bookworm-bilgeadam.blogspot.de/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
142.250.74.33302 Moved Temporarily 215 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.de/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 630b89aab749eb8c19284d9b636e5c4d
ee9357fd315996e6cf56a93f83f4a6b3a436768b
32c53c942b1eae75448a9329907e6f207951cd8ed00b73cad6908eb31e7c4880
GET /search/label/Kashna%20Yay%C4%B1nlar%C4%B1 HTTP/1.1
Host: bookworm-bilgeadam.blogspot.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 07 Dec 2022 21:06:46 GMT
Expires: Wed, 07 Dec 2022 21:06:46 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 215
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2773
Expires: Wed, 07 Dec 2022 21:52:59 GMT
Date: Wed, 07 Dec 2022 21:06:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19531
Expires: Thu, 08 Dec 2022 02:32:17 GMT
Date: Wed, 07 Dec 2022 21:06:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 20:08:05 GMT
content-type: application/json
age: 3521
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10284
Expires: Wed, 07 Dec 2022 23:58:10 GMT
Date: Wed, 07 Dec 2022 21:06:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: an/82lVRfsf+1Nh09oO43qQJEel0blhEIumcGwdSmQLW9bBwbxkcNmPCEKlaiafJERc2I9Ap/rAGzr98HQaMtg==
x-amz-request-id: QE2DX2YRMW325BNC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 20:49:30 GMT
age: 1036
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 20:07:58 GMT
age: 3529
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
172.217.21.161200 OK 27 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash e06dbbfe96de7418fa0395a92c376360
98f5301be492e9848083d1439156da2ca92223c3
d1ed80ed96c27d85cbcb4efffbc116ab9cf5c8472d03a9e8cf296e91ad3220bd
GET /search/label/Kashna%20Yay%C4%B1nlar%C4%B1 HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 07 Dec 2022 21:06:46 GMT
Date: Wed, 07 Dec 2022 21:06:46 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 26976
Server: GSE
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 05:25:08 GMT
Expires: Wed, 14 Dec 2022 05:25:08 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 18:52:37 GMT
Content-Type: text/javascript
Age: 56499
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3f844a67fba8889a6b2a6da09b8bdb14
6ba076ed0091144165ae9a850d76a15fa920ee0f
bfff84a114e777161054a146a62fb820f58478e79a586d0259fab07bcbc18d23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.130200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (3577)
Hash d81df44d2b190d37783389a6b884768f
1a8c1be9bf437b6b32eca08c4a6fae0794d0d419
74c356aa8c04d8c6e54b4e070e3c7b3bc254c647ecb0cecd1747b08b4de9609b
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 07 Dec 2022 21:06:47 GMT
Expires: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 7404593974920309123
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36129
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9e83e23c9303fc167d2b23bceba4f304
cc712e67770a00bcc9901a6881f5b1cd343cf054
16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:19:21 GMT
expires: Tue, 13 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 07:54:23 GMT
content-type: image/gif
age: 110846
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.130200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (4885)
Hash abf7daeeea7cf523db253a534d8fec63
d7cd91c4d82d08698c9903e0b5b6d2f464589649
4765a9f47bd0ce3122e49d905461d72f0d05d11a4f1e77d328032617ab20b411
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 07 Dec 2022 21:06:47 GMT
Expires: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 11164126509471312546
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52212
X-XSS-Protection: 0
resources.blogblog.com/img/icon_feed12.png
216.58.207.233200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 216.58.207.233:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:00:15 GMT
expires: Tue, 13 Dec 2022 14:00:15 GMT
cache-control: public, max-age=604800
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: image/png
age: 111992
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
216.58.207.233200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:06:05 GMT
expires: Tue, 13 Dec 2022 15:06:05 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 01:53:22 GMT
content-type: image/gif
age: 108042
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:47:55 GMT
expires: Wed, 06 Dec 2023 21:47:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 21:53:25 GMT
content-type: text/css
age: 83932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-netvibes.png
216.58.207.233200 OK 1.4 kB URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:58:30 GMT
expires: Tue, 13 Dec 2022 21:58:30 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 10:54:03 GMT
content-type: image/png
age: 83297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
216.58.207.233200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 10:41:41 GMT
expires: Tue, 13 Dec 2022 10:41:41 GMT
cache-control: public, max-age=604800
last-modified: Mon, 05 Dec 2022 10:54:49 GMT
content-type: image/png
age: 123906
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.46200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 07 Dec 2022 21:06:47 GMT
expires: Wed, 07 Dec 2022 21:06:47 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 157 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Size 157 kB (156915 bytes)
Hash 64d62574443f9d2148012af05abf60ac
16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e
c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 05:43:30 GMT
expires: Wed, 06 Dec 2023 05:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 08:51:54 GMT
content-type: text/javascript
age: 141797
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.161200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:54 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9470
ETag: "ve2b"
Content-Type: image/jpeg
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu
216.58.207.225200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha3Ch0uVFcBUIEi8Ro8IPBJSAI1jyXVuBbpBTXwQ7O_IxqFzI3TXKSh2MvEvX1LPiKGg4OhzwqSnrJKengo_uHVhYMYyIs5QLBuDnJXyveLh6-YPhkxWccdXJp2Nbz9Lts8OMofWNsE=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:06:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:47 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.65200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 20:07:47 GMT
Expires: Thu, 08 Dec 2022 20:07:47 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb25"
Content-Type: image/jpeg
Age: 3540
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu
216.58.207.225200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash cbbbf3bb7b15b7eead3c8e6c4ab9c0c9
9697069ea0a0bc837032f2a8f591b8494ef87b5c
a3f8833d2726dd727cfe193d4d8c4a29c95af093216cda7c6cffaede370040fb
GET /blogger_img_proxy/ANbyha2ZTNXW8HiE0dpgxANtyY1BjDBi_Cbj1EdK81Y7ZMFAN2lN4VmKJh4VuJTcOerbBwQD75YnVygmvRxcK_VUQq3b2pyZnSzEqjAJFw4Z4-k6uKiZNpg5m_GwgOcF83CxPoWEPT3DDUADgHc1tOqbx2jABXB0mGrhLgtTwl3UUlqn92VlSuJJ7w=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:06:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:47 GMT
server: fife
content-length: 3345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9470
ETag: "v471"
Content-Type: image/jpeg
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu
216.58.207.225200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu
IP 216.58.207.225:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha0-j4O_4WTuiUCM01i9xqLlztpYcTvouQpq4rBnt67IkEfCH5riR2I1bqbDNamBpQP-LVN1kCs8CYGZuvVuQaKOG1H4Fagn7cazEoJQGXFqnBUo8D0nnKmienw=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 08 Dec 2022 21:06:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:47 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5073
Cache-Control: max-age=134676
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:31:23 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu
216.58.207.225404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu
IP 216.58.207.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fbf3e14fce03cde8539912ad2a0384fc
5ffd5e3b32819c202128ee90148a75c4b8096c6d
e1b84332d9f04fb79a8835608ee562ef992d2df239a0162def37e8a817c0843a
GET /blogger_img_proxy/ANbyha1aV6VcTfpNl407RO1VzWI8qdbM0ecGWCSO1Dgr_twAeGfhjDIP6osVvFDISUy-3KKhXh62S_zUoli9-a4ATfb1B-_h2KOIyW3RNDD6Qdafkt32HeKOjbVw9t_xUNxovciBvTgkgevXaleAuA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:47 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sayac.onlinewebstat.com/c.js
217.195.203.216200 OK 2.4 kB URL HTTP/1.1 sayac.onlinewebstat.com/c.js
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type ASCII text, with CRLF line terminators
Hash 93e259972860a0e13edf59ab0ac01fbc
e5c790c39dca158666bfa94013512ec579042557
a98c5155f8586678344d1c2a312e8098bf72dcc832a5b0c15406c44ed19a7d94
GET /c.js HTTP/1.1
Host: sayac.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Sun, 18 Jan 2015 06:57:45 GMT
ETag: "251e-50ce7b90a6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2418
Connection: close
Content-Type: application/javascript
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:53 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9470
ETag: "vc14"
Content-Type: image/jpeg
1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 49580bf15d6c9cd5b8571621b4e8141c
8e889626f8507eebff70a7e5c74c7348a364c64d
3424d8286f316866dad95f4686bb070e35be4ee7c12cb0975bb159731208b7ae
GET /-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-okumak.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4949
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Wed, 07 Dec 2022 06:09:54 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9470
ETag: "ve28"
Content-Type: image/jpeg
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-oku.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Sat, 03 Dec 2022 12:48:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 9470
ETag: "v18e"
Content-Type: image/jpeg
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.65200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.65:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 18:28:57 GMT
Expires: Thu, 08 Dec 2022 18:28:57 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdd7"
Content-Type: image/gif
Age: 9470
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.130200 OK 47 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.130:0
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Server: cafe
Content-Length: 47
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 16:07:53 GMT
Expires: Wed, 21 Dec 2022 16:07:53 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 17934
i.dr.com.tr/cache/600x600-0/originals/0000000377643-1.jpg
143.204.55.128200 OK 60 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000377643-1.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 341x600, components 3\012- data
Hash 23b4234eb98db526e8d8f85b3065eb2a
660f50145376c04cfa36b9bcee3aae4c0f3bcf0a
930fd27c8ada576348daff097642e7902438ad7add4f61337e685b46512ed7dd
GET /cache/600x600-0/originals/0000000377643-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 59710
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 23:57:08 GMT
Last-Modified: Sat, 09 Jun 2018 13:51:30 GMT
ETag: "5b1bdb62-e93e"
Expires: Sat, 10 Dec 2022 23:57:08 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V15vNxhsIX74QvVqh0ZjxLER0Temm4koMhNiZlIgFE3hgpJhDlemfA==
Age: 335375
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 17:26:49 GMT
expires: Thu, 07 Dec 2023 17:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 13198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000302295-1.jpg
143.204.55.128200 OK 76 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000302295-1.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 333x600, components 3\012- data
Hash c43e55c5835b2d08533b495594e3df02
123f6832840eab5ef7f2d6a9a66a58c22c695890
429ee9a0bded292711368ca70b65810ec5e6886e7fae8d2e772c7454ec7196e0
GET /cache/600x600-0/originals/0000000302295-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 75830
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 23:57:08 GMT
Last-Modified: Wed, 27 Jun 2018 20:24:47 GMT
ETag: "5b33f28f-12836"
Expires: Sat, 10 Dec 2022 23:57:08 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FUsRVkSXOw4zbwxE2_rv5pC59y9wRbmZvLk5toitvgSczh0sEU4rrQ==
Age: 335375
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ba8392a35e279a05f632a48d38b831f
49fcabcfff2128fb4a87164981595ec9f813f2f6
b82849af3ed3e533f08673c23a3412582bccf9022402a7050d750a96cdf82dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.dr.com.tr/cache/600x600-0/originals/0000000302296-1.jpg
143.204.55.128200 OK 61 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000302296-1.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 334x600, components 3\012- data
Hash f872b86f5358dbbe71bf9ba1a210c947
9a844bd9d570b69a29f4a3e18cc8b7fc568b7c3b
86cb8c598e7534b9fbac5da632c3339ab3b28c1bacf1bb3433e3a97cd6d4bd36
GET /cache/600x600-0/originals/0000000302296-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 61410
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 00:50:50 GMT
Last-Modified: Wed, 16 May 2018 15:21:12 GMT
ETag: "5afc4c68-efe2"
Expires: Sat, 10 Dec 2022 00:50:50 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S9SKuzW8wemSQ1q5o-2aipBYo6E-RZXNOsA-BARVTVGRJx3ptUNY6A==
Age: 418552
kitap.yazarokur.com/_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg
18.195.17.241404 Not Found 196 B URL HTTP/1.1 kitap.yazarokur.com/_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg
IP 18.195.17.241:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /_ko/bir-turk-dunyaya-bedel-iki-turk-lak-lak-eder.jpg HTTP/1.1
Host: kitap.yazarokur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 404 Not Found
Date: Wed, 07 Dec 2022 21:06:47 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 196
Connection: keep-alive
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 17:28:13 GMT
expires: Tue, 13 Dec 2022 17:28:13 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 04:51:45 GMT
content-type: image/png
age: 99514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000144462-1.jpg
143.204.55.128200 OK 55 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000144462-1.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 360x600, components 3\012- data
Hash d227ac44964a74c79d71b28c2418979f
eeeec6127535d07ec98bf93092eb880aadb3a962
405835fe8d631d0f5276d6f75e09ce53052f4fd0565eb7c4b4d788f67f5526fe
GET /cache/600x600-0/originals/0000000144462-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 54867
Connection: keep-alive
Server: nginx/1.8.1
Date: Sat, 03 Dec 2022 08:44:54 GMT
Last-Modified: Sun, 10 Jun 2018 20:37:40 GMT
ETag: "5b1d8c14-d653"
Expires: Sat, 10 Dec 2022 08:44:54 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wDfoP4Xr8k9m7XtYiuAJTxR4aaEXpYlzB7fhV-uMBSv6YyqvLCGO1A==
Age: 390113
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
216.58.207.233200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 216.58.207.233:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 12:40:23 GMT
Expires: Tue, 13 Dec 2022 12:40:23 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 04:51:45 GMT
Content-Type: image/png
Age: 116784
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bb1e9989d8b84caf9deb2787b93c5b8f
c7e1ee0f110ec05534c96739d938554ed38635c5
8754dec16a0563ac7d78422ccc53976adba9506615982f1a70aba79256750a4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9e83e23c9303fc167d2b23bceba4f304
cc712e67770a00bcc9901a6881f5b1cd343cf054
16378fd60ce4fb8ead3bbc313e6ae0166f68d532d40c586f8c71cb6cd1a91f50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221129/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221129/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221129/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Wed, 07 Dec 2022 05:05:36 GMT
expires: Wed, 21 Dec 2022 05:05:36 GMT
cache-control: public, max-age=1209600
age: 57671
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000250482-1.jpg
143.204.55.128200 OK 63 kB URL HTTP/1.1 i.dr.com.tr/cache/600x600-0/originals/0000000250482-1.jpg
IP 143.204.55.128:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 408x600, components 3\012- data
Hash 2efad7a184d3d00f403faff56ae992dc
e798dedcee7127430c229992796910a3a8373914
d117b2626525fa07493097825c799b188dcf8bd61366d8b83c18aaded26d87c1
GET /cache/600x600-0/originals/0000000250482-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 63002
Connection: keep-alive
Server: nginx/1.8.1
Date: Wed, 07 Dec 2022 21:06:47 GMT
Last-Modified: Sat, 09 Jun 2018 13:32:59 GMT
ETag: "5b1bd70b-f61a"
Expires: Wed, 14 Dec 2022 21:06:47 GMT
Pragma: public
Cache-Control: max-age=604800, public, must-revalidate, proxy-revalidate
Accept-Ranges: bytes
Access-Control-Allow-Origin: *, *
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: js1cSoUyUl8zI1FDDrloGyvzmHDiMEciPJ7cyi6VDE3_toWSfrWlVA==
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212010101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071167
142.250.74.130200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202212010101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071167
IP 142.250.74.130:0
File type ASCII text, with very long lines (5918)
Size 120 kB (119961 bytes)
Hash 01e7d245fc66f5b0efb18bb346ec4e34
9540a64928c528c7b3847d18054bac4ea0b41531
dca26cd51211f0749499e492281846739acab8ddc611128eaab2b95c9cd4fda0
GET /pagead/managed/js/adsense/m202212010101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com&bust=31071167 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 07 Dec 2022 21:06:47 GMT
expires: Wed, 07 Dec 2022 21:06:47 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 497198832057677035
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119961
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 07:09:35 GMT
Expires: Tue, 13 Dec 2022 07:09:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 06:50:28 GMT
Content-Type: image/png
Age: 136632
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.36759545547491135&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.36759545547491135&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Kashna%2520Yay%25C4%25B1nlar%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.36759545547491135&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
1.bp.blogspot.com/-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png
216.58.207.225200 OK 19 kB URL HTTP/2 1.bp.blogspot.com/-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png
IP 216.58.207.225:0
File type PNG image data, 300 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash ca2832e26ad88468f2e57f4f0a317d6c
fec5b090e6fad381b48f25cfaecbd8254e2353e5
0dcdb273bfc225cceccc7cc180a189a0d6b0095e0a73314a416d5d8ba6dc8963
GET /-f3QUc6gr5wc/VdQeZPK-sLI/AAAAAAAADy8/NywYAxatCMg/s1600/register.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vf2f"
expires: Thu, 08 Dec 2022 21:06:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="register.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:47 GMT
server: fife
content-length: 19003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Tue, 06-Dec-2022 21:06:44 GMT; path=/
ASP.NET_SessionId=mv1xubvf35f3m4tbs3khyh3e; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Thu, 08-Dec-2022 21:06:44 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 339
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ba8392a35e279a05f632a48d38b831f
49fcabcfff2128fb4a87164981595ec9f813f2f6
b82849af3ed3e533f08673c23a3412582bccf9022402a7050d750a96cdf82dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg
142.250.74.65200 OK 197 kB URL HTTP/1.1 2.bp.blogspot.com/-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg
IP 142.250.74.65:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 350x612, components 3\012- data
Size 197 kB (196646 bytes)
Hash 376b8e2f98d447f48937c22af72191a6
f26a5bfc792d678a68f7d7d8d238034ef114e0ea
7da4328520fb1cd559f2ce4396758d2e838fd4412296418e79ce64346eb00f52
GET /-csOfrmbfU_o/Uf98HqnRFWI/AAAAAAAADfc/AYcjUHHG9yU/s1600/Bir+T%C3%BCrk+D%C3%BCnyaya+Bedel+%C4%B0ki+T%C3%BCrk+Lak+Lak+Eder+Erdal+Demirk%C4%B1ran.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdf8"
Expires: Thu, 08 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Bir T_rk D_nyaya Bedel _ki T_rk Lak Lak Eder Erdal Demirk_ran.jpg";filename*=UTF-8''Bir%20T%C3%BCrk%20D%C3%BCnyaya%20Bedel%20%C4%B0ki%20T%C3%BCrk%20Lak%20Lak%20Eder%20Erdal%20Demirk%C4%B1ran.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 07 Dec 2022 21:06:47 GMT
Server: fife
Content-Length: 196646
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6fd88dc33d7d8662beb23519bcb8d2cd
887e5197b7b31218974576d72cf5043b1dc60918
1563adbcafb22c3230f7ae3834cf1f90de5ccad39c6bbf2f649b195afb8056be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:06:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:06:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.8 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1088), with CRLF line terminators
Hash adfd7e97ef94ad6313f7b71c7cfaa171
c234315ffbed274e7257361c5028b1018e027179
e5f223496661b6c15dea2fedb07a5b4fe3df853d80fc0f8804dae36dccbdaf83
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Tue, 06-Dec-2022 21:06:44 GMT; path=/
ASP.NET_SessionId=iicfvpkdqjmzmy1sll1m1unr; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 2792
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA
172.217.21.161200 OK 249 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA
IP 172.217.21.161:0
File type JSON data\012- , ASCII text, with very long lines (394), with no line terminators
Hash b6651cd5464c77441f80ffc4a4c1314d
e2ea125c51f194d7a498e5b035441f5383e6bad9
65188f99ba2e7f8b16e64e52914be680241b1dacd2ed2a795c61933d57318a42
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDPC754gubXaDIFGSN67QjSHODHaQ6hQivEhMo5Ad3SeX56-e0itvZdgL45sC7f5Pd5VrIhihyesuLlEyxXoo6UcDaUqA HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
Cookie: cwou_bookwormbilgeadam=1670447207; bwou_bookwormbilgeadam=1670447207; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 07 Dec 2022 21:06:47 GMT
Expires: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 249
Server: GSE
partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
216.58.207.194200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (391), with no line terminators
Hash ddae3590dfe74b2b158606a98e5f963e
ad6b3eda20880c0d289ffbf5e3d68367da97f0ea
861c2eca767c08a260681a89a6599b58db5a1524e2f8c73d673b8fd020f05bfb
GET /gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 21:06:47 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c221e4deeb8144b7fc354cce5dc563f8
578e9395e2800e2e19bde2a1d49d9501f6aa3364
258bf83c23b05e8bc9b987e849a194b9f81742ee4268f6453a1e88bfaca959f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6fd88dc33d7d8662beb23519bcb8d2cd
887e5197b7b31218974576d72cf5043b1dc60918
1563adbcafb22c3230f7ae3834cf1f90de5ccad39c6bbf2f649b195afb8056be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=9ed5684f-5238-424b-bcd4-a34bec835351 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Dec 2022 21:06:47 GMT
last-modified: Wed, 07 Dec 2022 21:06:47 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 7c6b613326b653f457ea18a1021d0787
e87ec524338257fd33b0680847c578e908b39cad
1dcd77f26a60f337ba20a8a54dd3c697e77ac54f07e7d48ddfab994e6a09cdc7
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "80693f6cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 2725
www.blogger.com/img/widgets/stats-flipper.png
216.58.207.233200 OK 233 B URL HTTP/2 www.blogger.com/img/widgets/stats-flipper.png
IP 216.58.207.233:0
File type PNG image data, 88 x 30, 8-bit grayscale, non-interlaced\012- data
Hash 99a2cb03ed5a76104972e477196f1f09
4e12527ed6d99f198728c6631bf7a787911bf4bc
2911f4e04096744757ceab7a895e0ee51494b6feaefaef9f1870272b3dc2dcca
GET /img/widgets/stats-flipper.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 13:44:16 GMT
expires: Tue, 13 Dec 2022 13:44:16 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 10:54:03 GMT
content-type: image/png
age: 112952
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 43
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 1261
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0264363384921479eaf9c1b2194f34b0
424816559e81431859ca5a26b5fec8bed54a1420
e49fdca9ba404b0a8467c2d26872c89a98b6d24f7710ad38f85c5752a4f4f181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 3.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 28\012- data
Hash 504b338076be77e4a2bc400c79177fd0
d91f251482238fc3359e5855e95fb9b09efd5c66
073807612778e4fc61a6ab404ff1cd8b668a5028f74ddd372d5abdc721c8d2fa
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:43 GMT
Content-Length: 3282
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0264363384921479eaf9c1b2194f34b0
424816559e81431859ca5a26b5fec8bed54a1420
e49fdca9ba404b0a8467c2d26872c89a98b6d24f7710ad38f85c5752a4f4f181
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 07 Dec 2022 21:06:44 GMT
Content-Length: 3993
tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/window_focus_fy2021.js
216.58.211.1200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/window_focus_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221129/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:29:00 GMT
expires: Wed, 21 Dec 2022 02:29:00 GMT
cache-control: public, max-age=1209600
age: 67068
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3501)
Hash ef1c9435be063c9ab3d647cf9b724750
103489edc626e6284455cb8b90d2de205856e258
a9855ba62028cd8fad2000099280c6f494e443df6d4a728d4b9719437ffb32dd
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47692
date: Wed, 07 Dec 2022 21:06:48 GMT
expires: Wed, 07 Dec 2022 21:06:48 GMT
cache-control: private, max-age=3000
etag: "1670243872199174"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js
216.58.211.1200 OK 7.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1532)
Hash 8b96e824b8c6b3b385a1876ef7973762
0ff92f9095d3945911b72a8259512a97967783a7
e707746d4baf394759dc9adb8839a736ae7fb901a8e9198c84277b0436f4eb4b
GET /pagead/js/r20221129/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7443
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:29:00 GMT
expires: Wed, 21 Dec 2022 02:29:00 GMT
cache-control: public, max-age=1209600
age: 67068
etag: 629801499763588852
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 54db2aa5029ab3c4ca457cced55c1c4d
790becaae5da563169b3d4fc0ca6018e8ad56cd1
48d1473c9967a42f89d04d012071df7d1e50ee13abe4d7324f91f806fb4988e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3566
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Last-Modified: Wed, 07 Dec 2022 20:07:22 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookworm-bilgeadam.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Kashna%20Yay%C4%B1nlar%C4%B1
Cookie: cwou_bookwormbilgeadam=1670447207; bwou_bookwormbilgeadam=1670447207; woubookwormbilgeadam=t; _ga=GA1.3.1366145392.1670447207; _gid=GA1.3.59998923.1670447207; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 07 Dec 2022 21:06:48 GMT
Date: Wed, 07 Dec 2022 21:06:48 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 05 Dec 2022 13:01:25 GMT
ETag: W/"6d8aa58b1169bd06e1df3a22d5eeb2a76df61e12309cae748716b5102797e1ed"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu
216.58.207.225404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu
IP 216.58.207.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 60bd3b3610704eaf3e3459e8d28d1b6e
1c8412e9d2e833080f85199a105abbfcb311437c
ef4bbbd89350042280fb508e37f3ca3073d9724f0cbde95a979550e298c36b10
GET /blogger_img_proxy/ANbyha1JNrU0d7plMGzTeWqkTdRkhX-4DXQiuPFrr-Uq2WKPDKkc48wghygcInCccerdfcfhCSI1FPopeBPSfZh054Wxi2tbvW6F5S6HbayAoZpXECSxrZ9G7nGlJDKnfGe68TE4YbC4yoHfEkgu1uxiHygs5w=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 21:06:48 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 742888696000838f32ddad875505f28e
fee4854813378a126f954137a4bddef415240661
be9ee25e8b8768fd0645e71ef5a094d88f02fc309906347b333cc4ea2c44eed2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 783
Cache-Control: max-age=148388
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "63909dfd-139"
Expires: Fri, 09 Dec 2022 14:19:56 GMT
Last-Modified: Wed, 07 Dec 2022 14:06:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 940d7c307bf7595a44a1cb0b2ce470d9
3f693508b7f0ec10524e03941f9422b13ad733fa
9d2b072a81aaa57162351b491bafbcb5594c939043cb1c3ddf53bef23262a375
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3401
Cache-Control: max-age=149210
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "639096f9-13a"
Expires: Fri, 09 Dec 2022 14:33:38 GMT
Last-Modified: Wed, 07 Dec 2022 13:36:57 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 13014
expires: Mon, 27 Nov 2023 21:06:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXAAnwH3ESJGnqmN9T1menXTKhb1uM8OxmwMbvxeY3HtSOHzGvJJmOocJw6J46r%2Bu55mAJrT5m%2FVYPtG5bh%2BSBqcj5cmv%2BlXoG7o%2FQSpkjgDOxcLYljnjj9ZPrPB1hIhsAGKAMcE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77603a2dba61b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 940d7c307bf7595a44a1cb0b2ce470d9
3f693508b7f0ec10524e03941f9422b13ad733fa
9d2b072a81aaa57162351b491bafbcb5594c939043cb1c3ddf53bef23262a375
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3401
Cache-Control: max-age=149210
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "639096f9-13a"
Expires: Fri, 09 Dec 2022 14:33:38 GMT
Last-Modified: Wed, 07 Dec 2022 13:36:57 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEGcAkWMlSdo9fy3eVd4rAgASAAA&wp=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEGcAkWMlSdo9fy3eVd4rAgASAAA&wp=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWcAEmAKdg2ICAgAAAPL-iLEbJCucEGcAkWMlSdo9fy3eVd4rAgASAAA&wp=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 313950
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EGcAkWOB-Zlyyo6yuvohlwASAAA&wp=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EGcAkWOB-Zlyyo6yuvohlwASAAA&wp=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWawC2ASdg2ICAgAAAGtD7PegAgx1EGcAkWOB-Zlyyo6yuvohlwASAAA&wp=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 271885
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEGcAkWMGiZdHdSxQtf325gASAAA&wp=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEGcAkWMGiZdHdSxQtf325gASAAA&wp=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWawC-gGdg2ICAgAAAJxfQb2KCE9vEGcAkWMGiZdHdSxQtf325gASAAA&wp=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 250299
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4869
Cache-Control: max-age=93424
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "638fb753-139"
Expires: Thu, 08 Dec 2022 23:03:52 GMT
Last-Modified: Tue, 06 Dec 2022 21:42:43 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4847
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Last-Modified: Wed, 07 Dec 2022 19:46:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4869
Cache-Control: max-age=93424
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "638fb753-139"
Expires: Thu, 08 Dec 2022 23:03:52 GMT
Last-Modified: Tue, 06 Dec 2022 21:42:43 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3a488fc3dcdaafb273e7c74bca56bb53
e04c3fa14a45cb81a4fa39085ae8504b63f31589
afa21e0ef1b2ca8bc6b71a0215fe0a27b9e6a4bed9e90031c8b90d434153ca7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4631
Cache-Control: max-age=93186
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "638fb753-139"
Expires: Thu, 08 Dec 2022 22:59:54 GMT
Last-Modified: Tue, 06 Dec 2022 21:42:43 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4335
Cache-Control: max-age=142954
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:49:22 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4335
Cache-Control: max-age=142954
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:49:22 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4383
Cache-Control: max-age=143002
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:48 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:50:10 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8388
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 21:06:48 GMT
Connection: keep-alive
pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw
178.250.2.135200 OK 1.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 196x196, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01f33a498f65bf4bb751def8c06a1991
dd3dc1f876dbec906a17869724b8d3284beb37cb
9e92587541f93124197e414774716e7099233aef4b4d56f4d888e9bb649b5362
GET /img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=GtMj-Hh7ClbgncHoywO9vnRw HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29593482
expires: Wed, 15 Nov 2023 09:31:31 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 9.2 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
Hash 8db8481d740d656b1f00764e9488aa4a
7af45a1cb2ec645757c7f394e4ca59f089b653eb
db6d9b2ea188a20ffe514e5cb4f26911f0aeaa28d1f48664e033512e2ce879fc
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 82303
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8387
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 21:06:49 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4336
Cache-Control: max-age=142954
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:49:23 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400
178.250.2.135200 OK 8.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4467a9ae13171b5f3278e6d2ce727bf2
7a21d7b0cd66f63d7e8b4c66be59f97f3368c44e
17f148460d5036a7ab08c77538b8899d3aa8a5e65c77cbcc51ba01539b1a7d09
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29678922
expires: Thu, 16 Nov 2023 09:15:31 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8504
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 7.9 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
Hash 73b6610899f3ccefe748639f5e62ef3a
6ff894f0cfdeb646a31232af4bc8ab4cd2061ce2
a7df3c6fa1e44a6fb68b27b8587b099636e3f2296fb697497dff08e075175b2a
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 83469
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 11 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
Hash 4005a1e1e4211e05d6e5b3ddf6d060f4
ec19bf01a7a12b1f18ceecdbcb02d56dee296390
a04e785f426e58004eff86938529d8e7f0957b3ee4d71b852341544da0d2c7ab
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:11:41 GMT
age: 53708
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=800&s=o8FkaGETMTYcI0HuJP4c_UXU&b=400
178.250.2.135200 OK 7.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=800&s=o8FkaGETMTYcI0HuJP4c_UXU&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 286x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54cacfa33c8ceaa943fb766aecef0d05
5d7ac9c37a1e20928660363e5b8aab357de9b000
41ceec71f7ebaea69836a1ce22dce0c27650bea84143a8cf2685971cd13527b1
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=800&s=o8FkaGETMTYcI0HuJP4c_UXU&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31291936
expires: Tue, 05 Dec 2023 01:19:05 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7134
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=0D52xjJwH2wcgyAhk9jTPTiOVIQAKADt3cM1Z6hmE6dUz8XtGcJ5YnW3_E-z5h5yXfTY3YENWZWukZGxWZhLEkRbTV3nJX4zW0mPrB6FTHl_p6S_b0NgecR_eGZMoO4ab7fr9XpwbP_wOD3zolKVeMkIukCrs102y6OFe2_w4UDCPfjzkNk5L62G18cGPa8FtqSC8G4OjTTKNftuW4j0VBXKtylc2skWLfCH0zk8rYrM3iOGV1R4KzpbnIMLh8XdDoYTLaCLXD102seqrvXYCvEKd8_6KUkuvgsil5zL17_0KgGzFmOoCcHPLRvN6O6s-1-eb-o2YhSIozKmftxZ_mArlC5OfV8uYhgI0GCnBqdjg5H542Gc2n5UuCaDPWvv_rBI3ospYN-LyCFBEHCEzufGqF0AA2tQhwKBpaMOpd5A7Wq8rkMHalEQzi9Ks9x3DPWLog
178.250.2.148200 OK 11 kB URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=0D52xjJwH2wcgyAhk9jTPTiOVIQAKADt3cM1Z6hmE6dUz8XtGcJ5YnW3_E-z5h5yXfTY3YENWZWukZGxWZhLEkRbTV3nJX4zW0mPrB6FTHl_p6S_b0NgecR_eGZMoO4ab7fr9XpwbP_wOD3zolKVeMkIukCrs102y6OFe2_w4UDCPfjzkNk5L62G18cGPa8FtqSC8G4OjTTKNftuW4j0VBXKtylc2skWLfCH0zk8rYrM3iOGV1R4KzpbnIMLh8XdDoYTLaCLXD102seqrvXYCvEKd8_6KUkuvgsil5zL17_0KgGzFmOoCcHPLRvN6O6s-1-eb-o2YhSIozKmftxZ_mArlC5OfV8uYhgI0GCnBqdjg5H542Gc2n5UuCaDPWvv_rBI3ospYN-LyCFBEHCEzufGqF0AA2tQhwKBpaMOpd5A7Wq8rkMHalEQzi9Ks9x3DPWLog
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2831a1e98347af55fa324e3084259dbe
72f887edd8aeba78f4dfbb3150bbe27be55f511b
56197b6f900eabfe82391374d55bce9e408e46e2c10cbd78c207084170a0ee6c
GET /delivery/lg.php?cppv=3&cpp=0D52xjJwH2wcgyAhk9jTPTiOVIQAKADt3cM1Z6hmE6dUz8XtGcJ5YnW3_E-z5h5yXfTY3YENWZWukZGxWZhLEkRbTV3nJX4zW0mPrB6FTHl_p6S_b0NgecR_eGZMoO4ab7fr9XpwbP_wOD3zolKVeMkIukCrs102y6OFe2_w4UDCPfjzkNk5L62G18cGPa8FtqSC8G4OjTTKNftuW4j0VBXKtylc2skWLfCH0zk8rYrM3iOGV1R4KzpbnIMLh8XdDoYTLaCLXD102seqrvXYCvEKd8_6KUkuvgsil5zL17_0KgGzFmOoCcHPLRvN6O6s-1-eb-o2YhSIozKmftxZ_mArlC5OfV8uYhgI0GCnBqdjg5H542Gc2n5UuCaDPWvv_rBI3ospYN-LyCFBEHCEzufGqF0AA2tQhwKBpaMOpd5A7Wq8rkMHalEQzi9Ks9x3DPWLog HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3101983
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 416325c612dcffde97c637585fe9e65b
b128711e1d57b14c46cceafa5e6d9371aa243f3e
f6036f1d5abe995616524cc406c6b4196bccddf60ef5340ccc75c6fd57e2aa51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4305
Cache-Control: max-age=142923
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Etag: "63907ae3-139"
Expires: Fri, 09 Dec 2022 12:48:52 GMT
Last-Modified: Wed, 07 Dec 2022 11:37:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98d2cf29c710d25bd2f03ff216fdd369
b8eb2e11f9655f19334befc036f21489a6473827
614c9b4a7ace908c1ef807964709cb292b33b48ce1d81ccbd2959c2c0ee156ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8351
x-amzn-requestid: 607d07ab-6833-4001-82ed-699ea91f84c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlitFk9oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb611-3e5f14f833b332647ef7358d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0w5Usq-LJMNHxw9UrwUqSslSVROXVHTmY_UhSHNaGh4k4xqh-FSa0A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "b8eb2e11f9655f19334befc036f21489a6473827"
content-type: image/jpeg
age: 83469
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4ORpzqbzQyJz_i3wpxf_07mXK3ovj1JT8kn-M9fdrGRgDVig7hhN5w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:20:15 GMT
age: 31594
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30102691
expires: Tue, 21 Nov 2023 06:58:20 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400
178.250.2.135200 OK 5.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x287, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5dff790a5bb26782110b9d621212e3b5
0b9bdb39b2fbb7823b6a6b80845206df692e80c2
1eedd2a7f883999396b0c2877a2512186f875339b3e284c34601ebb9a71fb8e0
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30431940
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5062
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=800&s=BdasQVNZq0HN0PfEdmMgTIwL&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=800&s=BdasQVNZq0HN0PfEdmMgTIwL&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 341x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea1218da6b26c1eef19a477fdd67a32e
f285d190ed167f19b1db4d2d979d2fbb30cc8344
d86e179e6cb99fd114133f15096f27a203db5c9067eae647500729a50d190cab
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=800&s=BdasQVNZq0HN0PfEdmMgTIwL&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30625472
expires: Mon, 27 Nov 2023 08:11:21 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10990
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400
178.250.2.135200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 205x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3682dacb7a94af61dee15aa78045a9a5
abcfe697906b924e5a296a4720d72fc30d5e56b2
c8099a2a55044610080b73376df81d8050a41b3dead8b147381fc523037c9d50
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29334571
expires: Sun, 12 Nov 2023 09:36:20 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3670
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=400&s=FUJ6ohQjgFWfOSh-JqiDWmhL&b=400
178.250.2.135200 OK 7.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=400&s=FUJ6ohQjgFWfOSh-JqiDWmhL&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 395x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98fa41e540aaa1c0f9320319e06c6b00
f4a41d3d964ca47d18272394c1ef2b9b97b54f10
bae368c91da5a2ce948ba0b9de8b0cdb71955a5369ce797afa66da29dcbbb091
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=400&s=FUJ6ohQjgFWfOSh-JqiDWmhL&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29766042
expires: Fri, 17 Nov 2023 09:27:31 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7828
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg
178.250.2.135200 OK 1.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 266x76, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77c44a633aa284c58f8eb8cbee1f41f3
9b2f34ef9ac2247b0054e1887ff75942006ad623
4b0e48334dcb11bfd656df1098c819acd33c27791a43d966f714f8d11b73e416
GET /img/img?h=76&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=rOcIH2ZRO0XvuWFedn9JEefg HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29561873
expires: Wed, 15 Nov 2023 00:44:42 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
178.250.2.135200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 205x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3682dacb7a94af61dee15aa78045a9a5
abcfe697906b924e5a296a4720d72fc30d5e56b2
c8099a2a55044610080b73376df81d8050a41b3dead8b147381fc523037c9d50
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29334571
expires: Sun, 12 Nov 2023 09:36:20 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3670
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 341x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea1218da6b26c1eef19a477fdd67a32e
f285d190ed167f19b1db4d2d979d2fbb30cc8344
d86e179e6cb99fd114133f15096f27a203db5c9067eae647500729a50d190cab
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D4b140a88775a310cf02f70368d6aa331&v=3&w=400&s=bCq0al9KWH9BxW217hx_Fh-9&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30625472
expires: Mon, 27 Nov 2023 08:11:21 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10990
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30102691
expires: Tue, 21 Nov 2023 06:58:20 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400
178.250.2.135200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 288x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0174c89cd42b0a33c6b2d6151df118c7
ad26d2d114ef7c82bc5463afe92a5d4a65d8d1eb
22d6e040a7588605290d05e2a68c398a3868d83b592c3839821aa41365a6f3f5
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31321020
expires: Tue, 05 Dec 2023 09:23:49 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 16714
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
178.250.2.135200 OK 5.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x287, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5dff790a5bb26782110b9d621212e3b5
0b9bdb39b2fbb7823b6a6b80845206df692e80c2
1eedd2a7f883999396b0c2877a2512186f875339b3e284c34601ebb9a71fb8e0
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30431940
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5062
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F2%2F3251312-0.jpg%3Fcb%3D405640cca084b653e6b23d8feaabb141&v=3&w=400&s=3tlmhGt0UrMcBeR7Dl0A48F8&b=400
178.250.2.135200 OK 8.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F2%2F3251312-0.jpg%3Fcb%3D405640cca084b653e6b23d8feaabb141&v=3&w=400&s=3tlmhGt0UrMcBeR7Dl0A48F8&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x340, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5e1cf2b98d9871f53b14adfd1e5e7968
619f413a8c0682f849ff03b42a076ca354111d77
dd3b37c75c5023d64205be2dd96c233bc01aff09311e3817264d3b25a5238291
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F2%2F3251312-0.jpg%3Fcb%3D405640cca084b653e6b23d8feaabb141&v=3&w=400&s=3tlmhGt0UrMcBeR7Dl0A48F8&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28995841
expires: Wed, 08 Nov 2023 11:30:50 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8132
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400
178.250.2.135200 OK 6.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 165x241, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 834be1e94b97b3046f72dc7e1655cbc2
01763b030849d82d7d401131d540ffc118c9e230
0cf7663e5fafa148537e1fd7f65fab5540d4e0a84662b5c71f3c27c26994f289
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29584379
expires: Wed, 15 Nov 2023 06:59:48 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6922
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29574585
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F8692-0.jpg%3Fcb%3Dd8ce9973ade1164159e72c4e3904004f&v=3&w=400&s=lcZfVUTSkKXyZqCWRTc-BF36&b=400
178.250.2.135200 OK 6.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F8692-0.jpg%3Fcb%3Dd8ce9973ade1164159e72c4e3904004f&v=3&w=400&s=lcZfVUTSkKXyZqCWRTc-BF36&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 361x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c34d6947ffa5a22e7c34ef5819dcee1a
d9e333d6580fe1e94f5396926b5e0e58f9c58fa1
429b4143de6868bda3f887c9ed974515122a64f047503f53a0dc85d422beb796
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F8692-0.jpg%3Fcb%3Dd8ce9973ade1164159e72c4e3904004f&v=3&w=400&s=lcZfVUTSkKXyZqCWRTc-BF36&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30286579
expires: Thu, 23 Nov 2023 10:03:08 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6044
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=400&s=4budIYlw2GprzTb-36QAJxpS&b=400
178.250.2.135200 OK 7.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=400&s=4budIYlw2GprzTb-36QAJxpS&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 286x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54cacfa33c8ceaa943fb766aecef0d05
5d7ac9c37a1e20928660363e5b8aab357de9b000
41ceec71f7ebaea69836a1ce22dce0c27650bea84143a8cf2685971cd13527b1
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3Df49a7c5c3bee8a5f661d7177dde03848&v=3&w=400&s=4budIYlw2GprzTb-36QAJxpS&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291936
expires: Tue, 05 Dec 2023 01:19:05 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7134
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400
178.250.2.135200 OK 8.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4467a9ae13171b5f3278e6d2ce727bf2
7a21d7b0cd66f63d7e8b4c66be59f97f3368c44e
17f148460d5036a7ab08c77538b8899d3aa8a5e65c77cbcc51ba01539b1a7d09
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29678922
expires: Thu, 16 Nov 2023 09:15:31 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8504
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 8.9 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
Hash 18e5da65aa27a298d7598421cbeecbfb
e30415be4f3433494838ba9e8f67229ae7dc9081
1403227e996c29b81795b4b19cf012948e982cd8b513c107820c8127e9d403d0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23242770-0.jpg%3Fcb%3Dd6621cb62370ebbbcc84fd9518057c3a&v=3&w=400&s=cU4oirOUWLvWzB-GOvVSJhLj&b=400
178.250.2.135200 OK 28 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23242770-0.jpg%3Fcb%3Dd6621cb62370ebbbcc84fd9518057c3a&v=3&w=400&s=cU4oirOUWLvWzB-GOvVSJhLj&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9688b56d347c1c7c7bd3577444cbcb03
b248a1001eb0a30b87fab24a74d4d787c22d0f79
062eaf1fa3cb2680891168e68dd6942c58e0bc41ddfd0a6c95828ce5c12b70f1
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23242770-0.jpg%3Fcb%3Dd6621cb62370ebbbcc84fd9518057c3a&v=3&w=400&s=cU4oirOUWLvWzB-GOvVSJhLj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29075420
expires: Thu, 09 Nov 2023 09:37:09 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 28040
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F6%2F16c2001131-0.jpg%3Fcb%3D3ea44fa2045113f14918af3451c500a0&v=3&w=400&s=fWUCu27stq-5b1SijaZMMtOz&b=400
178.250.2.135200 OK 5.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F6%2F16c2001131-0.jpg%3Fcb%3D3ea44fa2045113f14918af3451c500a0&v=3&w=400&s=fWUCu27stq-5b1SijaZMMtOz&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0d0186ba40d89e0e4b236df296b24d7d
4aa108739d9b9d58685b73f5898db0fbf3f7f366
def184b2ee7732e3d9cc4d4c77e2ce1a6c4f2d30571551be25f7a09cc3cafb5b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F6%2F16c2001131-0.jpg%3Fcb%3D3ea44fa2045113f14918af3451c500a0&v=3&w=400&s=fWUCu27stq-5b1SijaZMMtOz&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30576990
expires: Sun, 26 Nov 2023 18:43:19 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5590
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=32Y5kmYxl8LfL0_4dqxiMh6T&b=400
178.250.2.135200 OK 8.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=32Y5kmYxl8LfL0_4dqxiMh6T&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x365, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ab9352694e39d09b006d299a75d4b4e
c67a9f66f025ad84c090cc2ed5c36ebf101df203
432a7d6bd46254f1d9cf470e8d18031e0731c98f3101c03723217879d6dfa838
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=400&s=32Y5kmYxl8LfL0_4dqxiMh6T&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29585298
expires: Wed, 15 Nov 2023 07:15:07 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8404
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F5%2F251114-0.jpg%3Fcb%3D22f592186a48552ee71ba8c528de3c48&v=3&w=400&s=1HGtnBSf3_g8x91OOQuu_ujN&b=400
178.250.2.135200 OK 2.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F5%2F251114-0.jpg%3Fcb%3D22f592186a48552ee71ba8c528de3c48&v=3&w=400&s=1HGtnBSf3_g8x91OOQuu_ujN&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x91, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2933841beed38fa68d0ecfecb298cbbf
81f98d07fd824b91af8a70f8b56612cbbab75e5d
e4db1c7b7632046915000371340aab1f9e1b3c6302b73bfe18f17e74376f01a7
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F5%2F251114-0.jpg%3Fcb%3D22f592186a48552ee71ba8c528de3c48&v=3&w=400&s=1HGtnBSf3_g8x91OOQuu_ujN&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29679081
expires: Thu, 16 Nov 2023 09:18:10 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2014
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F8%2F6850-0.jpg%3Fcb%3D5e6846e1366eb9e6ff89f431b763e038&v=3&w=400&s=JAyMFCKKbsGyk7XygHnjrN5z&b=400
178.250.2.135200 OK 6.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F8%2F6850-0.jpg%3Fcb%3D5e6846e1366eb9e6ff89f431b763e038&v=3&w=400&s=JAyMFCKKbsGyk7XygHnjrN5z&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x208, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dd4c9af0ac15ef23c7b76b892c900f8f
b92f1b24fad7d0f62a9b2173486488c4913fcfd7
7f5caab99281042e9d7cea3a13d53e67b9ffcf8c5d597d4aec79e1402e63912c
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F8%2F6850-0.jpg%3Fcb%3D5e6846e1366eb9e6ff89f431b763e038&v=3&w=400&s=JAyMFCKKbsGyk7XygHnjrN5z&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28895556
expires: Tue, 07 Nov 2023 07:39:25 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6128
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82325-0.jpg%3Fcb%3D4f9ea491f3f42bd9991861fa937f6251&v=3&w=400&s=A_72mHicGUkRgbImYGEaVZ_9&b=400
178.250.2.135200 OK 6.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82325-0.jpg%3Fcb%3D4f9ea491f3f42bd9991861fa937f6251&v=3&w=400&s=A_72mHicGUkRgbImYGEaVZ_9&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 236x229, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash db8beda79ae8da65ef024af12bbe4c99
6451ee6854a05c1d8a8f6db818f9f0f7221f5b80
4124272ef870b9a590da4ef36f0b8039dcde99e501a654e0506bd8ced76ffefd
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F2%2F82325-0.jpg%3Fcb%3D4f9ea491f3f42bd9991861fa937f6251&v=3&w=400&s=A_72mHicGUkRgbImYGEaVZ_9&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30169236
expires: Wed, 22 Nov 2023 01:27:26 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6078
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
178.250.2.135200 OK 4.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4f5eb42d3a4558a7c995710ff437cb0
1f73d7b42b3e1f5b8754e62b1ff933f2e69f3d1c
c33b7e6d19155abc7f2ad85172e017a537e0cd29f15fc2cce401bb9f87ec2193
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31061172
expires: Sat, 02 Dec 2023 09:13:01 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
178.250.2.135200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 237x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b573fc470ef8cbc89f1035de8aa998a
3a192b5f9758318437a3d4f5be68f5051af46039
dcc9f88d2c0d057159015782eca9a29d97bd98bcf43565a43c0dddc9a0287fa4
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31386981
expires: Wed, 06 Dec 2023 03:43:10 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F2325453-0_1.jpg%3Fcb%3De0784ee116421b14c3fb1a06607deba1&v=3&w=400&s=hf-n_L2VhGarx0JQ3OtUVTqQ&b=400
178.250.2.135200 OK 23 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F2325453-0_1.jpg%3Fcb%3De0784ee116421b14c3fb1a06607deba1&v=3&w=400&s=hf-n_L2VhGarx0JQ3OtUVTqQ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x395, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 988facbbe190f8b2924116e461779c07
b36cdec92a7e1259c1d7e6ef8c509281893c9c4c
0005ed69831bbc0e9697315dce6be68b7567c959177f05205f65dead04b71fde
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F2325453-0_1.jpg%3Fcb%3De0784ee116421b14c3fb1a06607deba1&v=3&w=400&s=hf-n_L2VhGarx0JQ3OtUVTqQ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29341351
expires: Sun, 12 Nov 2023 11:29:20 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 23262
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67482-0.jpg%3Fcb%3Db2389415fa379734a1e4ccff044b4c5f&v=3&w=400&s=S365Iz7c_x8a1m9EcXZlcpWg&b=400
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67482-0.jpg%3Fcb%3Db2389415fa379734a1e4ccff044b4c5f&v=3&w=400&s=S365Iz7c_x8a1m9EcXZlcpWg&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 243x249, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7c5fbb5be0f6230f7f6ef7b6ae125fc6
71d5b39929bd4bd3bc76baf4da2cc44cc74d2f64
4d3253cdcbd260ac67ceaf6fef4cea03150055fe3bc62dbfc03ac31fb694f117
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67482-0.jpg%3Fcb%3Db2389415fa379734a1e4ccff044b4c5f&v=3&w=400&s=S365Iz7c_x8a1m9EcXZlcpWg&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28892547
expires: Tue, 07 Nov 2023 06:49:16 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11504
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F4%2F2481160-0.jpg%3Fcb%3D422fbc262cd1198e7991565a1dc65b5e&v=3&w=400&s=Xy4OLk5szkNT37YQBuGyGNWZ&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F4%2F2481160-0.jpg%3Fcb%3D422fbc262cd1198e7991565a1dc65b5e&v=3&w=400&s=Xy4OLk5szkNT37YQBuGyGNWZ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 181x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f877c3a7128f4cfe18120076df4f3543
4112e869f959ccfa8ffbb1df9ef6b9646fb2e1e0
6043fc8e5c7f60202691c30a04337e6fad1a71e800276a95b36c24c62f24fc88
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F4%2F2481160-0.jpg%3Fcb%3D422fbc262cd1198e7991565a1dc65b5e&v=3&w=400&s=Xy4OLk5szkNT37YQBuGyGNWZ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31493144
expires: Thu, 07 Dec 2023 09:12:33 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11020
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400
178.250.2.135200 OK 4.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4f5eb42d3a4558a7c995710ff437cb0
1f73d7b42b3e1f5b8754e62b1ff933f2e69f3d1c
c33b7e6d19155abc7f2ad85172e017a537e0cd29f15fc2cce401bb9f87ec2193
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31061172
expires: Sat, 02 Dec 2023 09:13:01 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992558-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=JHqzL5ywEQcYEFDVaBbSiMAe&b=400
178.250.2.135200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992558-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=JHqzL5ywEQcYEFDVaBbSiMAe&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x353, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4e44e1df12aede4fdc1056e7969fc8ee
ea35ae49a494a67999d48ca05d0f20ad38da6670
b760884cf30e2377532e6b177e5696b681222d3785a2e8eb94ceae73e626fa82
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992558-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=JHqzL5ywEQcYEFDVaBbSiMAe&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30675400
expires: Mon, 27 Nov 2023 22:03:30 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7576
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400
178.250.2.135200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 288x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0174c89cd42b0a33c6b2d6151df118c7
ad26d2d114ef7c82bc5463afe92a5d4a65d8d1eb
22d6e040a7588605290d05e2a68c398a3868d83b592c3839821aa41365a6f3f5
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31321020
expires: Tue, 05 Dec 2023 09:23:49 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 16714
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=400
178.250.2.135200 OK 7.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 395x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98fa41e540aaa1c0f9320319e06c6b00
f4a41d3d964ca47d18272394c1ef2b9b97b54f10
bae368c91da5a2ce948ba0b9de8b0cdb71955a5369ce797afa66da29dcbbb091
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F6%2F36015080000-0.jpg%3Fcb%3D31c565529c49573baacc5dd9acc93725&v=3&w=800&s=A1v157Dywqy8OQ2BEpZVsSAN&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29766042
expires: Fri, 17 Nov 2023 09:27:31 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7828
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rjW8qDJwH2wcgyAhk9jTPTiOVIRCKVdj8VNBL4TcxoC7PUMfAaiU8gA9NDFHU4JVDRZ1dYV8dm1YYhjJ3lKT8gCsUpgBR27lrEC_4ZmsmVrYPJm7cncnj-xPM2LSPvv2p54Qm4ETGtyEuxq-vywg4UM05erQlK_5fS2APmTv1fduNa7vO3FYy8EQOgN0-aUr4EDXpyfKYK_h9BxNDbBZZNNSHWQnLhbkZGitbMbtQJg5RoFLBtbMjsBoPoS86E8HExFebYSNbEa95_K62fOa3NGroo1nR0L7ZilLeWx16UyOIQObjrT492U8BZdTAnICyKs_8Rd2QQ37ozI-AFrMF6zIBdn7IJuMwfH_S_2bvqV8slXt3VZkv3GNjWnFDWMp1SSi_eFyx9BUtE5gSpA-v5hEFZaLBxOyxd41WUu2b1wiDXCmA1FMIW11U60wN7IOBb5cRw
178.250.2.148200 OK 23 kB URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rjW8qDJwH2wcgyAhk9jTPTiOVIRCKVdj8VNBL4TcxoC7PUMfAaiU8gA9NDFHU4JVDRZ1dYV8dm1YYhjJ3lKT8gCsUpgBR27lrEC_4ZmsmVrYPJm7cncnj-xPM2LSPvv2p54Qm4ETGtyEuxq-vywg4UM05erQlK_5fS2APmTv1fduNa7vO3FYy8EQOgN0-aUr4EDXpyfKYK_h9BxNDbBZZNNSHWQnLhbkZGitbMbtQJg5RoFLBtbMjsBoPoS86E8HExFebYSNbEa95_K62fOa3NGroo1nR0L7ZilLeWx16UyOIQObjrT492U8BZdTAnICyKs_8Rd2QQ37ozI-AFrMF6zIBdn7IJuMwfH_S_2bvqV8slXt3VZkv3GNjWnFDWMp1SSi_eFyx9BUtE5gSpA-v5hEFZaLBxOyxd41WUu2b1wiDXCmA1FMIW11U60wN7IOBb5cRw
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b67206eb9ac3e5685d8adea2676aa2a8
ad05e73b36df2e4e4f9fc4122822cabe37e71582
7d41a8f18f8fb3bd6cca250d187e78eccc634bca511ea42cb46748456bbfa508
GET /delivery/lg.php?cppv=3&cpp=rjW8qDJwH2wcgyAhk9jTPTiOVIRCKVdj8VNBL4TcxoC7PUMfAaiU8gA9NDFHU4JVDRZ1dYV8dm1YYhjJ3lKT8gCsUpgBR27lrEC_4ZmsmVrYPJm7cncnj-xPM2LSPvv2p54Qm4ETGtyEuxq-vywg4UM05erQlK_5fS2APmTv1fduNa7vO3FYy8EQOgN0-aUr4EDXpyfKYK_h9BxNDbBZZNNSHWQnLhbkZGitbMbtQJg5RoFLBtbMjsBoPoS86E8HExFebYSNbEa95_K62fOa3NGroo1nR0L7ZilLeWx16UyOIQObjrT492U8BZdTAnICyKs_8Rd2QQ37ozI-AFrMF6zIBdn7IJuMwfH_S_2bvqV8slXt3VZkv3GNjWnFDWMp1SSi_eFyx9BUtE5gSpA-v5hEFZaLBxOyxd41WUu2b1wiDXCmA1FMIW11U60wN7IOBb5cRw HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3000639
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400
178.250.2.135200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x307, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 439a54c2eb38e1ebac67ec975d668919
db8607b9c7f1ed5a71395b766c6364eef68d5940
180a3f43ce5c9bac1ce8eb00e9d5c9b00035db506d76a0b462b10fd830616578
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30888634
expires: Thu, 30 Nov 2023 09:17:23 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7998
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29574585
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e48b6e4bd0b48464865c6cd368b8d0a2
0921498a62c143830f4268cb4cccb5e727585c93
57375b78f38aa3786fe18479a1d6b3ce6882a88251e6b8fad5574a9004c1be01
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29705565
expires: Thu, 16 Nov 2023 16:39:34 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5428
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=0WEOyaPIeLI9dzM1iljWSFG3
178.250.2.135200 OK 2.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=0WEOyaPIeLI9dzM1iljWSFG3
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 364x104, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d68f0c206fbc43640d87acd8ac358d0d
de93fb8fc26a456bec0e842b9a5aeb47c139f771
e783cf1e10a4ab2295be2903a3d7f198ace6c2c239152780a75aabd2cab5ac91
GET /img/img?h=104&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=596&s=0WEOyaPIeLI9dzM1iljWSFG3 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29561873
expires: Wed, 15 Nov 2023 00:44:42 GMT
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2194
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 180848
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:06:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
csm.eu.criteo.net/all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sayac.onlinewebstats.com/logo/s.gif
217.195.203.216200 OK 1.1 kB URL HTTP/1.1 sayac.onlinewebstats.com/logo/s.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 90 x 30\012- data
Hash 86b20fb84a3c460bb5b6f28e1fc58a8f
be37c58c27b312e1b8445d446d5e9008843fc8d0
16c7fd0e2962fbb0f79e261c14b3e89f71af00413c77ce6c284c2aabdad557f3
GET /logo/s.gif HTTP/1.1
Host: sayac.onlinewebstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:06:47 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 17 Aug 2006 22:15:44 GMT
ETag: "4a6-41b3dfc23c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1127
Connection: close
Content-Type: image/gif
csm.eu.criteo.net/all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ&sds=2&rev=83862&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA&u=%7C%2FZZmpbn5TrCFlourhF%2BKx%2BfZbg50A4MaOYt%2BskebujI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJYY4NluvUU58ytOXpzBTbn_oa5WlFuolgQ8-UlFX4DZbaaaWakmXjHSuChhhUPl4dhuICe8nOrK_sPJbL75GFEjv7xsQZhWBxkXyMnQHHKYFBT2uNWe-W4xb4QCjweHi6qr1HvL5xWLogIJWXzoRQlnkWtE-fCoSHMRX5350SRosC04cCa8QMx0E0vXzBZDO1XCTLR-WReJuYgeaq5BBlOy3okKGz0gVTpO0VT3W8K3y1r8DwihpheDMmqegu2TCtbPOGpoVTxpvSsWSEo1wj38eUiWlj-WKle4R6FBpEOCsVUPaAodofotIe898Yzu7hxP7Yq2TI-cX_StimY2WdG8tY2mn2PeSvfIByTTH0R6rzTZWd2vMk8xN3DRihTL-gNp1Gc_E1yTAaS0Arj1tqJBltXTBfTTAsjPFyoMGCXyVNVWgzavw9ULjCRfPbJJZmrWkDxgIkvb2RuZ1bUASLrhn5DWhKE4inmhrUo0F9KPSg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbccgZwCRY_eiOIitygWj96DIBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIMCT9A4N86ehLVMEdJVeZc-E02NMRPuPZtD4ZiG2koroItQuvxAM_jrjZ0D0Z0IwaL3a2DYK5dmvyyCBKtnwdCTk4icehc315vmyHo5RPnrMQtb-XeSR61SWAGLym6_wNr3uxpkkYPlfHAKUFOSe1ZwYFDAfbbVp4Fi7zPDIldXHcBnOdb74HnTB1Q02l3PL-aLvZvqu6sIVF3gaJN-mTBGmOnbYmh7sM8YBGdnab26U6AUidzobpSb1UNMH4XnC4ywl5JXJ8EWWiRSF3JgJUi8nHPQ15tUodSNJdNYMLLiuOVr0y9_tC1XU6-usyY-8cxFwlKrP0BQHns5wiuzeCVaCe4i_YAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3mXGMfFHxEnbAaeN0Jr77MrroCHQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA&u=%7C%2FZZmpbn5TrCFlourhF%2BKx%2BfZbg50A4MaOYt%2BskebujI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJYY4NluvUU58ytOXpzBTbn_oa5WlFuolgQ8-UlFX4DZbaaaWakmXjHSuChhhUPl4dhuICe8nOrK_sPJbL75GFEjv7xsQZhWBxkXyMnQHHKYFBT2uNWe-W4xb4QCjweHi6qr1HvL5xWLogIJWXzoRQlnkWtE-fCoSHMRX5350SRosC04cCa8QMx0E0vXzBZDO1XCTLR-WReJuYgeaq5BBlOy3okKGz0gVTpO0VT3W8K3y1r8DwihpheDMmqegu2TCtbPOGpoVTxpvSsWSEo1wj38eUiWlj-WKle4R6FBpEOCsVUPaAodofotIe898Yzu7hxP7Yq2TI-cX_StimY2WdG8tY2mn2PeSvfIByTTH0R6rzTZWd2vMk8xN3DRihTL-gNp1Gc_E1yTAaS0Arj1tqJBltXTBfTTAsjPFyoMGCXyVNVWgzavw9ULjCRfPbJJZmrWkDxgIkvb2RuZ1bUASLrhn5DWhKE4inmhrUo0F9KPSg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbccgZwCRY_eiOIitygWj96DIBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIMCT9A4N86ehLVMEdJVeZc-E02NMRPuPZtD4ZiG2koroItQuvxAM_jrjZ0D0Z0IwaL3a2DYK5dmvyyCBKtnwdCTk4icehc315vmyHo5RPnrMQtb-XeSR61SWAGLym6_wNr3uxpkkYPlfHAKUFOSe1ZwYFDAfbbVp4Fi7zPDIldXHcBnOdb74HnTB1Q02l3PL-aLvZvqu6sIVF3gaJN-mTBGmOnbYmh7sM8YBGdnab26U6AUidzobpSb1UNMH4XnC4ywl5JXJ8EWWiRSF3JgJUi8nHPQ15tUodSNJdNYMLLiuOVr0y9_tC1XU6-usyY-8cxFwlKrP0BQHns5wiuzeCVaCe4i_YAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3mXGMfFHxEnbAaeN0Jr77MrroCHQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y5EAZwAOEXcKspaIAAg7o-xe7cMrky2qc33dPA&u=%7C%2FZZmpbn5TrCFlourhF%2BKx%2BfZbg50A4MaOYt%2BskebujI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy8IKuHQ0YyCRolvQ12OvGJYY4NluvUU58ytOXpzBTbn_oa5WlFuolgQ8-UlFX4DZbaaaWakmXjHSuChhhUPl4dhuICe8nOrK_sPJbL75GFEjv7xsQZhWBxkXyMnQHHKYFBT2uNWe-W4xb4QCjweHi6qr1HvL5xWLogIJWXzoRQlnkWtE-fCoSHMRX5350SRosC04cCa8QMx0E0vXzBZDO1XCTLR-WReJuYgeaq5BBlOy3okKGz0gVTpO0VT3W8K3y1r8DwihpheDMmqegu2TCtbPOGpoVTxpvSsWSEo1wj38eUiWlj-WKle4R6FBpEOCsVUPaAodofotIe898Yzu7hxP7Yq2TI-cX_StimY2WdG8tY2mn2PeSvfIByTTH0R6rzTZWd2vMk8xN3DRihTL-gNp1Gc_E1yTAaS0Arj1tqJBltXTBfTTAsjPFyoMGCXyVNVWgzavw9ULjCRfPbJJZmrWkDxgIkvb2RuZ1bUASLrhn5DWhKE4inmhrUo0F9KPSg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbccgZwCRY_eiOIitygWj96DIBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIMCT9A4N86ehLVMEdJVeZc-E02NMRPuPZtD4ZiG2koroItQuvxAM_jrjZ0D0Z0IwaL3a2DYK5dmvyyCBKtnwdCTk4icehc315vmyHo5RPnrMQtb-XeSR61SWAGLym6_wNr3uxpkkYPlfHAKUFOSe1ZwYFDAfbbVp4Fi7zPDIldXHcBnOdb74HnTB1Q02l3PL-aLvZvqu6sIVF3gaJN-mTBGmOnbYmh7sM8YBGdnab26U6AUidzobpSb1UNMH4XnC4ywl5JXJ8EWWiRSF3JgJUi8nHPQ15tUodSNJdNYMLLiuOVr0y9_tC1XU6-usyY-8cxFwlKrP0BQHns5wiuzeCVaCe4i_YAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3mXGMfFHxEnbAaeN0Jr77MrroCHQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:47 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=KO0BAglI403XkEPYK96Pu29jve-MtYTPQSL07OcjMHzN8NHSu5WksV-OHRSjEvgYT8_S9804Uvn6k0u7ssmVt2NaZGT_0GasymjHv_V8vZD0BiNnqO6GDzV4EjQ98SP57CAJC2r0VKVpVQQJTDFyGbazWahYoZ_b_RwUwTSDi8hxe6uqM6AREzX-6sS-r1GBHHEPIE6YQlfza7NFCF4_tJRN8nYaJ34XuC3WpEo6lIV8dPX-AXgLf7oMbMVYmpC7wiX7HA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 156296674
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA&u=%7C%2FZZmpbn5TrAe1zAvKjSB%2FhXYVd3V0ev24%2FJTNXXJ7nU%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAHvcTTT0EPCMnU7523qBYTNQIGDNWcdOS8XEl1PTJNokqOlfMVOnycFCKsUZaDPlDi_l0Fjp_Qxxo_SudyYcoA3O96vDg6zvyEqqdYHuU2F2cRsGtQie4atI5SSE4XJBcDTiWt9B3zRPYqkuy8SS6GHnPAjXIfgqhzA8fJvaq-F0hx8XWkPU6d2UjusyBBf0ZHVjJwPYQvq5gNxnsNdtSyBKdg3I8cX5D8O5IVJbi6ZM_Vswx23IwtXGjbHMTlGc6FR9R8TonvMuQlHe92ui3ClHJrzVms9IBALwd-KMgmk-qRKrMEwwekARqQ8yAnb6iV70uqIPI0YlWG7ulw_bryNnoUodFHqYY_VEQv9Oin0Z28kQPRPYwqe0r3MIqEJOyoaaKNoCMz8ny5mlyl_EoVGARj2vu_u67IKXyKsyPqMTXIILb_YRMtz8II11VEA69-9XSFXe7tD3KQ9TwtN_fxzcUch03V210&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCel3ZZwCRY5uaOoSCygXdr4aoDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIYCT9A3fG87lQZYLuD_ITR55kb1ToN6W0qTBp-0WjZuwF7b7YM_n0zik0E7fV62bTTF_g3wD3TYtmMWth6mIATzNqmfxQKocG-iWvUmbcAJGcpWsv_wIXFHO6Cz_yx-JD3oqfH7iB9SN6z6ogxxll9VI5qCJZp4_-iclQ7J9qtsCpSJClYxIi0B7vAvA7gOFJ68p0d02mdtnZW7y4hNGjfU4gIEelZ-hR6l-XxLhech3K-NQX-v66JRW0q44MZtW6n3-qnaZdAr_T4QHuONLX_yiTR6wn2B9gK-RnDogNVroHTBwedVNBichgSJaz_K8eS_pHBHNwgmHGhXdUriYSRFR813LtItYIAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3l12qCuC5LKhI5AQ3asgdYlnsM-A%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA&u=%7C%2FZZmpbn5TrAe1zAvKjSB%2FhXYVd3V0ev24%2FJTNXXJ7nU%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAHvcTTT0EPCMnU7523qBYTNQIGDNWcdOS8XEl1PTJNokqOlfMVOnycFCKsUZaDPlDi_l0Fjp_Qxxo_SudyYcoA3O96vDg6zvyEqqdYHuU2F2cRsGtQie4atI5SSE4XJBcDTiWt9B3zRPYqkuy8SS6GHnPAjXIfgqhzA8fJvaq-F0hx8XWkPU6d2UjusyBBf0ZHVjJwPYQvq5gNxnsNdtSyBKdg3I8cX5D8O5IVJbi6ZM_Vswx23IwtXGjbHMTlGc6FR9R8TonvMuQlHe92ui3ClHJrzVms9IBALwd-KMgmk-qRKrMEwwekARqQ8yAnb6iV70uqIPI0YlWG7ulw_bryNnoUodFHqYY_VEQv9Oin0Z28kQPRPYwqe0r3MIqEJOyoaaKNoCMz8ny5mlyl_EoVGARj2vu_u67IKXyKsyPqMTXIILb_YRMtz8II11VEA69-9XSFXe7tD3KQ9TwtN_fxzcUch03V210&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCel3ZZwCRY5uaOoSCygXdr4aoDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIYCT9A3fG87lQZYLuD_ITR55kb1ToN6W0qTBp-0WjZuwF7b7YM_n0zik0E7fV62bTTF_g3wD3TYtmMWth6mIATzNqmfxQKocG-iWvUmbcAJGcpWsv_wIXFHO6Cz_yx-JD3oqfH7iB9SN6z6ogxxll9VI5qCJZp4_-iclQ7J9qtsCpSJClYxIi0B7vAvA7gOFJ68p0d02mdtnZW7y4hNGjfU4gIEelZ-hR6l-XxLhech3K-NQX-v66JRW0q44MZtW6n3-qnaZdAr_T4QHuONLX_yiTR6wn2B9gK-RnDogNVroHTBwedVNBichgSJaz_K8eS_pHBHNwgmHGhXdUriYSRFR813LtItYIAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3l12qCuC5LKhI5AQ3asgdYlnsM-A%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y5EAZwAOjRsKsoEEAAGX3RU-TEZ7adZhLXUcgA&u=%7C%2FZZmpbn5TrAe1zAvKjSB%2FhXYVd3V0ev24%2FJTNXXJ7nU%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XXS-nd-IQJ6s9W9xXUiNViAHvcTTT0EPCMnU7523qBYTNQIGDNWcdOS8XEl1PTJNokqOlfMVOnycFCKsUZaDPlDi_l0Fjp_Qxxo_SudyYcoA3O96vDg6zvyEqqdYHuU2F2cRsGtQie4atI5SSE4XJBcDTiWt9B3zRPYqkuy8SS6GHnPAjXIfgqhzA8fJvaq-F0hx8XWkPU6d2UjusyBBf0ZHVjJwPYQvq5gNxnsNdtSyBKdg3I8cX5D8O5IVJbi6ZM_Vswx23IwtXGjbHMTlGc6FR9R8TonvMuQlHe92ui3ClHJrzVms9IBALwd-KMgmk-qRKrMEwwekARqQ8yAnb6iV70uqIPI0YlWG7ulw_bryNnoUodFHqYY_VEQv9Oin0Z28kQPRPYwqe0r3MIqEJOyoaaKNoCMz8ny5mlyl_EoVGARj2vu_u67IKXyKsyPqMTXIILb_YRMtz8II11VEA69-9XSFXe7tD3KQ9TwtN_fxzcUch03V210&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCel3ZZwCRY5uaOoSCygXdr4aoDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIYCT9A3fG87lQZYLuD_ITR55kb1ToN6W0qTBp-0WjZuwF7b7YM_n0zik0E7fV62bTTF_g3wD3TYtmMWth6mIATzNqmfxQKocG-iWvUmbcAJGcpWsv_wIXFHO6Cz_yx-JD3oqfH7iB9SN6z6ogxxll9VI5qCJZp4_-iclQ7J9qtsCpSJClYxIi0B7vAvA7gOFJ68p0d02mdtnZW7y4hNGjfU4gIEelZ-hR6l-XxLhech3K-NQX-v66JRW0q44MZtW6n3-qnaZdAr_T4QHuONLX_yiTR6wn2B9gK-RnDogNVroHTBwedVNBichgSJaz_K8eS_pHBHNwgmHGhXdUriYSRFR813LtItYIAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3l12qCuC5LKhI5AQ3asgdYlnsM-A%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=5rkoIwlI403XkEPYxDGFg3n5TOP6TWyQEbbQ0HVYeWbEcexKzNkhnRbTvJGbZCQq39Nr-wl0Y5v0sk1HynhNh6D_IajrZMgyMV9Mjy4vkIySfSzXlqDIO1VOE7v_E2EytBGx7XnkrjkZ-beB8UB-kvpF8vSo9hBbym-N8SkNb2pIfdlvVIxn_apehKE4ihiUT4cjGeAgyMW6JPG-nvo83H73oQpOMLhb_G-yhLhe0WQozljzg7Rts4EUuSjJmlblv3pWgQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 145367552
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.74:0
GET /css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 21:06:49 GMT
date: Wed, 07 Dec 2022 21:06:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sat, 02 Dec 2023 21:06:48 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ&u=%7C%2FZZmpbn5TrAQUL9F09UhN6rW5jblFU9LVQH1DcAYu5I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvU7tdOIzfRwkbL3FI7reftHOYdKPLzuo7iHSnhaguyKSH2aKCt4heXO9vYnXHm_UOR7O3N94hfDvm0bLybPQ1muS5yqiyWjFN_NdO8dz9lZLnjpdwznW-nam78jdfluwh457OvnAUOuOV66rimNQg8N_BCbHiv0DP-IKjnA224GMyHOIukLUV8iRqlEzWOnB7jv70QiFq4GkheeALoOFafUJzsc6swbVM7fY1zmcJyfdbz50g_dTvC4wG0BGY3fnTJ_SZY0VrSEImSu1E-9ikmXG1vfxtaoRPispN7wvnWCslzq4KSzTQ6ZIxQNKzKYQFmP2pDk5tddVwarGuSKd8VKijuwfjunrn2kdhL9vs-5FS_TUFzRh84p4kzALVfBybo_qZpRMKOy5QpOf-DNIs2oag9qK2CUwxi1WtV8qTtFDs6nzNWE-tsKiIbCN2INa19CfunQbvok-AOmSKQf2AxyUrkwSTrz13k&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCrq0gZwCRY5KCOZKFywWXiLOICcme0rFczeGS93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIACT9DXp2dfdNQ2SgFYAGP0CxYLANXxjYdBLDFSWaB2KtFJV-2W8D1kt1RaevlmjDbDiXM431-MfZNCcxZxOrXUY_kzgeZWTSCGxgix4QPNQ5m0x83OgYtXeFzTaztuoaAVtJqoCcDbWDSpuMGJNXnnmKHcdYFNv4B5UJn5YAp-TpRJc2a_E0iGk510WgltUyroj9HUlZKVJ9uREuMTkQEm8Cy14NzrzSh6wTqO_McjaIOLD2yQuf3oa-6-tdgYfxPDs8CqT8YFWSU_yrL7m6rEsFbjqttF9PbvyzfV4RMi3LUBsXqh4uezdOOMTX7aod6RWYz9R95CbVVZVu5q8L0Zp4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0lTfeLelWQQrqv3p9RViKQI_7Ntw%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ&u=%7C%2FZZmpbn5TrAQUL9F09UhN6rW5jblFU9LVQH1DcAYu5I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvU7tdOIzfRwkbL3FI7reftHOYdKPLzuo7iHSnhaguyKSH2aKCt4heXO9vYnXHm_UOR7O3N94hfDvm0bLybPQ1muS5yqiyWjFN_NdO8dz9lZLnjpdwznW-nam78jdfluwh457OvnAUOuOV66rimNQg8N_BCbHiv0DP-IKjnA224GMyHOIukLUV8iRqlEzWOnB7jv70QiFq4GkheeALoOFafUJzsc6swbVM7fY1zmcJyfdbz50g_dTvC4wG0BGY3fnTJ_SZY0VrSEImSu1E-9ikmXG1vfxtaoRPispN7wvnWCslzq4KSzTQ6ZIxQNKzKYQFmP2pDk5tddVwarGuSKd8VKijuwfjunrn2kdhL9vs-5FS_TUFzRh84p4kzALVfBybo_qZpRMKOy5QpOf-DNIs2oag9qK2CUwxi1WtV8qTtFDs6nzNWE-tsKiIbCN2INa19CfunQbvok-AOmSKQf2AxyUrkwSTrz13k&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCrq0gZwCRY5KCOZKFywWXiLOICcme0rFczeGS93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIACT9DXp2dfdNQ2SgFYAGP0CxYLANXxjYdBLDFSWaB2KtFJV-2W8D1kt1RaevlmjDbDiXM431-MfZNCcxZxOrXUY_kzgeZWTSCGxgix4QPNQ5m0x83OgYtXeFzTaztuoaAVtJqoCcDbWDSpuMGJNXnnmKHcdYFNv4B5UJn5YAp-TpRJc2a_E0iGk510WgltUyroj9HUlZKVJ9uREuMTkQEm8Cy14NzrzSh6wTqO_McjaIOLD2yQuf3oa-6-tdgYfxPDs8CqT8YFWSU_yrL7m6rEsFbjqttF9PbvyzfV4RMi3LUBsXqh4uezdOOMTX7aod6RWYz9R95CbVVZVu5q8L0Zp4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0lTfeLelWQQrqv3p9RViKQI_7Ntw%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y5EAZwAOQRIKssKSAAzEFweWi0JhPyU7BuEyLQ&u=%7C%2FZZmpbn5TrAQUL9F09UhN6rW5jblFU9LVQH1DcAYu5I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy9hFuTyZZoQxmnkh3PoeRvU7tdOIzfRwkbL3FI7reftHOYdKPLzuo7iHSnhaguyKSH2aKCt4heXO9vYnXHm_UOR7O3N94hfDvm0bLybPQ1muS5yqiyWjFN_NdO8dz9lZLnjpdwznW-nam78jdfluwh457OvnAUOuOV66rimNQg8N_BCbHiv0DP-IKjnA224GMyHOIukLUV8iRqlEzWOnB7jv70QiFq4GkheeALoOFafUJzsc6swbVM7fY1zmcJyfdbz50g_dTvC4wG0BGY3fnTJ_SZY0VrSEImSu1E-9ikmXG1vfxtaoRPispN7wvnWCslzq4KSzTQ6ZIxQNKzKYQFmP2pDk5tddVwarGuSKd8VKijuwfjunrn2kdhL9vs-5FS_TUFzRh84p4kzALVfBybo_qZpRMKOy5QpOf-DNIs2oag9qK2CUwxi1WtV8qTtFDs6nzNWE-tsKiIbCN2INa19CfunQbvok-AOmSKQf2AxyUrkwSTrz13k&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCrq0gZwCRY5KCOZKFywWXiLOICcme0rFczeGS93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCriHj2cGfsT6oAwGqBIACT9DXp2dfdNQ2SgFYAGP0CxYLANXxjYdBLDFSWaB2KtFJV-2W8D1kt1RaevlmjDbDiXM431-MfZNCcxZxOrXUY_kzgeZWTSCGxgix4QPNQ5m0x83OgYtXeFzTaztuoaAVtJqoCcDbWDSpuMGJNXnnmKHcdYFNv4B5UJn5YAp-TpRJc2a_E0iGk510WgltUyroj9HUlZKVJ9uREuMTkQEm8Cy14NzrzSh6wTqO_McjaIOLD2yQuf3oa-6-tdgYfxPDs8CqT8YFWSU_yrL7m6rEsFbjqttF9PbvyzfV4RMi3LUBsXqh4uezdOOMTX7aod6RWYz9R95CbVVZVu5q8L0Zp4AG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0lTfeLelWQQrqv3p9RViKQI_7Ntw%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=eWIVlglI403XkEPYTdiZRr_xVhELNCsenu1wvWTGdutxK8btQ89FsRseZArAA210AB4iQnmMO4jHiOTIbYq4GLQiTN6jblXTWpBSEny-k2TVHggHo0mPiFYOdUI5KVgBnBM5_K75R8JGQqfLDkkHbv_2g68ujrvYjNd0Umclbk2NTDXAua1iG2xvp84lGggALF5OdXwwdMzw4OEXy32EXjAzSkuni5Y_by3IIjo3U1ydn9bU29vk0WmndoLxSPSBjLWMWQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 95412754
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FdtVyjJwH2wcgyAhk9jTPTiOVISF4JKjcdx59gSFXuKE918GSxPA67EbpAGo2iSD0Jh6eIeGa1wtzpOz6jAsDqHvJgTIhl09sXGRBN7ToMsoYT08GwKxPqJO4FaGKey_L8EJTt0OZVyalGdltVO0ny13eQjj9Agddt55dwxqamXsJREHRHMenXIL-t3G447octgUaDtyTacYqaAClpNoQ5mZ-9tN82wQpGRis4K9uSpwjRJpYFsf1JKFiOst2pW3_S-QxP35jxcNZEcJj_P0jDysFXUj-pzuWadOxOdVsOUclgLwytQc6zfEBxtccLiZ49QKHxRATZYOVC85bOC6zp9Yr4r-BXl0CsA0xJMlFXbhO-TeOEXb7HZHRYIY_vw97t621n9LIcfxNjskd-BR3TcIGN_IvdXAK87G3mTcUvCOpoAVbS-0dyDY-bkoJ_z31_kjhA
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FdtVyjJwH2wcgyAhk9jTPTiOVISF4JKjcdx59gSFXuKE918GSxPA67EbpAGo2iSD0Jh6eIeGa1wtzpOz6jAsDqHvJgTIhl09sXGRBN7ToMsoYT08GwKxPqJO4FaGKey_L8EJTt0OZVyalGdltVO0ny13eQjj9Agddt55dwxqamXsJREHRHMenXIL-t3G447octgUaDtyTacYqaAClpNoQ5mZ-9tN82wQpGRis4K9uSpwjRJpYFsf1JKFiOst2pW3_S-QxP35jxcNZEcJj_P0jDysFXUj-pzuWadOxOdVsOUclgLwytQc6zfEBxtccLiZ49QKHxRATZYOVC85bOC6zp9Yr4r-BXl0CsA0xJMlFXbhO-TeOEXb7HZHRYIY_vw97t621n9LIcfxNjskd-BR3TcIGN_IvdXAK87G3mTcUvCOpoAVbS-0dyDY-bkoJ_z31_kjhA
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=FdtVyjJwH2wcgyAhk9jTPTiOVISF4JKjcdx59gSFXuKE918GSxPA67EbpAGo2iSD0Jh6eIeGa1wtzpOz6jAsDqHvJgTIhl09sXGRBN7ToMsoYT08GwKxPqJO4FaGKey_L8EJTt0OZVyalGdltVO0ny13eQjj9Agddt55dwxqamXsJREHRHMenXIL-t3G447octgUaDtyTacYqaAClpNoQ5mZ-9tN82wQpGRis4K9uSpwjRJpYFsf1JKFiOst2pW3_S-QxP35jxcNZEcJj_P0jDysFXUj-pzuWadOxOdVsOUclgLwytQc6zfEBxtccLiZ49QKHxRATZYOVC85bOC6zp9Yr4r-BXl0CsA0xJMlFXbhO-TeOEXb7HZHRYIY_vw97t621n9LIcfxNjskd-BR3TcIGN_IvdXAK87G3mTcUvCOpoAVbS-0dyDY-bkoJ_z31_kjhA HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:06:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2767895
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2