp4AGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1SUd6VvJCObGMEvkzmf1cNKutr4A%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (34748), with CRLF, LF line terminators
Hash 04618ea1980464de2d1dd775261cab02
fefa2ee97f2e8083a093f10de2daa8cf7520cbff
a045e00dfbaab0462bd82f556a380b8c6613e12efc64979299a92e17bcd31a06
GET /delivery/r/afr.php?z=Y5zxAAAFfvYKsv2OAA2ZgBTXqc45HPP7oKQ1EA&u=%7CDjzSwRpj81nwrwmeo6IASp4B4%2BJr8x%2Fquw3A8QgYt3g%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD9qFQZVNz0gdA2xfz9nbXpHaAtV7mnkFRXTNwbNfi5phphRGrjKTP5jpTO-Pi_YABU1QuKhC5qdyRdX3_WjGzRRw8KVIyO7bqWxwM3E5kocyVUkExSCu-hcMfegqm_p2ppvn8o7UDsZpfMyHnaXIWD4076YX5Bxf3eVhwoFV2HpGxAYJElvDGCPe27ESLMkqBhs1Y8lP1rlBucig_B_yvWB_8dHiPMI74WXsl-QMcbUuDMMD55F9Rpb8OT8foQ0kN4gsKveiPT03q0ulPm9w4z-Owmu2DIFRLdCDgFoRYfqKQgzQZg_IcED1WIggYXRBFe3wYiYZudR_0p8Tzd8ps-OvMXXpELLX0XXtQEqvshToatnhCx1WFNZSL7sJ516mRwLeHDpJUvtcLGUFrf23lx-JRgTf5BJjhwPKEZBg0KVT9q0sw6b3q2ZAK_n6tb9KkjlhO0rJwVH_a2zyT3DboKSlXVzXaJwuc_Ktrh9fjqxaRs-Yn3D-7hMp9Yn0vxDb3XrBzjACuStFLVIJe1qvQiIo7OjQwZPv6NcT3PUA5Hi_nEvcSVE7Afc&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC8OUeAPGcY_b9FY77ywWAs7b4Bcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCiHIF3NHKsT6oAwGqBIYCT9BTGB201ZCCbnYzbQ5R1L96K6jwQARjh27Co3MLHxx4ZRqlt8uw2lW8zzNeB7G1n-wRjPO4PpHPAkQ3k6iOs_ulkY_UBHIcWCmAgLjqdNTqta9KT-hv7kIQTQnDU50sWpSBvRCe6vFUBPO5CgqoP7XMlI8FaGkib3bW08oC3-cdxyQssCa0cMP2ukxL5z1PC5jJoyVRs73II_whjLzoOAyqd9oY2z8yHkxjgsd11XndBGzO1A5_bxwVbMrRRN9bGow6h9m8S1vyDy-6dZXKJY7i7DKjVETdCH08N-ehjXw-HHae_23xX2gMyMLmmqj2qt8xulTkJRzYMNA2pXctoJwgWinsp4AGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1SUd6VvJCObGMEvkzmf1cNKutr4A%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:16 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 91746312
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dce7a87ac0852f838007018af2e83cb5
379f7844a18284958ec0250cc45f2c91ac1ddfcf
31a5191700b9d5c2e471c0e6db15d43f1804b61c6a0867340e8001c32a0dabb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: f8f1832c-4269-4c4b-83c0-4c2d8c2fdd8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7GLSIAMFd4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-4c54f9704a32da245a90ab0d;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CrmrekFQeOTjAkIBgbGSNGN66ysdrtGK1uuzJV-b6nB1WFrOrtf1OA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
etag: "379f7844a18284958ec0250cc45f2c91ac1ddfcf"
content-type: image/jpeg
age: 2878
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2c81b67adbfb8bf94378229e1edcfd8
4f8f964aa0b97794efa025d7dab09e802205ab26
1d2eba6d15e288a1ca66f0f3c6c055d7e390323bd0a8c9030ab528499b6503cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab6b11b4-c340-467a-968f-ff8dff9eae90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5851
x-amzn-requestid: 80799fe1-b9bf-4f9d-a5d0-18caae663a7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC5GeFIAMF_SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-3db2e2d50b3a2a6865b56e3e;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YLsxuwuas79rrcMWXiFPhFxtR9qQhVp763LFbrYsCW6L_R8ZiWr2jA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:28 GMT
age: 2869
etag: "4f8f964aa0b97794efa025d7dab09e802205ab26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3e4365-26b7-4a94-a43a-aa8b34ec9d30.jpeg
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3e4365-26b7-4a94-a43a-aa8b34ec9d30.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b10096b589872abc03d6befdaa8d08c
3ce5ecf8b36fdf9e7f537f9d0d9010239b00c633
d8019629d58b20fdd78b1e0c2bb5e55ed9bb4f22c9b103e92958b25ef5400ac1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3e4365-26b7-4a94-a43a-aa8b34ec9d30.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3054
x-amzn-requestid: 7a937c11-1609-4327-b74b-4ae36b361061
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6yO9GvsoAMF-GA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639430c5-16b31f3d6da3cefd613053a3;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:09:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PzIDVxWEWPcBWVj7qoHzJTRzTRIAdi2VOs3lcF5OEzl-LxfUs2X3Fg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 13:53:08 GMT
age: 30909
etag: "3ce5ecf8b36fdf9e7f537f9d0d9010239b00c633"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51ac90a-c2c5-496b-b25c-c63f50725d46.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51ac90a-c2c5-496b-b25c-c63f50725d46.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f07a84becb488cb02572fe128497847b
980c7c7808e8df6ba78b8f2567640b7d8f8e05a1
586d4afd9c889128c22ba61144df743d70a65b7b75b07a96f2cda821db1503af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51ac90a-c2c5-496b-b25c-c63f50725d46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3694
x-amzn-requestid: 49e877d8-c2cd-4497-8658-385caa25a6ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjEbHJNIAMF8Mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce54f-0c9c4b5d18502bdd5b3c9be9;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P_b17hLfntWIkfYHVfgiAvNgG0iZKOqFGLn8Tm56gD8E4NY9ftPYiQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
age: 2878
etag: "980c7c7808e8df6ba78b8f2567640b7d8f8e05a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbbbb8f-0eab-4f38-b7e0-ab00a145f982.png
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbbbb8f-0eab-4f38-b7e0-ab00a145f982.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62219550410b7dbb13b65fba676108a0
3c7b81028588d85befc44634efc9ee39f02e733b
d1cc51b3c3feea95db29db4350c70dec212a6b8ae3af50b079700e412b3b9173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbbbb8f-0eab-4f38-b7e0-ab00a145f982.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4302
x-amzn-requestid: feeb4cdf-bf8d-4869-b838-e927add51177
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHh8IG3-oAMF6Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639949e7-098a41870006f6ce4b976be4;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 03:58:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z6Rp-yQ2Z6P89fhudu0u6MXeTZhIqRKf0lKrapW5-RvximEu0rZztw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:46:58 GMT
age: 2479
etag: "3c7b81028588d85befc44634efc9ee39f02e733b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 6.5 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
Hash 90669603829c8b207879dad27d92ee6c
505b9e0d93beb948526d5cc4bada5751340c8d55
d03a6c7f00afb7d9aff2004b1373a89c48e47c665d0bbaefaf3de23f1f611fda
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:16 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:17 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=-5QfZpJQosmtLdw2GZ5AHCqbDWjCNSATI4wRQSvqozIIvv_fxvwpQlefb6vKMPs3CfXRTECYrgCaDv1_QByb79y2aXL5I8DTeXdPDWrtv-zhMhxAK3151IM3XNY7SSmK7womg9j0UfQktnDdEDszVAKwFsXMQJmFRxPDUqc3HKdep1wGUxoZA5fVMP-RyYD1ZA6yZYWTgD8aT6JFoaJ0f6G8GB5jSGJTG_l5QTKqGAibaGpqTJm-jfgmS1F-xmc_j8u967FeC_rcB2mWsYeJWo6BLNDNSdTsaIsZJwVCLCEx6MM-SzFm0FepGqhMKXFb-TSC0u1tTa2yUH_I09tnY6JXOTRteDq8HINzADpfy7Ia68kJvR442JfmDfMUEf1tClm3UCnjAWP6bM-yyPxlxu4k4y6g6hFrL7Udvn0iItoPNO-B
178.250.0.160200 OK 12 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=-5QfZpJQosmtLdw2GZ5AHCqbDWjCNSATI4wRQSvqozIIvv_fxvwpQlefb6vKMPs3CfXRTECYrgCaDv1_QByb79y2aXL5I8DTeXdPDWrtv-zhMhxAK3151IM3XNY7SSmK7womg9j0UfQktnDdEDszVAKwFsXMQJmFRxPDUqc3HKdep1wGUxoZA5fVMP-RyYD1ZA6yZYWTgD8aT6JFoaJ0f6G8GB5jSGJTG_l5QTKqGAibaGpqTJm-jfgmS1F-xmc_j8u967FeC_rcB2mWsYeJWo6BLNDNSdTsaIsZJwVCLCEx6MM-SzFm0FepGqhMKXFb-TSC0u1tTa2yUH_I09tnY6JXOTRteDq8HINzADpfy7Ia68kJvR442JfmDfMUEf1tClm3UCnjAWP6bM-yyPxlxu4k4y6g6hFrL7Udvn0iItoPNO-B
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 63d581eb81ff3a25967b599700de289a
6c0fe403b74bc442ab5fd299ddfd83c0bbe87adb
a39429f5a26e0fc566130661e1dbd2e8df6937ba9741634e6fa71cfa835f171d
GET /delivery/lg.php?cppv=3&cpp=-5QfZpJQosmtLdw2GZ5AHCqbDWjCNSATI4wRQSvqozIIvv_fxvwpQlefb6vKMPs3CfXRTECYrgCaDv1_QByb79y2aXL5I8DTeXdPDWrtv-zhMhxAK3151IM3XNY7SSmK7womg9j0UfQktnDdEDszVAKwFsXMQJmFRxPDUqc3HKdep1wGUxoZA5fVMP-RyYD1ZA6yZYWTgD8aT6JFoaJ0f6G8GB5jSGJTG_l5QTKqGAibaGpqTJm-jfgmS1F-xmc_j8u967FeC_rcB2mWsYeJWo6BLNDNSdTsaIsZJwVCLCEx6MM-SzFm0FepGqhMKXFb-TSC0u1tTa2yUH_I09tnY6JXOTRteDq8HINzADpfy7Ia68kJvR442JfmDfMUEf1tClm3UCnjAWP6bM-yyPxlxu4k4y6g6hFrL7Udvn0iItoPNO-B HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3107330
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sayac.onlinewebstats.com/logo/s.gif
217.195.203.216200 OK 1.1 kB URL HTTP/1.1 sayac.onlinewebstats.com/logo/s.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 90 x 30\012- data
Hash 86b20fb84a3c460bb5b6f28e1fc58a8f
be37c58c27b312e1b8445d446d5e9008843fc8d0
16c7fd0e2962fbb0f79e261c14b3e89f71af00413c77ce6c284c2aabdad557f3
GET /logo/s.gif HTTP/1.1
Host: sayac.onlinewebstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 22:28:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 17 Aug 2006 22:15:44 GMT
ETag: "4a6-41b3dfc23c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1127
Connection: close
Content-Type: image/gif
csm.eu.criteo.net/all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:18 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:18 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=Z8JI0_RWAlWofwGzQRGmjXLuVjo0Qu_si1whLL585vdAQaI-gax8bNTW8XB0nQPG8EFCkTzUumQOUXOmY5c6ARd7HLjoDyD8JFNbAPl8SdZLHfKZeTmsiPGJZs7C-H125pImkXOteFt5wiNvZBLxHZFY8kQCkQFNXe1_yWwqXEQDv6AuZctZVGNHTBpbhBBnMCFhQKl4wgfOx-H4zwUqLSNh_Us6-YedDPRo_vAyFBw9EYV6aoyObdhay7aR-dWMglTA1w&sds=2&rev=83933&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:18 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=M30NDZJQosmtLdw2GZ5AHCqbDWjJ1wEpml1m5bkVGZDx3NnPi1Ju5ZB3cwp2v-iw-ZEaoGfkE-XIFwEa519IaxN3grmDi7M0aWV8J50WKCEgrsbVnmem4Gsg_9bKrmaVxEfGMQGNAesyIs3nCqlCIS3l61clbsmhrndr1KfywlHGR7rZVcu1RqvuSpyn7TR7OUg1qoBCm86ILKBrAeMXrh1S3jIpZN0Dmz36sVfUzbvLHwbXa5Vh1dM7Vj9czQlBTg5-dMsNubNo1fkFndR2j_y8sGtTYnK5VfBFn0Eg2z6XpzwRQAWN0NsJLI1ohZ496dWKkB5bNbZMazeSqJbLeE4KJi3knCmsTy3qC3DLeIN7naZiMy2E-d40c2NVS0JptQoKZpS5dvCm2EKFpcn88e3n51qgwXaNrdr-rPzlo8zPw-ul
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=M30NDZJQosmtLdw2GZ5AHCqbDWjJ1wEpml1m5bkVGZDx3NnPi1Ju5ZB3cwp2v-iw-ZEaoGfkE-XIFwEa519IaxN3grmDi7M0aWV8J50WKCEgrsbVnmem4Gsg_9bKrmaVxEfGMQGNAesyIs3nCqlCIS3l61clbsmhrndr1KfywlHGR7rZVcu1RqvuSpyn7TR7OUg1qoBCm86ILKBrAeMXrh1S3jIpZN0Dmz36sVfUzbvLHwbXa5Vh1dM7Vj9czQlBTg5-dMsNubNo1fkFndR2j_y8sGtTYnK5VfBFn0Eg2z6XpzwRQAWN0NsJLI1ohZ496dWKkB5bNbZMazeSqJbLeE4KJi3knCmsTy3qC3DLeIN7naZiMy2E-d40c2NVS0JptQoKZpS5dvCm2EKFpcn88e3n51qgwXaNrdr-rPzlo8zPw-ul
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=M30NDZJQosmtLdw2GZ5AHCqbDWjJ1wEpml1m5bkVGZDx3NnPi1Ju5ZB3cwp2v-iw-ZEaoGfkE-XIFwEa519IaxN3grmDi7M0aWV8J50WKCEgrsbVnmem4Gsg_9bKrmaVxEfGMQGNAesyIs3nCqlCIS3l61clbsmhrndr1KfywlHGR7rZVcu1RqvuSpyn7TR7OUg1qoBCm86ILKBrAeMXrh1S3jIpZN0Dmz36sVfUzbvLHwbXa5Vh1dM7Vj9czQlBTg5-dMsNubNo1fkFndR2j_y8sGtTYnK5VfBFn0Eg2z6XpzwRQAWN0NsJLI1ohZ496dWKkB5bNbZMazeSqJbLeE4KJi3knCmsTy3qC3DLeIN7naZiMy2E-d40c2NVS0JptQoKZpS5dvCm2EKFpcn88e3n51qgwXaNrdr-rPzlo8zPw-ul HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3490828
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.batmangazetesi.com/images/yazarlar/13349252327849.JPG
104.21.55.133500 Internal Server Error 0 B URL HTTP/2 www.batmangazetesi.com/images/yazarlar/13349252327849.JPG
IP 104.21.55.133:0
GET /images/yazarlar/13349252327849.JPG HTTP/1.1
Host: www.batmangazetesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bookworm-bilgeadam.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 500 Internal Server Error
date: Fri, 16 Dec 2022 22:28:16 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
vary: User-Agent, Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DWr727lF5o4E2vb%2BySmnuXXsIK%2F0W735umbQLp9g8tSnMwxRFPvBoAgIusqIffNCOLpoKCK9kgoFImxSizNBCgR2WGHdI9%2BrA1bdlXV2ET08%2BpTUdIUMfbCOuI09BcxPyVytKODjmNp6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77aad9e21eccb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.blogger.com/comment/frame/7477769263351366370?po=3184861489672343414&hl=tr&blogspotRpcToken=328375
216.58.207.233200 OK 0 B URL HTTP/2 www.blogger.com/comment/frame/7477769263351366370?po=3184861489672343414&hl=tr&blogspotRpcToken=328375
IP 216.58.207.233:0
GET /comment/frame/7477769263351366370?po=3184861489672343414&hl=tr&blogspotRpcToken=328375 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 22:28:15 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-EreCzKFiHNdDhnAl0P1n7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/BloggerCommentUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=NcjMos8jYlsAAUvCrY2HsCweOGO-oybeLcIiwSE9i9xrNO9QaPcfUGOM3zfFvPmW9TwcdFHgiDsXQhuLhqED5YqfqtqxIY1ptn2hBJ8Ht-_k_Yy41NtPrVn4f8OOM-y7bgqwBp-Vqgra-P8vCuF6goVjzAzfAKqaI4gVOjPYG2c; expires=Sat, 17-Jun-2023 22:28:15 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Mon, 11 Dec 2023 22:28:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA&u=%7CDjzSwRpj81ncroE4gcp%2B6IxSTt3TEfa0eA%2Bn9GeICkA%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08CvvVI5BJNsqtOpVBePTpF3x8DmmhiaIWO0AQfox_FZDMzRj3kGVQS_GgrfAyXRD8kIow4WeZrQ1-Lwl4mI7Rrq2PVD1hn6pOYjvSuFPhnrzMvIVZiawGNYMypLU9y05bApgbOmO8VT79ih2od4wfYIpo43q_xs50nt5JV1ncD-QI65D3duQT67Y13SFY1KakqIT2Qci-x0REMLSpODKfuphlMHnHf9hMTxmNYiZbHQjElyikt1xw0y9hVDo-IBvxq4wVgo3EGXlOjB0uUsxCq5m270eHndboxC3XAtLpScM3NwkRMiHqOdNHcyiAOlG8yJrekup6Bym8RmVhwumOQ2rS-HnZsORbvbYYqVB_iMcNTZKWifmU_3fOy1a-Z0FApGRgHpc9z65CRyM4niguX48QNZnk9hPnf5NSQlXDVmAcvhTYG5UZS0cJAHmt5N9gKcXreXV5PKYhWuU6AVQYjpKhlGdk8aDSIquPEQFBjOXpDkBK-KZQPSLwdmLYKkB--E-rFe8VrslMN8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbYfpAPGcY7erFYPEywXVpJ7YCMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCDBIuFgfMsT6oAwGqBIACT9DIImai9PgdwRW0T0NfyPWg-_Xf56vceKJ59hyJnF-k1Yxn5lVDS7dTamaY6XYRQdrRYU0y_dXVwETx-6_cKjSuoQrPoVb7k8isrgd1-dMtuBHmsBkWkm2_nypKHzjp6Xibnadc2s39c29VqLi1Rky64Hgcp1TyItY376HHidNf9YcGhd4IMiDKdwkMG8bFM_hMi0tu8M2Vve9NB82F6x4siHUSgqo0IfJckD_R7D1JOmYKzNgRoJjbcb_MHbySlc2Boqi1Njej_jUF_ecH6dqSS9-NftjLBnywJ2GixgPOGfIDq_GFw2u7LDpiZ_TS6ir9lXHyrC84BUrBy2Vb6YAGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0jOXTPrvJy4puMpw5l7_l6-F3_rg%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA&u=%7CDjzSwRpj81ncroE4gcp%2B6IxSTt3TEfa0eA%2Bn9GeICkA%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08CvvVI5BJNsqtOpVBePTpF3x8DmmhiaIWO0AQfox_FZDMzRj3kGVQS_GgrfAyXRD8kIow4WeZrQ1-Lwl4mI7Rrq2PVD1hn6pOYjvSuFPhnrzMvIVZiawGNYMypLU9y05bApgbOmO8VT79ih2od4wfYIpo43q_xs50nt5JV1ncD-QI65D3duQT67Y13SFY1KakqIT2Qci-x0REMLSpODKfuphlMHnHf9hMTxmNYiZbHQjElyikt1xw0y9hVDo-IBvxq4wVgo3EGXlOjB0uUsxCq5m270eHndboxC3XAtLpScM3NwkRMiHqOdNHcyiAOlG8yJrekup6Bym8RmVhwumOQ2rS-HnZsORbvbYYqVB_iMcNTZKWifmU_3fOy1a-Z0FApGRgHpc9z65CRyM4niguX48QNZnk9hPnf5NSQlXDVmAcvhTYG5UZS0cJAHmt5N9gKcXreXV5PKYhWuU6AVQYjpKhlGdk8aDSIquPEQFBjOXpDkBK-KZQPSLwdmLYKkB--E-rFe8VrslMN8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbYfpAPGcY7erFYPEywXVpJ7YCMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCDBIuFgfMsT6oAwGqBIACT9DIImai9PgdwRW0T0NfyPWg-_Xf56vceKJ59hyJnF-k1Yxn5lVDS7dTamaY6XYRQdrRYU0y_dXVwETx-6_cKjSuoQrPoVb7k8isrgd1-dMtuBHmsBkWkm2_nypKHzjp6Xibnadc2s39c29VqLi1Rky64Hgcp1TyItY376HHidNf9YcGhd4IMiDKdwkMG8bFM_hMi0tu8M2Vve9NB82F6x4siHUSgqo0IfJckD_R7D1JOmYKzNgRoJjbcb_MHbySlc2Boqi1Njej_jUF_ecH6dqSS9-NftjLBnywJ2GixgPOGfIDq_GFw2u7LDpiZ_TS6ir9lXHyrC84BUrBy2Vb6YAGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0jOXTPrvJy4puMpw5l7_l6-F3_rg%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y5zxAAAFVbcKsuIDAAeSVbI2vz4WKyt1-gBhJA&u=%7CDjzSwRpj81ncroE4gcp%2B6IxSTt3TEfa0eA%2Bn9GeICkA%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08CvvVI5BJNsqtOpVBePTpF3x8DmmhiaIWO0AQfox_FZDMzRj3kGVQS_GgrfAyXRD8kIow4WeZrQ1-Lwl4mI7Rrq2PVD1hn6pOYjvSuFPhnrzMvIVZiawGNYMypLU9y05bApgbOmO8VT79ih2od4wfYIpo43q_xs50nt5JV1ncD-QI65D3duQT67Y13SFY1KakqIT2Qci-x0REMLSpODKfuphlMHnHf9hMTxmNYiZbHQjElyikt1xw0y9hVDo-IBvxq4wVgo3EGXlOjB0uUsxCq5m270eHndboxC3XAtLpScM3NwkRMiHqOdNHcyiAOlG8yJrekup6Bym8RmVhwumOQ2rS-HnZsORbvbYYqVB_iMcNTZKWifmU_3fOy1a-Z0FApGRgHpc9z65CRyM4niguX48QNZnk9hPnf5NSQlXDVmAcvhTYG5UZS0cJAHmt5N9gKcXreXV5PKYhWuU6AVQYjpKhlGdk8aDSIquPEQFBjOXpDkBK-KZQPSLwdmLYKkB--E-rFe8VrslMN8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbYfpAPGcY7erFYPEywXVpJ7YCMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCDBIuFgfMsT6oAwGqBIACT9DIImai9PgdwRW0T0NfyPWg-_Xf56vceKJ59hyJnF-k1Yxn5lVDS7dTamaY6XYRQdrRYU0y_dXVwETx-6_cKjSuoQrPoVb7k8isrgd1-dMtuBHmsBkWkm2_nypKHzjp6Xibnadc2s39c29VqLi1Rky64Hgcp1TyItY376HHidNf9YcGhd4IMiDKdwkMG8bFM_hMi0tu8M2Vve9NB82F6x4siHUSgqo0IfJckD_R7D1JOmYKzNgRoJjbcb_MHbySlc2Boqi1Njej_jUF_ecH6dqSS9-NftjLBnywJ2GixgPOGfIDq_GFw2u7LDpiZ_TS6ir9lXHyrC84BUrBy2Vb6YAGmbyzraL5uIExoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0jOXTPrvJy4puMpw5l7_l6-F3_rg%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:16 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=zSPv4PRWAlWofwGzftR6fbrxc6T7bRlMhcXGT3PBWbgQcex2D2xNyUT_cefVd2LOl2bVX13zjNbBs5xFeQGfVwWA-v8KMuObhL6IEGPywUKKNkKGyPfBYyv9Ypv6cPz36438JWo_tbGruwSw2pyD_fsVnC8EVqGZgSZK_bBXdJtViGr07OChUPTnnBJMEY77RI7xoAFQ32KvJ-hRnT0pEhW4MgE5BLPzBjCLNYRnIROss1WwABjFwG-sTR3sB3JqqZ5oQzugw3aOAInM"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 81764839
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w&u=%7CDjzSwRpj81kXtpzllMM2Ms3yKB2xren9F8wSPLi91cc%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08Cvv_7xsebT9t6USbInQXTEMsQT4Inl5iIjfX9b8B5zPzgfQT2l55YZ5nba9iE4V8P5o8jFFnkE9vvmNurEjkgwDDIfRRay61TmNwJRs5i4x_4-T6CLVji57bEd9Ed6cDAokodQIHUOCunuw_EwsZe1dfwM2YT8xPQ4sADjQbg2A-hoMfafrYEMpRdEvuDAnoUkhneESRoRSW6UKRhA5n8Y7ZmqWvD3r4mn2h2fPT0nxHFp7IMWIQfVUZyV2AnAtD87d8bcxCRgT7LKaKR3I_IAh_KI3W5XslJy2RlcbBwQSzgUVJqwh1xsk55LWDLye4BDDuK35K0NatbpP5EWSajp4BR2nmfDCXF1ctKFT4QDJ9HtcGsvPZkWBCuUAeGarw-vRCv8dtJQnKTje2muBlGHrDNqKrcylSgCq021SJgiZzfUiB-xkTk2mlk4JFEFQIvvr_6mVcPqtYs78ML7Pt922RJMHkBO8fXiEAlQTYeeHGwVj_yg1tf4rXqrjClRHfvgYNGk0JrkJL1U&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCILxsAPGcY9aTEJTOygX1iqhAyZ7SsVzVnZH3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIMEi4WB8yxPqgDAaoEgwJP0E77-vD_3TU4IAFGfqVmEU930jy2zYZEv5c1TxD7DD2neUjav1g9FnQCwrIgo-jSJj-AVXzP7oBx5a_X0vI2rKXiycw7DyWZTAJ_QBtMSv3Unygq_s-AYWewiveABwNVlsbZfCs7tfqpSJmeXt0r5qYrRrUEE5NpHjmn0dt_hVCRLijix_yMfD51wlBbEUC3Wqt2Mfb9heA9bAxTaWQ8aL1Khi6u5QxPYLHyJuQ3S5UPk4kCQV9Ze-OgGrFxx_xptD3FTygv_Jlr0tk31saIw-zTn8i2JextGjIbvB30WOJS1MygYMVEt_Tfo5vm3oPBtBVxHnVLH-bz4CEpEhbs71GfgAaZvLOtovm4gTGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1_rvaHsm3nH0dESlyPZaBrC3itBA%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w&u=%7CDjzSwRpj81kXtpzllMM2Ms3yKB2xren9F8wSPLi91cc%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08Cvv_7xsebT9t6USbInQXTEMsQT4Inl5iIjfX9b8B5zPzgfQT2l55YZ5nba9iE4V8P5o8jFFnkE9vvmNurEjkgwDDIfRRay61TmNwJRs5i4x_4-T6CLVji57bEd9Ed6cDAokodQIHUOCunuw_EwsZe1dfwM2YT8xPQ4sADjQbg2A-hoMfafrYEMpRdEvuDAnoUkhneESRoRSW6UKRhA5n8Y7ZmqWvD3r4mn2h2fPT0nxHFp7IMWIQfVUZyV2AnAtD87d8bcxCRgT7LKaKR3I_IAh_KI3W5XslJy2RlcbBwQSzgUVJqwh1xsk55LWDLye4BDDuK35K0NatbpP5EWSajp4BR2nmfDCXF1ctKFT4QDJ9HtcGsvPZkWBCuUAeGarw-vRCv8dtJQnKTje2muBlGHrDNqKrcylSgCq021SJgiZzfUiB-xkTk2mlk4JFEFQIvvr_6mVcPqtYs78ML7Pt922RJMHkBO8fXiEAlQTYeeHGwVj_yg1tf4rXqrjClRHfvgYNGk0JrkJL1U&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCILxsAPGcY9aTEJTOygX1iqhAyZ7SsVzVnZH3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIMEi4WB8yxPqgDAaoEgwJP0E77-vD_3TU4IAFGfqVmEU930jy2zYZEv5c1TxD7DD2neUjav1g9FnQCwrIgo-jSJj-AVXzP7oBx5a_X0vI2rKXiycw7DyWZTAJ_QBtMSv3Unygq_s-AYWewiveABwNVlsbZfCs7tfqpSJmeXt0r5qYrRrUEE5NpHjmn0dt_hVCRLijix_yMfD51wlBbEUC3Wqt2Mfb9heA9bAxTaWQ8aL1Khi6u5QxPYLHyJuQ3S5UPk4kCQV9Ze-OgGrFxx_xptD3FTygv_Jlr0tk31saIw-zTn8i2JextGjIbvB30WOJS1MygYMVEt_Tfo5vm3oPBtBVxHnVLH-bz4CEpEhbs71GfgAaZvLOtovm4gTGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1_rvaHsm3nH0dESlyPZaBrC3itBA%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y5zxAAAECdYKsqcUAAoFdV85EezbKxIPmo7f5w&u=%7CDjzSwRpj81kXtpzllMM2Ms3yKB2xren9F8wSPLi91cc%3D%7C&c1=zhOks3zwNR2QJkrtGpxDD0z6RaFAlAQ6ciC3rnAoG72_3BFDfZ8qj0n6FwJ08Cvv_7xsebT9t6USbInQXTEMsQT4Inl5iIjfX9b8B5zPzgfQT2l55YZ5nba9iE4V8P5o8jFFnkE9vvmNurEjkgwDDIfRRay61TmNwJRs5i4x_4-T6CLVji57bEd9Ed6cDAokodQIHUOCunuw_EwsZe1dfwM2YT8xPQ4sADjQbg2A-hoMfafrYEMpRdEvuDAnoUkhneESRoRSW6UKRhA5n8Y7ZmqWvD3r4mn2h2fPT0nxHFp7IMWIQfVUZyV2AnAtD87d8bcxCRgT7LKaKR3I_IAh_KI3W5XslJy2RlcbBwQSzgUVJqwh1xsk55LWDLye4BDDuK35K0NatbpP5EWSajp4BR2nmfDCXF1ctKFT4QDJ9HtcGsvPZkWBCuUAeGarw-vRCv8dtJQnKTje2muBlGHrDNqKrcylSgCq021SJgiZzfUiB-xkTk2mlk4JFEFQIvvr_6mVcPqtYs78ML7Pt922RJMHkBO8fXiEAlQTYeeHGwVj_yg1tf4rXqrjClRHfvgYNGk0JrkJL1U&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCILxsAPGcY9aTEJTOygX1iqhAyZ7SsVzVnZH3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi03MTY4MjE0MDI5MzcwNDI1yAEJqQIMEi4WB8yxPqgDAaoEgwJP0E77-vD_3TU4IAFGfqVmEU930jy2zYZEv5c1TxD7DD2neUjav1g9FnQCwrIgo-jSJj-AVXzP7oBx5a_X0vI2rKXiycw7DyWZTAJ_QBtMSv3Unygq_s-AYWewiveABwNVlsbZfCs7tfqpSJmeXt0r5qYrRrUEE5NpHjmn0dt_hVCRLijix_yMfD51wlBbEUC3Wqt2Mfb9heA9bAxTaWQ8aL1Khi6u5QxPYLHyJuQ3S5UPk4kCQV9Ze-OgGrFxx_xptD3FTygv_Jlr0tk31saIw-zTn8i2JextGjIbvB30WOJS1MygYMVEt_Tfo5vm3oPBtBVxHnVLH-bz4CEpEhbs71GfgAaZvLOtovm4gTGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1_rvaHsm3nH0dESlyPZaBrC3itBA%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:16 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=oE62-PRWAlWofwGz0H5JF7vtAKEw7uFQDYftTud80byaJ71B2jTwUJfHQ0MTRT3HFLRdF8kppR78DOPnYbhXwdBrG5I4diodIuNSFl4Xu0-Q_RIlCgBZSxQaixFqAZtMavcXYn6Zia_MvyfQp-k16kcx_qiudfAEj3wM43Ml0QH46jhuvdCD4YpYh8YnR3DM-KbxxbDKkq6dXFjAWUMWIuye52tJsFqnHQpO8HAl1yBhQM4X89IxY9yq7Dypyu6za7GePCdAyjM5LyQT"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 117607202
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=gZkqGpJQosmtLdw2GZ5AHCqbDWjFJg-asucFj7WIJXm9aXzUlB85GQl2edihnJ7BHqqAdiOtu9KuTsTop-JMzaRIPgBRcQlPvow09YdnHmkyycudOo-ThmpORL92haZmxIDS81MX0ZktmHX8YkOKk9MkjDgnjYDHKO4uH0-4QUX46I3ESGo0U8yiaFAnVpopHpwdHaohHwYib11a8kZBAm9XTB09xF7fKn6VqwCfLpK47UVr9rrh7SEtwVHf_92fByhyTABarHmgAAc1zayFYbljPIP_S1NnhmusISti-j9txDoQ9JcIpl8TyzefUO4LZxFb_92xaHSpb9vgrS2mdaCNAPiFDJdR4YUjvETDG_TEKD2Cssoqxeq7_mi3oVACAgTBG4T8lgwgx91Od7y963JVPsUEyrMQh0_bQQcea6r6qcC1
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=gZkqGpJQosmtLdw2GZ5AHCqbDWjFJg-asucFj7WIJXm9aXzUlB85GQl2edihnJ7BHqqAdiOtu9KuTsTop-JMzaRIPgBRcQlPvow09YdnHmkyycudOo-ThmpORL92haZmxIDS81MX0ZktmHX8YkOKk9MkjDgnjYDHKO4uH0-4QUX46I3ESGo0U8yiaFAnVpopHpwdHaohHwYib11a8kZBAm9XTB09xF7fKn6VqwCfLpK47UVr9rrh7SEtwVHf_92fByhyTABarHmgAAc1zayFYbljPIP_S1NnhmusISti-j9txDoQ9JcIpl8TyzefUO4LZxFb_92xaHSpb9vgrS2mdaCNAPiFDJdR4YUjvETDG_TEKD2Cssoqxeq7_mi3oVACAgTBG4T8lgwgx91Od7y963JVPsUEyrMQh0_bQQcea6r6qcC1
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=gZkqGpJQosmtLdw2GZ5AHCqbDWjFJg-asucFj7WIJXm9aXzUlB85GQl2edihnJ7BHqqAdiOtu9KuTsTop-JMzaRIPgBRcQlPvow09YdnHmkyycudOo-ThmpORL92haZmxIDS81MX0ZktmHX8YkOKk9MkjDgnjYDHKO4uH0-4QUX46I3ESGo0U8yiaFAnVpopHpwdHaohHwYib11a8kZBAm9XTB09xF7fKn6VqwCfLpK47UVr9rrh7SEtwVHf_92fByhyTABarHmgAAc1zayFYbljPIP_S1NnhmusISti-j9txDoQ9JcIpl8TyzefUO4LZxFb_92xaHSpb9vgrS2mdaCNAPiFDJdR4YUjvETDG_TEKD2Cssoqxeq7_mi3oVACAgTBG4T8lgwgx91Od7y963JVPsUEyrMQh0_bQQcea6r6qcC1 HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 22:28:17 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2422234
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2