r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3856
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 11:26:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3686
Cache-Control: max-age=86752
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:32:40 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6529
Expires: Sat, 26 Nov 2022 13:15:37 GMT
Date: Sat, 26 Nov 2022 11:26:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 11:17:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 556
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lNwKzluaVttp3N9diLPBrPa2g2lyRf6DVEmwpjcoqeNvagc8i8xJRhRKHI7nX+8wnlilwE5MmMw=
x-amz-request-id: 5KWHY941HHB2SJ5J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 10:44:12 GMT
age: 2556
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/search/label/Elif%20%C5%9Eafak
142.250.74.161200 OK 27 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/search/label/Elif%20%C5%9Eafak
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash 34a46d45fb528f3528cac867ab7e31fa
f1363055b5240339a286e0dcfb122358975d5c14
dbd5dfe30ceb28fc5f22f3a7f960e00b46725ac67def84caa226e2a9948d7423
GET /search/label/Elif%20%C5%9Eafak HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 26 Nov 2022 11:26:48 GMT
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 26990
Server: GSE
pagead2.googlesyndication.com/pagead/show_ads.js
216.58.207.194200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (3577)
Hash d60f1e37b627765590a0966cc7950bf4
d2af5ce36cb5afdf27fdb3b54a0c00b0b9cfe1b9
ed3b4aeb6f6c345efa956b6d20cb22548147aed6bcb02de45b01fe7c94b37fb0
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 2255209030415359445
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36278
X-XSS-Protection: 0
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Elif%20%C5%9Eafak
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 12:46:17 GMT
Expires: Wed, 30 Nov 2022 12:46:17 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 23 Nov 2022 10:49:48 GMT
Content-Type: text/javascript
Age: 254431
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f575aee4f3f9ed92647e6efd5d92b195
ed485eaa177873f0cb7f42817c6d0a4435cf3a76
ef7c5f6de7d3e3c93a6863c1e6525d172fe699807f79ea3183d69dece05f0009
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/icon18_email.gif
142.250.74.105200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 15:02:17 GMT
expires: Tue, 29 Nov 2022 15:02:17 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: image/gif
age: 332671
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
142.250.74.105200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 321236
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
142.250.74.105200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 142.250.74.105:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 12:20:26 GMT
expires: Wed, 30 Nov 2022 12:20:26 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 07:50:07 GMT
content-type: image/png
age: 255982
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
142.250.74.105200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 19:19:11 GMT
expires: Tue, 29 Nov 2022 19:19:11 GMT
cache-control: public, max-age=604800
last-modified: Tue, 22 Nov 2022 14:54:22 GMT
content-type: image/gif
age: 317257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon_feed12.png
142.250.74.105200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 142.250.74.105:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 12:43:16 GMT
expires: Tue, 29 Nov 2022 12:43:16 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 21:54:35 GMT
content-type: image/png
age: 341012
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-netvibes.png
142.250.74.105200 OK 1.4 kB URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP 142.250.74.105:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 04:30:11 GMT
expires: Wed, 30 Nov 2022 04:30:11 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 02:52:49 GMT
content-type: image/png
age: 284197
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 11:26:48 GMT
expires: Sat, 26 Nov 2022 11:26:48 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.161200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Sat, 26 Nov 2022 09:45:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ve2b"
Content-Type: image/jpeg
Age: 0
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0q31z2fZsPyRE6rwSjuQIKJVJG0KBUmwmAaH9afhX1tMwgG4dqqYEYFNwrGt2B9IHCQtujKf05ZT1nbVEJEAs0yJOu87ZXC1cnQo00XIDc_dKog_f3JkJtZa0=w72-h72-p-k-no-nu
142.250.74.33200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0q31z2fZsPyRE6rwSjuQIKJVJG0KBUmwmAaH9afhX1tMwgG4dqqYEYFNwrGt2B9IHCQtujKf05ZT1nbVEJEAs0yJOu87ZXC1cnQo00XIDc_dKog_f3JkJtZa0=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha0q31z2fZsPyRE6rwSjuQIKJVJG0KBUmwmAaH9afhX1tMwgG4dqqYEYFNwrGt2B9IHCQtujKf05ZT1nbVEJEAs0yJOu87ZXC1cnQo00XIDc_dKog_f3JkJtZa0=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 27 Nov 2022 11:26:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 11:26:48 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Suc1_VjqiJkNypcA9RrrrtjtqI6h_Ob4KfW2_hYsUHo0Kqb76S_iQTJ0kDnC8k5LmGbGD1n1PTk9a4o6AHJLTASsX9-OGkEyWijYcaWl4ygeBv-MlxBcknChZzpMMROmfTFLDLgWYPkgBPonwVE-DaTWo92HXnCkoNLKg8txrqTAOLOIzDQ=w72-h72-p-k-no-nu
142.250.74.33200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3Suc1_VjqiJkNypcA9RrrrtjtqI6h_Ob4KfW2_hYsUHo0Kqb76S_iQTJ0kDnC8k5LmGbGD1n1PTk9a4o6AHJLTASsX9-OGkEyWijYcaWl4ygeBv-MlxBcknChZzpMMROmfTFLDLgWYPkgBPonwVE-DaTWo92HXnCkoNLKg8txrqTAOLOIzDQ=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash cbbbf3bb7b15b7eead3c8e6c4ab9c0c9
9697069ea0a0bc837032f2a8f591b8494ef87b5c
a3f8833d2726dd727cfe193d4d8c4a29c95af093216cda7c6cffaede370040fb
GET /blogger_img_proxy/ANbyha3Suc1_VjqiJkNypcA9RrrrtjtqI6h_Ob4KfW2_hYsUHo0Kqb76S_iQTJ0kDnC8k5LmGbGD1n1PTk9a4o6AHJLTASsX9-OGkEyWijYcaWl4ygeBv-MlxBcknChZzpMMROmfTFLDLgWYPkgBPonwVE-DaTWo92HXnCkoNLKg8txrqTAOLOIzDQ=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 27 Nov 2022 11:26:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 11:26:48 GMT
server: fife
content-length: 3345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1asxlnH8YmP2WdOEYjPHeL_KFrmGD17paA5LnTorNZm7HeT_oLH6eKlXxhsAIBzHJ_DfV3fe-WD8CiHjQLPMzYNdASp609drD42sHjz2GWONj2zhh0n5h_vUk8_NESa3Ak_Q3TG-I=w72-h72-p-k-no-nu
142.250.74.33200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1asxlnH8YmP2WdOEYjPHeL_KFrmGD17paA5LnTorNZm7HeT_oLH6eKlXxhsAIBzHJ_DfV3fe-WD8CiHjQLPMzYNdASp609drD42sHjz2GWONj2zhh0n5h_vUk8_NESa3Ak_Q3TG-I=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha1asxlnH8YmP2WdOEYjPHeL_KFrmGD17paA5LnTorNZm7HeT_oLH6eKlXxhsAIBzHJ_DfV3fe-WD8CiHjQLPMzYNdASp609drD42sHjz2GWONj2zhh0n5h_vUk8_NESa3Ak_Q3TG-I=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 27 Nov 2022 11:26:48 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 11:26:48 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 415485
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v471"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.161200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdd7"
Content-Type: image/gif
Age: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 264630
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vb25"
Content-Type: image/jpeg
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:45 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
sayac.onlinewebstat.com/c.js
217.195.203.216200 OK 2.4 kB URL HTTP/1.1 sayac.onlinewebstat.com/c.js
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type ASCII text, with CRLF line terminators
Hash 93e259972860a0e13edf59ab0ac01fbc
e5c790c39dca158666bfa94013512ec579042557
a98c5155f8586678344d1c2a312e8098bf72dcc832a5b0c15406c44ed19a7d94
GET /c.js HTTP/1.1
Host: sayac.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Sun, 18 Jan 2015 06:57:45 GMT
ETag: "251e-50ce7b90a6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2418
Connection: close
Content-Type: application/javascript
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.194200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (4885)
Hash 3c20965df1e2dfa6818890d02c4a71c7
ec8d0cfacce4667a73ff461fa7874a5c9c787982
a259224a64c63c4f1a2ae3e2e570de4fd59a949cbfae6612c4cefa61dfee468e
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sat, 26 Nov 2022 11:26:48 GMT
Expires: Sat, 26 Nov 2022 11:26:48 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 9716004165422765906
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51938
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.194200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.194:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 10:51:15 GMT
Expires: Sat, 10 Dec 2022 10:51:15 GMT
Cache-Control: public, max-age=1209600
Age: 2134
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2PSEDl12tEAZ-G-T935Iurkc4_b52UGEkaUmQIvaaWzOVqejhFQbt6c_S0SlxbgtpDABMxakdnhYybIE1iDeD4tyWUSitFTSGPpEnB-9LbeK0n48u8OMeei4JAINaBjO08gnPEAN1BAj5wRg=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2PSEDl12tEAZ-G-T935Iurkc4_b52UGEkaUmQIvaaWzOVqejhFQbt6c_S0SlxbgtpDABMxakdnhYybIE1iDeD4tyWUSitFTSGPpEnB-9LbeK0n48u8OMeei4JAINaBjO08gnPEAN1BAj5wRg=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash d60ea422e463998946018b9e6d3cfba9
218650c34008f69b004f8d7c9a148760e9df8ba9
5085bcb05a7b45eeffd6b3fc3dbcac70acc9f056aad59b52eedf123bc7538f5d
GET /blogger_img_proxy/ANbyha2PSEDl12tEAZ-G-T935Iurkc4_b52UGEkaUmQIvaaWzOVqejhFQbt6c_S0SlxbgtpDABMxakdnhYybIE1iDeD4tyWUSitFTSGPpEnB-9LbeK0n48u8OMeei4JAINaBjO08gnPEAN1BAj5wRg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 11:26:49 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-ez-fTJ1kgW8/TwBn4kNEOSI/AAAAAAAABGg/-Wkayfs66Eo/s200/the+gaze+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 16 kB URL HTTP/1.1 4.bp.blogspot.com/-ez-fTJ1kgW8/TwBn4kNEOSI/AAAAAAAABGg/-Wkayfs66Eo/s200/the+gaze+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 130x200, components 3\012- data
Hash f2e64e3617853b57956650313f3ab0f6
386ccfa196ce97498b6dba1bd30f45c560258488
1648a11e37bee9effb59ac0245d5c72ae1f5692e3e2eaa6cf85b24abe0145284
GET /-ez-fTJ1kgW8/TwBn4kNEOSI/AAAAAAAABGg/-Wkayfs66Eo/s200/the+gaze+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v468"
Expires: Sun, 27 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="the gaze elif _afak.jpg";filename*=UTF-8''the%20gaze%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 15554
X-XSS-Protection: 0
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
142.250.74.105200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 142.250.74.105:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 07:13:21 GMT
Expires: Wed, 30 Nov 2022 07:13:21 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 23 Nov 2022 06:49:48 GMT
Content-Type: image/png
Age: 274408
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.98200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 25 Nov 2022 18:45:12 GMT
expires: Fri, 09 Dec 2022 18:45:12 GMT
cache-control: public, max-age=1209600
age: 60097
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-efGLNoblOaM/TwBftTOh2rI/AAAAAAAABEI/k8Hc6KZxe7Q/s200/pinhan+elif+%25C5%259Fefak.png
142.250.74.161200 OK 58 kB URL HTTP/1.1 4.bp.blogspot.com/-efGLNoblOaM/TwBftTOh2rI/AAAAAAAABEI/k8Hc6KZxe7Q/s200/pinhan+elif+%25C5%259Fefak.png
IP 142.250.74.161:0
File type PNG image data, 114 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 82aa9987052eafcb308d20d5bdeef78e
b40ee11c44e2e913da37aa13696e0dba70622525
6b6f338cabf26a9f17d4878010fd08a5bea3d3aaa0f0bfa40a54b6d08b4ee405
GET /-efGLNoblOaM/TwBftTOh2rI/AAAAAAAABEI/k8Hc6KZxe7Q/s200/pinhan+elif+%25C5%259Fefak.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v442"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="pinhan elif _efak.png";filename*=UTF-8''pinhan%20elif%20%C5%9Fefak.png
Content-Type: image/png
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 57633
X-XSS-Protection: 0
4.bp.blogspot.com/-AShv07KA4Rs/TwBd_Gzqc3I/AAAAAAAABDw/wAq35YoIcm8/s200/%25C5%259Eehrin+Aynalar%25C4%25B1+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 8.0 kB URL HTTP/1.1 4.bp.blogspot.com/-AShv07KA4Rs/TwBd_Gzqc3I/AAAAAAAABDw/wAq35YoIcm8/s200/%25C5%259Eehrin+Aynalar%25C4%25B1+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 140x200, components 3\012- data
Hash 5603781ca46d51e8a11a61221b353b3e
e1c55e035c5be841af712a48bbd0c0018bd0d08a
d64e78d811d13d82145de899235434c36695bd3d731ea02bb84fb8937b3c9503
GET /-AShv07KA4Rs/TwBd_Gzqc3I/AAAAAAAABDw/wAq35YoIcm8/s200/%25C5%259Eehrin+Aynalar%25C4%25B1+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43c"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="_ehrin Aynalar_ elif _afak.jpg";filename*=UTF-8''%C5%9Eehrin%20Aynalar%C4%B1%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 7966
X-XSS-Protection: 0
3.bp.blogspot.com/-vpwl4cbNyiE/TwBjsY98msI/AAAAAAAABFY/N78d_ZeBUBc/s200/bit+palas+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 3.bp.blogspot.com/-vpwl4cbNyiE/TwBjsY98msI/AAAAAAAABFY/N78d_ZeBUBc/s200/bit+palas+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 132x200, components 3\012- data
Hash b8d251426a2bcc6404f1ab81cea6b82d
b99fd01f712f6e5a1a04fd0fa7b83d2d35849b08
651020d4e4d1087389e5954558566d09e0bb1f3a6f4e488673bfa4ad2a541f61
GET /-vpwl4cbNyiE/TwBjsY98msI/AAAAAAAABFY/N78d_ZeBUBc/s200/bit+palas+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v456"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="bit palas elif _afak.jpg";filename*=UTF-8''bit%20palas%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 12875
X-XSS-Protection: 0
www.blogger.com/img/logo-16.png
142.250.74.105200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 142.250.74.105:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 04:27:52 GMT
Expires: Wed, 30 Nov 2022 04:27:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Content-Type: image/png
Age: 284337
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com
216.58.207.194200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com
IP 216.58.207.194:0
File type ASCII text, with very long lines (6090)
Size 120 kB (119607 bytes)
Hash 5fe362e6e5682bbd3bcebcf223e49e87
ba3722eb4c958b904cd3849ee9c2a9a38441448f
c462bcff8b6feba77c3eddc657dcb8c45e536d826790eefda08a53916ea8c9f8
GET /pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 26 Nov 2022 11:26:49 GMT
expires: Sat, 26 Nov 2022 11:26:49 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 16864839366418013625
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119607
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-THa3YQwxgKU/TwBookYlvCI/AAAAAAAABGs/jScyS6mz-Sc/s200/araf+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 1.bp.blogspot.com/-THa3YQwxgKU/TwBookYlvCI/AAAAAAAABGs/jScyS6mz-Sc/s200/araf+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 133x200, components 3\012- data
Hash 76838f5654c356f37c277b4251f8a487
2ca5b755d76614681466af8f80cfeb933017621d
c90e1388b3555ac81651ea5a9bde4a97a11591775b0113580b4ad7bd5b0f526f
GET /-THa3YQwxgKU/TwBookYlvCI/AAAAAAAABGs/jScyS6mz-Sc/s200/araf+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v46b"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="araf elif _afak.jpg";filename*=UTF-8''araf%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 12793
X-XSS-Protection: 0
1.bp.blogspot.com/-HC1KaLeTKkc/TwBgVhj65nI/AAAAAAAABEU/g0FrGvOkYsg/s200/Med-+Cezir+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 1.bp.blogspot.com/-HC1KaLeTKkc/TwBgVhj65nI/AAAAAAAABEU/g0FrGvOkYsg/s200/Med-+Cezir+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash 615dfb0ab81a549bd399d5f240543a81
327957947855108e309df3e70c11548ef337bfb5
24bedc25628efd34c2580e5e79acb3121f0a53cffd00f6b2f76057125d067abb
GET /-HC1KaLeTKkc/TwBgVhj65nI/AAAAAAAABEU/g0FrGvOkYsg/s200/Med-+Cezir+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v445"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Med- Cezir elif _afak.jpg";filename*=UTF-8''Med-%20Cezir%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 11764
X-XSS-Protection: 0
1.bp.blogspot.com/-xKoL0LqRo0o/TwBhwy9GW4I/AAAAAAAABEs/NrDry6F-o5E/s200/ka%25C4%259F%25C4%25B1t+helva+al%25C4%25B1nt%25C4%25B1lar+kitab%25C4%25B1.jpg
142.250.74.161200 OK 7.6 kB URL HTTP/1.1 1.bp.blogspot.com/-xKoL0LqRo0o/TwBhwy9GW4I/AAAAAAAABEs/NrDry6F-o5E/s200/ka%25C4%259F%25C4%25B1t+helva+al%25C4%25B1nt%25C4%25B1lar+kitab%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 137x200, components 3\012- data
Hash 0d779ccd17a32e231c08d3a236e8a315
57bf995d9fd99815ae8038bf3edc5af6c947f49c
06f8890278896f32c085a270275e49d37d96d5ce5d982e566a368dc40b96f00f
GET /-xKoL0LqRo0o/TwBhwy9GW4I/AAAAAAAABEs/NrDry6F-o5E/s200/ka%25C4%259F%25C4%25B1t+helva+al%25C4%25B1nt%25C4%25B1lar+kitab%25C4%25B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v44b"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="ka__t helva al_nt_lar kitab_.jpg";filename*=UTF-8''ka%C4%9F%C4%B1t%20helva%20al%C4%B1nt%C4%B1lar%20kitab%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 7622
X-XSS-Protection: 0
4.bp.blogspot.com/-ZDlFOnP7wf8/TwBmH9jinkI/AAAAAAAABGI/-d883lRAaew/s200/be%25C5%259Fpe%25C5%259Fe+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 16 kB URL HTTP/1.1 4.bp.blogspot.com/-ZDlFOnP7wf8/TwBmH9jinkI/AAAAAAAABGI/-d883lRAaew/s200/be%25C5%259Fpe%25C5%259Fe+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 134x200, components 3\012- data
Hash 79b94b22d99c5b73a74763ef963c18c8
5f43da66ef67b67085bb40ba297354f033fa9820
c376fb6244707b2bc9ff42e5bb19e285b97d23661be63230d6f0b3d84aedbba9
GET /-ZDlFOnP7wf8/TwBmH9jinkI/AAAAAAAABGI/-d883lRAaew/s200/be%25C5%259Fpe%25C5%259Fe+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v462"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="be_pe_e elif _afak.jpg";filename*=UTF-8''be%C5%9Fpe%C5%9Fe%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 15587
X-XSS-Protection: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 11:11:12 GMT
cache-control: public,max-age=3600
age: 937
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
3.bp.blogspot.com/-J3hihfPMehI/TwBlio_WfMI/AAAAAAAABF8/0ElRCkBg5EU/s200/Kem_gozlere_anadolu.jpg
142.250.74.161200 OK 14 kB URL HTTP/1.1 3.bp.blogspot.com/-J3hihfPMehI/TwBlio_WfMI/AAAAAAAABF8/0ElRCkBg5EU/s200/Kem_gozlere_anadolu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash ae7ea97751c97c7e66dfc65b95081d2c
18eadb7d2672ff5eacb18e60d80db4bb31f149ea
a753be47c160619494efbb131b5debd35bc5a1aca2c955761842ea794b0a205c
GET /-J3hihfPMehI/TwBlio_WfMI/AAAAAAAABF8/0ElRCkBg5EU/s200/Kem_gozlere_anadolu.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v45f"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Kem_gozlere_anadolu.jpg"
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 13602
X-XSS-Protection: 0
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-oku.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:49 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18e"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:49 GMT
Expires: Sat, 26 Nov 2022 09:45:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vc14"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 49580bf15d6c9cd5b8571621b4e8141c
8e889626f8507eebff70a7e5c74c7348a364c64d
3424d8286f316866dad95f4686bb070e35be4ee7c12cb0975bb159731208b7ae
GET /-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-okumak.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4949
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 11:26:49 GMT
Expires: Sat, 26 Nov 2022 09:45:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ve28"
Content-Type: image/jpeg
Age: 0
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Elif%2520%25C5%259Eafak&w=1280&h=1024&n=1&ce=true&r=0.4036610332705127&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Elif%2520%25C5%259Eafak&w=1280&h=1024&n=1&ce=true&r=0.4036610332705127&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/Elif%2520%25C5%259Eafak&w=1280&h=1024&n=1&ce=true&r=0.4036610332705127&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:48 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Fri, 25-Nov-2022 11:26:45 GMT; path=/
ASP.NET_SessionId=lioxdoyyzzex0vwjxfnjhv5n; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Sun, 27-Nov-2022 11:26:45 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:45 GMT
Content-Length: 339
2.bp.blogspot.com/-XMAt1ojJNkc/TwBdWWdvfiI/AAAAAAAABDk/1yj7Kwwoig4/s200/The+Bastard+of+Istanbul+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 17 kB URL HTTP/1.1 2.bp.blogspot.com/-XMAt1ojJNkc/TwBdWWdvfiI/AAAAAAAABDk/1yj7Kwwoig4/s200/The+Bastard+of+Istanbul+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 130x200, components 3\012- data
Hash a0f4cb5dfca18f76aaa99c0e1c31e819
1b925ec9604706a0e8354dc36323e225f440ac22
3aa6562a07218b75da7c9040e2687578f3048a6dbac0b188b9bd3b542d1d37b3
GET /-XMAt1ojJNkc/TwBdWWdvfiI/AAAAAAAABDk/1yj7Kwwoig4/s200/The+Bastard+of+Istanbul+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v439"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="The Bastard of Istanbul elif _afak.jpg";filename*=UTF-8''The%20Bastard%20of%20Istanbul%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 16871
X-XSS-Protection: 0
2.bp.blogspot.com/-Pvx1WuRloxg/TwBikF0ChBI/AAAAAAAABE4/U3rsBKgiH8I/s200/iskender+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/-Pvx1WuRloxg/TwBikF0ChBI/AAAAAAAABE4/U3rsBKgiH8I/s200/iskender+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 137x200, components 3\012- data
Hash 7a4177084dfc3fac4a59425f3ae9d45b
8c2ab09642a7b29163f7156c16776a28c035efc6
6ac797aa12031a7d76c6fce1b1cc827015e3f96504a7f475f12ac4183b8a9221
GET /-Pvx1WuRloxg/TwBikF0ChBI/AAAAAAAABE4/U3rsBKgiH8I/s200/iskender+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v44e"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="iskender elif _afak.jpg";filename*=UTF-8''iskender%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 11533
X-XSS-Protection: 0
2.bp.blogspot.com/-7k3r0Emwg7Y/TwBg8lWilTI/AAAAAAAABEg/4WwjQlZEdZc/s200/mahrem+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 9.1 kB URL HTTP/1.1 2.bp.blogspot.com/-7k3r0Emwg7Y/TwBg8lWilTI/AAAAAAAABEg/4WwjQlZEdZc/s200/mahrem+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 139x200, components 3\012- data
Hash a12eceae095de2a4636b79534f0a6aaa
efb94e10cf9b00e224d0fa14beb09aff93a2b975
6eee29830eca642306281b24de2c683a26feaa86cdca848e6dcdb1410ac7e394
GET /-7k3r0Emwg7Y/TwBg8lWilTI/AAAAAAAABEg/4WwjQlZEdZc/s200/mahrem+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v448"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="mahrem elif _afak.jpg";filename*=UTF-8''mahrem%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 9093
X-XSS-Protection: 0
2.bp.blogspot.com/-7Nsi1NkJMus/TwBkS3VNh6I/AAAAAAAABFk/zzd_9DqvK10/s200/baba+ve+pi%25C3%25A7+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 2.bp.blogspot.com/-7Nsi1NkJMus/TwBkS3VNh6I/AAAAAAAABFk/zzd_9DqvK10/s200/baba+ve+pi%25C3%25A7+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 145x200, components 3\012- data
Hash 566ddde76d1ec66cb792c612d6e361cf
938216464a2772287773f563dc90c953d3496756
6d32bc215f9cf31fd31a059177115e1fb997b8ca39c9388b483040551e917188
GET /-7Nsi1NkJMus/TwBkS3VNh6I/AAAAAAAABFk/zzd_9DqvK10/s200/baba+ve+pi%25C3%25A7+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v459"
Expires: Sun, 27 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="baba ve pi_ elif _afak.jpg";filename*=UTF-8''baba%20ve%20pi%C3%A7%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 12658
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-nKE-LM1E6pk/TwBnKG7YarI/AAAAAAAABGU/y4TWPatcufk/s200/The+Flea+Palace+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/-nKE-LM1E6pk/TwBnKG7YarI/AAAAAAAABGU/y4TWPatcufk/s200/The+Flea+Palace+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 140x200, components 3\012- data
Hash 29f1c217a58e407814fcc30073c837cb
fc902a884b850acf7630b62b0825b1b37a8019f3
b735cc0d2ab390dbff8164fa5aa0ef72540fc6a12083d2c2b4ec09e3af7fa779
GET /-nKE-LM1E6pk/TwBnKG7YarI/AAAAAAAABGU/y4TWPatcufk/s200/The+Flea+Palace+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v465"
Expires: Sun, 27 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="The Flea Palace elif _afak.jpg";filename*=UTF-8''The%20Flea%20Palace%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 12175
X-XSS-Protection: 0
1.bp.blogspot.com/-dRkK12ZuLQw/TwBk8affDYI/AAAAAAAABFw/TaBVwuPdyBE/s200/The+Forty+Rules+of+Love+elif+safak.jpg
142.250.74.161200 OK 22 kB URL HTTP/1.1 1.bp.blogspot.com/-dRkK12ZuLQw/TwBk8affDYI/AAAAAAAABFw/TaBVwuPdyBE/s200/The+Forty+Rules+of+Love+elif+safak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 132x200, components 3\012- data
Hash 3c35924743b2c17fcb6e0104337a6916
57e0c154ddca7592cc33560bd59f6cc51141e460
33f210fbdda1cf04c0686b254c9093c699405050059285b8e78c015a381a776a
GET /-dRkK12ZuLQw/TwBk8affDYI/AAAAAAAABFw/TaBVwuPdyBE/s200/The+Forty+Rules+of+Love+elif+safak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v45c"
Expires: Sun, 27 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="The Forty Rules of Love elif safak.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 21537
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5251
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Last-Modified: Sat, 26 Nov 2022 09:59:18 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
2.bp.blogspot.com/-1mSoAxrgw4Y/TwBjJ--YvuI/AAAAAAAABFM/mXlGBcGlhJ8/s200/firarperest+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 2.bp.blogspot.com/-1mSoAxrgw4Y/TwBjJ--YvuI/AAAAAAAABFM/mXlGBcGlhJ8/s200/firarperest+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 136x200, components 3\012- data
Hash f14e59fd7177802d35cc6800371b6271
8df1f5990f5120578ffa670101a7d5c45e3b2b4a
2408bc21fe91b5557349a7baaa7c4e279f3b4a6e0e4b1f3211704c1ada2b3ec7
GET /-1mSoAxrgw4Y/TwBjJ--YvuI/AAAAAAAABFM/mXlGBcGlhJ8/s200/firarperest+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v453"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="firarperest elif _afak.jpg";filename*=UTF-8''firarperest%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 13156
X-XSS-Protection: 0
1.bp.blogspot.com/-tp5-186JmWY/TwBfIm3o9bI/AAAAAAAABD8/2r4EtVppfTg/s200/Siyah+S%25C3%25BCt+elif+%25C5%259Fafak.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 1.bp.blogspot.com/-tp5-186JmWY/TwBfIm3o9bI/AAAAAAAABD8/2r4EtVppfTg/s200/Siyah+S%25C3%25BCt+elif+%25C5%259Fafak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash 344b1a30cf1d88a904700d7447e6b744
15154b334e6e754e4139a0babe252bbd5a6329cb
bed615141093a75d03592b54504f0b61357fe9ae9b0f5e6cdbfe2fa66795ba93
GET /-tp5-186JmWY/TwBfIm3o9bI/AAAAAAAABD8/2r4EtVppfTg/s200/Siyah+S%25C3%25BCt+elif+%25C5%259Fafak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43f"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Siyah S_t elif _afak.jpg";filename*=UTF-8''Siyah%20S%C3%BCt%20elif%20%C5%9Fafak.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 11:26:49 GMT
Server: fife
Content-Length: 13084
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 69b4c95baca69139e9e4f7e5ffa6bace
a33af721a9defcb815716234aafdb69de7169455
9f752625bea112bc5402067fd695ba893590e6de9844de640a663e4e8fdc1475
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDFhkioJ35Ud1uON7LN6fVYnnicKY23QMMMl_FeFS8kGleihylcDJNUZZiEC_VemQPpVc-pJASpK2RaWOXSiszutcI2Cg
142.250.74.161200 OK 241 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDFhkioJ35Ud1uON7LN6fVYnnicKY23QMMMl_FeFS8kGleihylcDJNUZZiEC_VemQPpVc-pJASpK2RaWOXSiszutcI2Cg
IP 142.250.74.161:0
File type JSON data\012- , ASCII text, with very long lines (384), with no line terminators
Hash b575baf6b93ef98b3c0145a0c7b48735
ad4baf220afd3ef9416efd7f4d7551f4bc1ae066
f24e9a393236953e7d27dce808b0d1e367b3107314cb60813bf32e9fdc96b77d
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDFhkioJ35Ud1uON7LN6fVYnnicKY23QMMMl_FeFS8kGleihylcDJNUZZiEC_VemQPpVc-pJASpK2RaWOXSiszutcI2Cg HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Elif%20%C5%9Eafak
Cookie: cwou_bookwormbilgeadam=1669462008; bwou_bookwormbilgeadam=1669462008; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 11:26:49 GMT
Expires: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 241
Server: GSE
partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
172.217.21.162200 OK 250 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 4202d0eb49b482d14c9c222d567523ef
c1ecd32b312d32505523f113b7a67a851d0de14a
6da11b00cee34a090616d9bbb79e0309e9a2f4bed4cd314439ce1ffe725e2c69
GET /gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 26 Nov 2022 11:26:49 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 26 Nov 2022 11:26:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 26 Nov 2022 11:26:49 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 69b4c95baca69139e9e4f7e5ffa6bace
a33af721a9defcb815716234aafdb69de7169455
9f752625bea112bc5402067fd695ba893590e6de9844de640a663e4e8fdc1475
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.8 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1088), with CRLF line terminators
Hash 1fd818a552c00c8c6bb8206ab6713549
2752e2cc877955600dc6bc76c15640e47a850657
fce34a728e41dcecb5b3f3de4210c260a56a10e27dd1d3f5545b8b1b7ce56a74
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Fri, 25-Nov-2022 11:26:46 GMT; path=/
ASP.NET_SessionId=125njeuqpe3pt1bucllgbrxp; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:45 GMT
Content-Length: 2806
push.services.mozilla.com/
54.191.251.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.251.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pI21/hX29PPDZVLOzx5wrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tz+ZbKUH6oenttcPJWjJgUQH3oo=
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 3.8 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 831bfb2011ab0da1d51503b7dda1fae4
3ec4e8923af24f409f677b7b6854c7edc12579d4
ca96095b9f75e006fc94db9a98bd5f6283ebe595427b4b3f42249414cb0dbb00
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "1d9ac76cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:45 GMT
Content-Length: 3774
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:45 GMT
Content-Length: 43
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:46 GMT
Content-Length: 1261
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:46 GMT
Content-Length: 3993
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 816d70da869514eb692b661a8226d9c1
a89905476481099656b3461acd454ad11ad5584d
cd03b16cdd0d63deb1336dec06481a119a46359358605c8faca8955f90939a34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 816d70da869514eb692b661a8226d9c1
a89905476481099656b3461acd454ad11ad5584d
cd03b16cdd0d63deb1336dec06481a119a46359358605c8faca8955f90939a34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.162200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.162:0
File type ASCII text, with very long lines (3502)
Hash 297e24828abaf97fb29460fd75369140
e9e02d737f1bcf9874a55562edff5f795a1c170c
cdbe4e689ca060e94f00f0aa4c45a89efacddac90df42929ff42a3bff44a9d3e
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48265
date: Sat, 26 Nov 2022 11:26:50 GMT
expires: Sat, 26 Nov 2022 11:26:50 GMT
cache-control: private, max-age=3000
etag: "1668095300071091"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 22992fd74cd15d18bd692f6beda86d99
0d7bcf1d3bd47c158f8644725686f3789f637473
7cd4e32f3564daacbed1b6b25b53a4cf696e5355172133c9aa663facc62eefb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5741
Cache-Control: max-age=134529
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "63814c0e-139"
Expires: Mon, 28 Nov 2022 00:48:59 GMT
Last-Modified: Fri, 25 Nov 2022 23:13:18 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 22992fd74cd15d18bd692f6beda86d99
0d7bcf1d3bd47c158f8644725686f3789f637473
7cd4e32f3564daacbed1b6b25b53a4cf696e5355172133c9aa663facc62eefb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5741
Cache-Control: max-age=134529
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "63814c0e-139"
Expires: Mon, 28 Nov 2022 00:48:59 GMT
Last-Modified: Fri, 25 Nov 2022 23:13:18 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 22992fd74cd15d18bd692f6beda86d99
0d7bcf1d3bd47c158f8644725686f3789f637473
7cd4e32f3564daacbed1b6b25b53a4cf696e5355172133c9aa663facc62eefb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4056
Cache-Control: max-age=132844
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "63814c0e-139"
Expires: Mon, 28 Nov 2022 00:20:54 GMT
Last-Modified: Fri, 25 Nov 2022 23:13:18 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
bookworm-bilgeadam.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/Elif%20%C5%9Eafak
Cookie: cwou_bookwormbilgeadam=1669462008; bwou_bookwormbilgeadam=1669462008; woubookwormbilgeadam=t; _ga=GA1.3.1121399261.1669462009; _gid=GA1.3.1925107611.1669462009; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Sat, 26 Nov 2022 11:26:50 GMT
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0fDcYfLDic3tH_VE2UNUrWkrPBaqUl-FAPuBIrSbzsUZptlWPfjfAJ9phOlRTl2Jv9GnNSEEOFByNM8axrZ3Z_jV_hi1MNCPSnHBoGe2YOeIYR6-grnrhqik2y1UOUQqDCzOQab5Tlu5cZKo7Ops2QdA=w72-h72-p-k-no-nu
142.250.74.33404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0fDcYfLDic3tH_VE2UNUrWkrPBaqUl-FAPuBIrSbzsUZptlWPfjfAJ9phOlRTl2Jv9GnNSEEOFByNM8axrZ3Z_jV_hi1MNCPSnHBoGe2YOeIYR6-grnrhqik2y1UOUQqDCzOQab5Tlu5cZKo7Ops2QdA=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 84028300d681ae4964bc11a4be8150b2
b42be657145295b0dc7046ade1c2e6ce74d5c632
2b8a0a5cf78fb4c13c8e833dfa562c1a23e605447cc1989843da1eb28dfea037
GET /blogger_img_proxy/ANbyha0fDcYfLDic3tH_VE2UNUrWkrPBaqUl-FAPuBIrSbzsUZptlWPfjfAJ9phOlRTl2Jv9GnNSEEOFByNM8axrZ3Z_jV_hi1MNCPSnHBoGe2YOeIYR6-grnrhqik2y1UOUQqDCzOQab5Tlu5cZKo7Ops2QdA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 11:26:50 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 198652
expires: Thu, 16 Nov 2023 11:26:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s0CGOtIDdQZcQt9CnzMlauigdciFvPIjltSnAf3ih7XXPH6GzuBYkUAkCzuE3fky1iDPcZdlnJLpjCLfKhNGdXwSiCx%2FGVSyIatA%2F1nqauPcdDMIbxWkc%2FjXmVg15QBGN%2FNZDSi%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7702457d4adf0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f6a800119071c7159cbf159aa1f82995
ee97010129796d6d854fa4cbd218c8e179012623
bab27de2b2881e381b7bc9c8b95ef023514af2597ad6df54caff7d3a592e3a01
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2445
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "6380c4fb-13a"
Last-Modified: Sat, 26 Nov 2022 10:46:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f6a800119071c7159cbf159aa1f82995
ee97010129796d6d854fa4cbd218c8e179012623
bab27de2b2881e381b7bc9c8b95ef023514af2597ad6df54caff7d3a592e3a01
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3595
Cache-Control: max-age=97804
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "6380c4fb-13a"
Expires: Sun, 27 Nov 2022 14:36:54 GMT
Last-Modified: Fri, 25 Nov 2022 13:36:59 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3852b37eaf8eba233a2ee7fe68e5e37a
3bdd2fd87ab90d0d47bc13c4f7f62574ed227a76
bda9bbb7a73b5f06187e8e2e307643de64055d7c0107b7a07a9a71034978ed4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5272
Cache-Control: max-age=162861
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "6381bc8f-13a"
Expires: Mon, 28 Nov 2022 08:41:11 GMT
Last-Modified: Sat, 26 Nov 2022 07:13:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPn3gWMf8q598B3H5K0nhwASAAA&wp=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPn3gWMf8q598B3H5K0nhwASAAA&wp=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEPn3gWMf8q598B3H5K0nhwASAAA&wp=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 303589
date: Sat, 26 Nov 2022 11:26:49 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EPn3gWOuHclVcK-p-44xmAASAAA&wp=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EPn3gWOuHclVcK-p-44xmAASAAA&wp=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EPn3gWOuHclVcK-p-44xmAASAAA&wp=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 290292
date: Sat, 26 Nov 2022 11:26:49 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPn3gWOFTRwJ_apHPEDZKwASAAA&wp=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPn3gWOFTRwJ_apHPEDZKwASAAA&wp=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEPn3gWOFTRwJ_apHPEDZKwASAAA&wp=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 274569
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 65efe7f3aa922f3aa44fa09cb6a2a4bb
3f52b1246b4267831ff0e90ec5e4159aba69c54c
51f678bf96aab273d791b2fbea9dacd21a2585bdf8c2951f1f0bc1815af825c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4630
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:09:40 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 075b978d5014c00a9cb96e9971337061
68c7c339233a16b5ab4c2e4814fe479b1b467ebd
8f6a792b948278a69165b1c2108c488cfd8df36b3d21e7b3964f5ca3cc879422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2178
Cache-Control: max-age=125531
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "638136d3-138"
Expires: Sun, 27 Nov 2022 22:19:01 GMT
Last-Modified: Fri, 25 Nov 2022 21:42:43 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 312
static.criteo.net/design/dt/93075/221121/2c9ea350b1474e0f85fd911d8620596c_cpn_300x600_1.jpg
178.250.2.130200 OK 6.5 kB URL HTTP/2 static.criteo.net/design/dt/93075/221121/2c9ea350b1474e0f85fd911d8620596c_cpn_300x600_1.jpg
IP 178.250.2.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x54, components 3\012- data
Hash 181cabb99fbe02577b2ae7a483383afa
b49e2444deda8b0f98fe9c9ea2ca082c2fcf1da4
6ffff14776b784b20b2af9dcf3b9503c6db1b0226887dfb7ed00f994e57b9b14
GET /design/dt/93075/221121/2c9ea350b1474e0f85fd911d8620596c_cpn_300x600_1.jpg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/jpeg
content-length: 6512
last-modified: Mon, 21 Nov 2022 15:51:36 GMT
etag: "637b9e88-1970"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 075b978d5014c00a9cb96e9971337061
68c7c339233a16b5ab4c2e4814fe479b1b467ebd
8f6a792b948278a69165b1c2108c488cfd8df36b3d21e7b3964f5ca3cc879422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:49:36 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
static.criteo.net/design/dt/93075/221121/ae2dfafcb7cb4137bee9958c3203388b_cpn_300x600_2.jpg
178.250.2.130200 OK 42 kB URL HTTP/2 static.criteo.net/design/dt/93075/221121/ae2dfafcb7cb4137bee9958c3203388b_cpn_300x600_2.jpg
IP 178.250.2.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x600, components 3\012- data
Hash d4ea9d964d4b6010249f4f3794e50ac4
b3db15cc13c9189e9ec51640c675bc5e38d7f435
ed36b9a4b932a01bf484612cdb8a6756dbd28ebd28153ade9e1c097902285aa8
GET /design/dt/93075/221121/ae2dfafcb7cb4137bee9958c3203388b_cpn_300x600_2.jpg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/jpeg
content-length: 41801
last-modified: Mon, 21 Nov 2022 15:51:36 GMT
etag: "637b9e88-a349"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/93075/221121/db4e18426ce049d784e2846e2ca5423a_cpn_300x250_1.jpg
178.250.2.130200 OK 6.0 kB URL HTTP/2 static.criteo.net/design/dt/93075/221121/db4e18426ce049d784e2846e2ca5423a_cpn_300x250_1.jpg
IP 178.250.2.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x40, components 3\012- data
Hash c6f47b54dbe4e894c93237ebe3fafe00
21ab37f8bfa5e7755d3e06b0a5e0d8d8f33a2eb2
148764b8359686fcc627a57d8c08a6d1b1d2d409e8c24118145f7ee369a34292
GET /design/dt/93075/221121/db4e18426ce049d784e2846e2ca5423a_cpn_300x250_1.jpg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/jpeg
content-length: 6024
last-modified: Mon, 21 Nov 2022 15:51:33 GMT
etag: "637b9e85-1788"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/93075/221121/995c0fb85195468d83f743c14f946768_cpn_300x250_2.jpg
178.250.2.130200 OK 26 kB URL HTTP/2 static.criteo.net/design/dt/93075/221121/995c0fb85195468d83f743c14f946768_cpn_300x250_2.jpg
IP 178.250.2.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x250, components 3\012- data
Hash c34045d131917d7db153a3b6dbe04503
595b0d5f686cd63b7a69f248ef5f87ef4b54da3b
4257ec89f53eb86f7137d3182b21f637d88401e340a58a921908d92612b8a91d
GET /design/dt/93075/221121/995c0fb85195468d83f743c14f946768_cpn_300x250_2.jpg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/jpeg
content-length: 26230
last-modified: Mon, 21 Nov 2022 15:51:34 GMT
etag: "637b9e86-6676"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 075b978d5014c00a9cb96e9971337061
68c7c339233a16b5ab4c2e4814fe479b1b467ebd
8f6a792b948278a69165b1c2108c488cfd8df36b3d21e7b3964f5ca3cc879422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2178
Cache-Control: max-age=125531
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "638136d3-138"
Expires: Sun, 27 Nov 2022 22:19:01 GMT
Last-Modified: Fri, 25 Nov 2022 21:42:43 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 075b978d5014c00a9cb96e9971337061
68c7c339233a16b5ab4c2e4814fe479b1b467ebd
8f6a792b948278a69165b1c2108c488cfd8df36b3d21e7b3964f5ca3cc879422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2234
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:49:36 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 312
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d7716ef06a1df64cce636c09d6f6bce3
6d70b77d7dcb7a259e3d3123569554bcd02d5a41
20ac5e43cb4c169b6db528c8e6ec7afdadadb58b2d2f8f209e3832a88621f328
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4360
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:14:10 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d7716ef06a1df64cce636c09d6f6bce3
6d70b77d7dcb7a259e3d3123569554bcd02d5a41
20ac5e43cb4c169b6db528c8e6ec7afdadadb58b2d2f8f209e3832a88621f328
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4360
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:14:10 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7fa5ca98e7e8f7efb0eb8c79af8
37.157.4.39302 Found 810 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7fa5ca98e7e8f7efb0eb8c79af8
IP 37.157.4.39:0
Hash 3eea0facff054ef828ff5b753c6491a5
fb596598a84f57592f4017ec00805ac0cf0b8dcd
64b419fb73e22a2ef8cb8fbc13df60ef4864734c00a019b9d0a8b7f8e3e44bd5
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7fa5ca98e7e8f7efb0eb8c79af8 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d7716ef06a1df64cce636c09d6f6bce3
6d70b77d7dcb7a259e3d3123569554bcd02d5a41
20ac5e43cb4c169b6db528c8e6ec7afdadadb58b2d2f8f209e3832a88621f328
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4594
Cache-Control: max-age=91613
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Etag: "6380a8e5-139"
Expires: Sun, 27 Nov 2022 12:53:43 GMT
Last-Modified: Fri, 25 Nov 2022 11:37:09 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=400
178.250.2.135200 OK 28 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1579cf890b816206889a2b4b51240f76
bd5995b4cfecca8caa29b77f5251c38cec8ee028
346358815d56f2e77f5c25d8c733647688a0772af6af571647d5c767b82b92e9
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=40191
expires: Sat, 26 Nov 2022 22:36:41 GMT
date: Sat, 26 Nov 2022 11:26:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 28004
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d7716ef06a1df64cce636c09d6f6bce3
6d70b77d7dcb7a259e3d3123569554bcd02d5a41
20ac5e43cb4c169b6db528c8e6ec7afdadadb58b2d2f8f209e3832a88621f328
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4360
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Last-Modified: Sat, 26 Nov 2022 10:14:10 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 980 B URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type gzip compressed data, from Unix\012- data
Hash 1a5e581283f3e06d0fe53abc7b32fc88
ed3ea916962bba80677781a706dcce51a8ded664
d816f8ae26a0b4aa0669702b5989f851a29749c1ba9db58f1f5b327689103b74
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Sat, 26 Nov 2022 11:26:46 GMT
Content-Length: 3282
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=400&s=hjdljU1ziWEa_f7II4prebMe&b=400
178.250.2.135200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=400&s=hjdljU1ziWEa_f7II4prebMe&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f20cbb64d092ce7df97f73991a3bebc
5e003d22dc22c75ce79a71e8dab023a93cfdee6d
976e0ca2020a24c4b489082560c7bd3b25a17a55cc1d9914415af2790afd269b
GET /img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=400&s=hjdljU1ziWEa_f7II4prebMe&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Sat, 26 Nov 2022 11:26:50 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24746
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld
178.250.2.135200 OK 8.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld
IP 178.250.2.135:0
File type PNG image data, 303 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef7dec6ed3643af4cfd629df62c412d
fcc40d1d3c3ac72e8a09ba34214d38b38c652d07
b992d1d1082d07656bca4d92b4ff0e85fdee67ef495ded576f5204b7c66f39db
GET /img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30976959
expires: Mon, 20 Nov 2023 00:09:30 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8932
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=400&s=ziHsE2LDtOq5LnqQeK7XOzO3&b=400
178.250.2.135200 OK 27 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=400&s=ziHsE2LDtOq5LnqQeK7XOzO3&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53f5099e2a92dbc1ae2997c1d31b3977
7f55a5a511f5e9a72870c4b72a554340281f6e15
c87cf607dd7cbaafbc89e0e4c6d3c02675bd8784ae8a89a99bfa1b5e2027fc4e
GET /img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=400&s=ziHsE2LDtOq5LnqQeK7XOzO3&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28628
expires: Sat, 26 Nov 2022 19:23:59 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 26722
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=400&s=z5ncGvZLGEdE9tvrEGi7R8Kc&b=400
178.250.2.135200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=400&s=z5ncGvZLGEdE9tvrEGi7R8Kc&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f7863e88f43aa96bc60769aed70eb75
aeca7c00e1347dd2f26280adefe03c0aa03d0654
33813d7d8b1f1b6c7d5b5074a772f0b708187972055199628091b437026cb494
GET /img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=400&s=z5ncGvZLGEdE9tvrEGi7R8Kc&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=37097
expires: Sat, 26 Nov 2022 21:45:07 GMT
date: Sat, 26 Nov 2022 11:26:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20366
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
109.232.197.110302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 26 Nov 2022 11:26:50 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400
178.250.2.135200 OK 36 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0bf18cd98dbd602e442357088b3f4299
b6e2b5999c0510e8215415d1ce305fae089dd37c
a1fb4fda9e1911d5a065cc0e9320c136cd455301ebcb481fb906a89dbf29c08b
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=4100
expires: Sat, 26 Nov 2022 12:35:11 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 35588
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
IP 178.250.2.135:0
File type PNG image data, 196 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash bc381116221b106493d972a9262c65e3
980f03704c3d56409200806ffc1b8269240383a4
391ed2f12f92968f164c061b48e5421254b9aae4dfce080b727d60dd6c1cb72e
GET /img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30984449
expires: Mon, 20 Nov 2023 02:14:20 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10921
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400
178.250.2.135200 OK 27 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53f5099e2a92dbc1ae2997c1d31b3977
7f55a5a511f5e9a72870c4b72a554340281f6e15
c87cf607dd7cbaafbc89e0e4c6d3c02675bd8784ae8a89a99bfa1b5e2027fc4e
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=28628
expires: Sat, 26 Nov 2022 19:23:59 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 26722
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=800&s=ZzegjABv24KzmhXXOgjHwHL6&b=400
178.250.2.135200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=800&s=ZzegjABv24KzmhXXOgjHwHL6&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f7863e88f43aa96bc60769aed70eb75
aeca7c00e1347dd2f26280adefe03c0aa03d0654
33813d7d8b1f1b6c7d5b5074a772f0b708187972055199628091b437026cb494
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A04d08c03-cee2-4f89-8bb4-c319b9be52cf%2FParadisus-Gran-Canaria_1-SQUARE_800X800.jpg&v=3&w=800&s=ZzegjABv24KzmhXXOgjHwHL6&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=37096
expires: Sat, 26 Nov 2022 21:45:07 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20366
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
IP 178.250.2.135:0
File type PNG image data, 415 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash e9b0fd59da29f2602796f49b90db422f
ea6484f5cf21f1bb301e9c98b1fd22f22f786bee
4ebe73165f0a173af9aaf37d37dd09ceee42cc06dadad2d10c564e3c39558128
GET /img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30976959
expires: Mon, 20 Nov 2023 00:09:30 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14495
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA&u=%7CXYRfmU6K4ANe7HpJoSMRcBgMEsWvilfwm68wcC7T32I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrv3M8pFrUADkH78gWb6f3KeDf3l2f5vzLZdudFB3B9IsJT0flH0YeWvyLA_d_riDLrgsWFNRXJcpNo1LpgXa2cfmmazn3FZ7cG3ouMU2TmTakc3STSHdYR1kwhH3MY7AVcP4EMvZg2YscqNxzR6ARIOZUBY9yxf2l1w8RDRAQ6ZOJFNyMIamgdyei5N9Fv5Lv6HaLqKi3mhT0W3zK4UhvIMiEq0fP9hooXGwvpo5kAcqo_czOeSpaS9whzI03Be1ymOA9juB-yoCtMnV8dt_qLio6-pIuo0Q9b45Q1Wbb-Lc0nb6-J1nKpf6dHCQrNQCLPf7fzd5bGAWSlJykyd6WfhFdD9ptP9tfBFNDUIyPakQ8Q1prIrBUVIYN_ljSHJfz9qkuW93LBI3YSMkNVBoaveC4VD3fzxrIGXwHF83v1KazKbz5cp0_8SmI-jmARfeoWN9SHJs6B0C9G_e_4FW-i-mbE8tHcWxUHMoK_paeQ2DRIYgm_G4UsA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbOGf-feBY4GHLsOKmAegubPoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKwCT9CTHhO-3jyR-iUXiDHGEqJ748VXMbWtHYbnzR6teVwCe0bF7bQUXZcM3Ab5UXdDUnULoqHUOyRgh3e1A6vn1BhUAo5V0Dui8pzblprkpdnjHXE2dQy_LxnqO7rkvpg9MzS_iVoEncoPUxxuH3XblsCt0_o__lECcoZvDvE2n4PtWTi9ab_zlGQmRAclfhkGkcxY59Igl0afzjo0-mCBl1Fy3OtKSBE3qv61-bcx76URbDiw9RVIRTO4MWOvjZxF-MtRteRW5p-ZMH07iTstgLQXWj7HYyNM6padS7gmHFAYiJslQ-afg8aOxS1Vk6uyHR_FhBxb4497Q5jliqnno9gWMyirAFUVt1K26-YqZZjyQY9ZoEzLyixX8iIJMi9rEhxfUoNcMhvLvxoBgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_16b08FIJ4pJCrJzwt_CB-rqR9tdg%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 53 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA&u=%7CXYRfmU6K4ANe7HpJoSMRcBgMEsWvilfwm68wcC7T32I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrv3M8pFrUADkH78gWb6f3KeDf3l2f5vzLZdudFB3B9IsJT0flH0YeWvyLA_d_riDLrgsWFNRXJcpNo1LpgXa2cfmmazn3FZ7cG3ouMU2TmTakc3STSHdYR1kwhH3MY7AVcP4EMvZg2YscqNxzR6ARIOZUBY9yxf2l1w8RDRAQ6ZOJFNyMIamgdyei5N9Fv5Lv6HaLqKi3mhT0W3zK4UhvIMiEq0fP9hooXGwvpo5kAcqo_czOeSpaS9whzI03Be1ymOA9juB-yoCtMnV8dt_qLio6-pIuo0Q9b45Q1Wbb-Lc0nb6-J1nKpf6dHCQrNQCLPf7fzd5bGAWSlJykyd6WfhFdD9ptP9tfBFNDUIyPakQ8Q1prIrBUVIYN_ljSHJfz9qkuW93LBI3YSMkNVBoaveC4VD3fzxrIGXwHF83v1KazKbz5cp0_8SmI-jmARfeoWN9SHJs6B0C9G_e_4FW-i-mbE8tHcWxUHMoK_paeQ2DRIYgm_G4UsA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbOGf-feBY4GHLsOKmAegubPoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKwCT9CTHhO-3jyR-iUXiDHGEqJ748VXMbWtHYbnzR6teVwCe0bF7bQUXZcM3Ab5UXdDUnULoqHUOyRgh3e1A6vn1BhUAo5V0Dui8pzblprkpdnjHXE2dQy_LxnqO7rkvpg9MzS_iVoEncoPUxxuH3XblsCt0_o__lECcoZvDvE2n4PtWTi9ab_zlGQmRAclfhkGkcxY59Igl0afzjo0-mCBl1Fy3OtKSBE3qv61-bcx76URbDiw9RVIRTO4MWOvjZxF-MtRteRW5p-ZMH07iTstgLQXWj7HYyNM6padS7gmHFAYiJslQ-afg8aOxS1Vk6uyHR_FhBxb4497Q5jliqnno9gWMyirAFUVt1K26-YqZZjyQY9ZoEzLyixX8iIJMi9rEhxfUoNcMhvLvxoBgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_16b08FIJ4pJCrJzwt_CB-rqR9tdg%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14021), with CRLF, LF line terminators
Hash 58b64b126481d82ab3e71584b7680237
6dd3f7092edfced1741627e30e2f2b80f99a1580
c899c5c1f14ec5ec2d49b2f55c503c851580374b130fc2c8fbcf3e9ebb347cc2
GET /delivery/r/afr.php?z=Y4H3-QALg4EK5gVDAAzcoMSE_DG_ScQzpJXqlA&u=%7CXYRfmU6K4ANe7HpJoSMRcBgMEsWvilfwm68wcC7T32I%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrv3M8pFrUADkH78gWb6f3KeDf3l2f5vzLZdudFB3B9IsJT0flH0YeWvyLA_d_riDLrgsWFNRXJcpNo1LpgXa2cfmmazn3FZ7cG3ouMU2TmTakc3STSHdYR1kwhH3MY7AVcP4EMvZg2YscqNxzR6ARIOZUBY9yxf2l1w8RDRAQ6ZOJFNyMIamgdyei5N9Fv5Lv6HaLqKi3mhT0W3zK4UhvIMiEq0fP9hooXGwvpo5kAcqo_czOeSpaS9whzI03Be1ymOA9juB-yoCtMnV8dt_qLio6-pIuo0Q9b45Q1Wbb-Lc0nb6-J1nKpf6dHCQrNQCLPf7fzd5bGAWSlJykyd6WfhFdD9ptP9tfBFNDUIyPakQ8Q1prIrBUVIYN_ljSHJfz9qkuW93LBI3YSMkNVBoaveC4VD3fzxrIGXwHF83v1KazKbz5cp0_8SmI-jmARfeoWN9SHJs6B0C9G_e_4FW-i-mbE8tHcWxUHMoK_paeQ2DRIYgm_G4UsA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbOGf-feBY4GHLsOKmAegubPoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKwCT9CTHhO-3jyR-iUXiDHGEqJ748VXMbWtHYbnzR6teVwCe0bF7bQUXZcM3Ab5UXdDUnULoqHUOyRgh3e1A6vn1BhUAo5V0Dui8pzblprkpdnjHXE2dQy_LxnqO7rkvpg9MzS_iVoEncoPUxxuH3XblsCt0_o__lECcoZvDvE2n4PtWTi9ab_zlGQmRAclfhkGkcxY59Igl0afzjo0-mCBl1Fy3OtKSBE3qv61-bcx76URbDiw9RVIRTO4MWOvjZxF-MtRteRW5p-ZMH07iTstgLQXWj7HYyNM6padS7gmHFAYiJslQ-afg8aOxS1Vk6uyHR_FhBxb4497Q5jliqnno9gWMyirAFUVt1K26-YqZZjyQY9ZoEzLyixX8iIJMi9rEhxfUoNcMhvLvxoBgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_16b08FIJ4pJCrJzwt_CB-rqR9tdg%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:49 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 76347009
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 324989
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 153992
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=46676&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=46676&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=46676&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:50 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=h2wb2.fqE1vz5sGaAvSdj2O.y.a4Z0B07HPdKKFpKEXNZANSLalyGg--; expires=Sun, 24 Dec 2023 11:26:50 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=N3ST1ESLshKEwwK7ptQ.EV5gORLgDaBrjbnOCXYDx90StdOnK.MI3pZa_0_75xCkwMeDxlIzdV4m.89GPpUJ0vNjP9KCSqHCsgc5q86DCKxiSntDvsYPdbhgohb0fRIJ_ho-; expires=Sun, 24 Dec 2023 11:26:50 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Sun, 24 Dec 2023 11:26:50 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=34633&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=34633&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=34633&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:51 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=TQzT8Gq.C.TQFQJaqnNiZ.K2m8cBa1ufzIYayaphBwYEs6K7AzRNeQ--; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=Gr2n2dIw5bK021KDQp7tDYrz.kdNf4oGHIUnZzgWXTomzFrGqqVB7B9LBtrelxVQZZBvK0sCaHML55jruX44ArHX.w9vlodjs6bCz.IcXXrukqiixavA40yN0Q25tVfZdXk-; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=81343&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:51 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=nXZAh.xdzFK_0q4Zc6AiUyrYL5FP1XdCG1Ssee6V6X_IO9DzMa1DTg--; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=WZYZx2srcyymh7__7WP34xl2iVG1KbqP1GFdf3cYuIueKg_VWLTk2yciwyoJ730Kg_Hac.LNXb6vwHX7Zd_GY0Ui2Ec81XwhdxScWG9jV6JgULImBaF1EXXTpLL7HI9Uqto-; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Sun, 24 Dec 2023 11:26:51 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5882
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:26:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5882
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:26:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5882
Expires: Sat, 26 Nov 2022 13:04:53 GMT
Date: Sat, 26 Nov 2022 11:26:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95101ded0fe92a85649a086992948008
afed98649590f2524a9e530c53eebbc1ba36da6a
7f754cb2105494045efe657c47313e77bb26361ca45a6f8cbce1fdb52a15ba01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: 51d9848a-868c-4e51-b1a8-30596d0108b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUfxHjToAMFeGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813464-749244df2aa06b23445d675c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mSCEUQ3aOXg6rxJV0iWPgFZ6TE2pCucWwOI3KAsdbu_EadcDDa5vwg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:07:47 GMT
age: 47944
etag: "afed98649590f2524a9e530c53eebbc1ba36da6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 15205
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -6kE-HDfLIQMtzuaOuArCjtxgpQUgxMrpjcT7pDIdY7CDlJNK1GZWA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
age: 49227
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 49395
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 22943
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0f860248042a8499ffb1701a880b2ba
845842c789e6e97fd1687e668d446bbb8309ffc7
9eca5258c7b6e4e145ca6576a3f3791f1324714404ffd7a56a61961f81e7bd44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11150
x-amzn-requestid: 0b773c28-feda-41a2-9de6-8b559bd773eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVC5EukoAMFxfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813545-3bfe118939abc352072c5af1;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RBv0V5RyDoApQfc5QIHFxVzmasUJvYZ6X4-kTTfI9UhtdjUWitlkJA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "845842c789e6e97fd1687e668d446bbb8309ffc7"
content-type: image/jpeg
age: 49227
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sayac.onlinewebstats.com/logo/s.gif
217.195.203.216200 OK 1.1 kB URL HTTP/1.1 sayac.onlinewebstats.com/logo/s.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 90 x 30\012- data
Hash 86b20fb84a3c460bb5b6f28e1fc58a8f
be37c58c27b312e1b8445d446d5e9008843fc8d0
16c7fd0e2962fbb0f79e261c14b3e89f71af00413c77ce6c284c2aabdad557f3
GET /logo/s.gif HTTP/1.1
Host: sayac.onlinewebstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 11:26:50 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 17 Aug 2006 22:15:44 GMT
ETag: "4a6-41b3dfc23c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1127
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 11:26:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 5f25650867b755e183654a46630ee4f7
3eb426525fc928b57cf4eb02b17c8fcd15888d04
90f3192d15c3ff615ae404acdfafc8acb597563d4be9f428d4504003f055cf60
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 26 Nov 2022 11:26:51 GMT
date: Sat, 26 Nov 2022 11:26:51 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-hCFL5oRARV_SedULyRzMxA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:51 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=V0O2StXDmeafmHmVxYrN4kHhTjd71YPyMqGpy2srNB0faFCw_UDNR_hWsFucnXXPiBtDXLNhLxMk010ka-tg8g_Z9rqhI_OSGy-YhuBd-g_mAUT2u7ea2-kBkMnRTIOkUiaH-GHTHBSVKkLG_LeNIybL1lNw9ibN3lqjER0Uqi6bJ0YJGIObWaa0r7GtyuhNTCsMmt8pxnVXxjKaSUki3fEPxsrydU4azEPXYJlmPHvt3Yzp34r4eAwTdiolicjH563www&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:51 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:51 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=PZHXc_nTBSVdD-mFds6_mLz8BV-m32tHimJaq-UIrZvUm4bgvHzBzdSkWA-qJSpr00O0blnjVcU1HweU5Uy7k9abozNVQrqofQsZjKkzA-_hHNbEOPKksFtJKBD4ENaAd3vmI_gLB1vFAVdsb1waybAzZyOlnFexxl3eMR74vZylhs_HgLK1oh2koNRbJcsCoQpqZApZiryf6_aE80Xw2_HQR7NRoaPVwEesgQZv8f59Ik3buuM6BLsocbP-Fhdep_qAbLmXiAlRuCp58dx3mVgF_rQwANWscR9PyYZxLcN0n6AMxQZ2K6SWvs88cEa9IJzEZWDBOp1WQI586AjVc5Wx_ZyBqf2TB2FXNq0BDkPXdF6he3tPkycLxtl_RGLtB4gIlPM2QLlVtkIm1cNotMowUXQBFCjT-Ll3Qn0s_DIj8pfq
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=PZHXc_nTBSVdD-mFds6_mLz8BV-m32tHimJaq-UIrZvUm4bgvHzBzdSkWA-qJSpr00O0blnjVcU1HweU5Uy7k9abozNVQrqofQsZjKkzA-_hHNbEOPKksFtJKBD4ENaAd3vmI_gLB1vFAVdsb1waybAzZyOlnFexxl3eMR74vZylhs_HgLK1oh2koNRbJcsCoQpqZApZiryf6_aE80Xw2_HQR7NRoaPVwEesgQZv8f59Ik3buuM6BLsocbP-Fhdep_qAbLmXiAlRuCp58dx3mVgF_rQwANWscR9PyYZxLcN0n6AMxQZ2K6SWvs88cEa9IJzEZWDBOp1WQI586AjVc5Wx_ZyBqf2TB2FXNq0BDkPXdF6he3tPkycLxtl_RGLtB4gIlPM2QLlVtkIm1cNotMowUXQBFCjT-Ll3Qn0s_DIj8pfq
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=PZHXc_nTBSVdD-mFds6_mLz8BV-m32tHimJaq-UIrZvUm4bgvHzBzdSkWA-qJSpr00O0blnjVcU1HweU5Uy7k9abozNVQrqofQsZjKkzA-_hHNbEOPKksFtJKBD4ENaAd3vmI_gLB1vFAVdsb1waybAzZyOlnFexxl3eMR74vZylhs_HgLK1oh2koNRbJcsCoQpqZApZiryf6_aE80Xw2_HQR7NRoaPVwEesgQZv8f59Ik3buuM6BLsocbP-Fhdep_qAbLmXiAlRuCp58dx3mVgF_rQwANWscR9PyYZxLcN0n6AMxQZ2K6SWvs88cEa9IJzEZWDBOp1WQI586AjVc5Wx_ZyBqf2TB2FXNq0BDkPXdF6he3tPkycLxtl_RGLtB4gIlPM2QLlVtkIm1cNotMowUXQBFCjT-Ll3Qn0s_DIj8pfq HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:49 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2827748
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=T0gokvnTBSVdD-mFds6_mLz8BV--JJBN9FvEmcqxaYpyPvm0ENej-xYCosTGbPvWLwvGpK3WWCysc0yACXxuLuLF8lOqP5GAAaVxbKNk8dmXETY3OQFpcia4EMjKTi-PlTy6aBmHrJUTzsQnopLW0jv02mqgF2oS1bsAPw4JRv4KSnThpJ5vfG1Mi0_0rakiJkV0h-uPcX2dZwkb7E-KcQ8ZTNjOUl07Vv3LEAhsL-ekCyFRNcxxgLaCeKQSVlUKsq095mfL5iI-QX4lLGpwgP9K-amZjUJhh4ISwxOqJR_k-XqfaLQxIx4HxaI_Yrg_fw7ceB7u6CuxXY4RQQ5osYxX2kxhCySmEG-JfQ5J8abKSV3fKzU0egzS1UijKEjhO7HNTSUV9WNjeBgdw2eUPu9eDcmLl9bE8LTNI5RCyqA0-Vs-
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=T0gokvnTBSVdD-mFds6_mLz8BV--JJBN9FvEmcqxaYpyPvm0ENej-xYCosTGbPvWLwvGpK3WWCysc0yACXxuLuLF8lOqP5GAAaVxbKNk8dmXETY3OQFpcia4EMjKTi-PlTy6aBmHrJUTzsQnopLW0jv02mqgF2oS1bsAPw4JRv4KSnThpJ5vfG1Mi0_0rakiJkV0h-uPcX2dZwkb7E-KcQ8ZTNjOUl07Vv3LEAhsL-ekCyFRNcxxgLaCeKQSVlUKsq095mfL5iI-QX4lLGpwgP9K-amZjUJhh4ISwxOqJR_k-XqfaLQxIx4HxaI_Yrg_fw7ceB7u6CuxXY4RQQ5osYxX2kxhCySmEG-JfQ5J8abKSV3fKzU0egzS1UijKEjhO7HNTSUV9WNjeBgdw2eUPu9eDcmLl9bE8LTNI5RCyqA0-Vs-
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=T0gokvnTBSVdD-mFds6_mLz8BV--JJBN9FvEmcqxaYpyPvm0ENej-xYCosTGbPvWLwvGpK3WWCysc0yACXxuLuLF8lOqP5GAAaVxbKNk8dmXETY3OQFpcia4EMjKTi-PlTy6aBmHrJUTzsQnopLW0jv02mqgF2oS1bsAPw4JRv4KSnThpJ5vfG1Mi0_0rakiJkV0h-uPcX2dZwkb7E-KcQ8ZTNjOUl07Vv3LEAhsL-ekCyFRNcxxgLaCeKQSVlUKsq095mfL5iI-QX4lLGpwgP9K-amZjUJhh4ISwxOqJR_k-XqfaLQxIx4HxaI_Yrg_fw7ceB7u6CuxXY4RQQ5osYxX2kxhCySmEG-JfQ5J8abKSV3fKzU0egzS1UijKEjhO7HNTSUV9WNjeBgdw2eUPu9eDcmLl9bE8LTNI5RCyqA0-Vs- HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 7469218
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7faa8ba7b1a16c7f2e96eb8655a
37.157.4.39302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7faa8ba7b1a16c7f2e96eb8655a
IP 37.157.4.39:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7faa8ba7b1a16c7f2e96eb8655a HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=34633&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ&u=%7CXYRfmU6K4ANigNjxdJTqNoYvLDYnrGFTnnba5hxa3wE%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC8v8UzImynb6Ll8NLvBkFFiOOlhUo-s78gVgBNbhQX2jWKc8MVmKJmb2teHS9PXW7EQgDcSbA-YUdHvv1OnA4sPUGIo2H49WG2-NMW_xEWP9Pt_WRDySOo4H5aS8uZCBiXCqALd0cbsO4i4DgVBPsmGYT31I6vGGvTvtbHwHF-r3DEEW05e9prCbyGftD5P5BszxqHhueoqy84XPuOWFUIjIZCzZdXGWfIJaszJi5WIOHzHHV7vZbxM80Gh9f3ydipWTw52uIPX1U10Ty86UzVeJ2OsUzCsKzr1edBn9XdTtUOhquQxQJOa75HcOVN2FpT2bu5Wu01T_KgN4PKtU7_mI6UiuTRMQNsn1YP3VD_s-z9GVqGluBQTFddFWDlDNL7CJ8zlhH4bGbuDY5asLLtLOdF1Bl_UxrG4LVgAHrl9U0qD31MLjP36i6Z60XbjSTwlf-Z4rDfQLYYACjUQSlEDdtuUFqlfE-yZTtJpWjS2Cg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCM00W-feBY7aTLomUywXy-KCoBMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKkCT9DJbJEl90tsN5hF-SfTYXXgvAZxqsoUnZ6rGB4ilj7lJvuuuFJ6b3A0ubJ6OmbX2t1sfnIDPhMT-Rjkp6JYL04iTVaEI_jR1l1mdTsxpg1dAPLoGrCdewgOQfnVIGqKdkmY6uSGRvqD1Vzb4zsfV1ulUHcvoEMTq7it4wOYcB7lh7moE_4S6CMWnV2i5ZHDY2AUrAtcv5iLVqOFgtIvF-VxLRbwwrqGluBvkzQj52GEOFM3-lJlfV0VSKo_vao_gVKb5kL34VXLCus0OSIhIS2e1fNt1psOY1cRdqqdxanrtc-8UTZNjb8Rve8iD_Cu5Xb_B8G5_J9f8WC87WAeIFGiiCXvl3ZlOeuH8KcDPsWsL_WWFPLo06WyXX5R8ZwvHfZ1rnCdeBpHgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_27qBaIERt4CJlj01idewjsIvQlNQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ&u=%7CXYRfmU6K4ANigNjxdJTqNoYvLDYnrGFTnnba5hxa3wE%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC8v8UzImynb6Ll8NLvBkFFiOOlhUo-s78gVgBNbhQX2jWKc8MVmKJmb2teHS9PXW7EQgDcSbA-YUdHvv1OnA4sPUGIo2H49WG2-NMW_xEWP9Pt_WRDySOo4H5aS8uZCBiXCqALd0cbsO4i4DgVBPsmGYT31I6vGGvTvtbHwHF-r3DEEW05e9prCbyGftD5P5BszxqHhueoqy84XPuOWFUIjIZCzZdXGWfIJaszJi5WIOHzHHV7vZbxM80Gh9f3ydipWTw52uIPX1U10Ty86UzVeJ2OsUzCsKzr1edBn9XdTtUOhquQxQJOa75HcOVN2FpT2bu5Wu01T_KgN4PKtU7_mI6UiuTRMQNsn1YP3VD_s-z9GVqGluBQTFddFWDlDNL7CJ8zlhH4bGbuDY5asLLtLOdF1Bl_UxrG4LVgAHrl9U0qD31MLjP36i6Z60XbjSTwlf-Z4rDfQLYYACjUQSlEDdtuUFqlfE-yZTtJpWjS2Cg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCM00W-feBY7aTLomUywXy-KCoBMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKkCT9DJbJEl90tsN5hF-SfTYXXgvAZxqsoUnZ6rGB4ilj7lJvuuuFJ6b3A0ubJ6OmbX2t1sfnIDPhMT-Rjkp6JYL04iTVaEI_jR1l1mdTsxpg1dAPLoGrCdewgOQfnVIGqKdkmY6uSGRvqD1Vzb4zsfV1ulUHcvoEMTq7it4wOYcB7lh7moE_4S6CMWnV2i5ZHDY2AUrAtcv5iLVqOFgtIvF-VxLRbwwrqGluBvkzQj52GEOFM3-lJlfV0VSKo_vao_gVKb5kL34VXLCus0OSIhIS2e1fNt1psOY1cRdqqdxanrtc-8UTZNjb8Rve8iD_Cu5Xb_B8G5_J9f8WC87WAeIFGiiCXvl3ZlOeuH8KcDPsWsL_WWFPLo06WyXX5R8ZwvHfZ1rnCdeBpHgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_27qBaIERt4CJlj01idewjsIvQlNQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y4H3-QALibYKssoJAAg8cmtwHZA7AgZtREDuQQ&u=%7CXYRfmU6K4ANigNjxdJTqNoYvLDYnrGFTnnba5hxa3wE%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC8v8UzImynb6Ll8NLvBkFFiOOlhUo-s78gVgBNbhQX2jWKc8MVmKJmb2teHS9PXW7EQgDcSbA-YUdHvv1OnA4sPUGIo2H49WG2-NMW_xEWP9Pt_WRDySOo4H5aS8uZCBiXCqALd0cbsO4i4DgVBPsmGYT31I6vGGvTvtbHwHF-r3DEEW05e9prCbyGftD5P5BszxqHhueoqy84XPuOWFUIjIZCzZdXGWfIJaszJi5WIOHzHHV7vZbxM80Gh9f3ydipWTw52uIPX1U10Ty86UzVeJ2OsUzCsKzr1edBn9XdTtUOhquQxQJOa75HcOVN2FpT2bu5Wu01T_KgN4PKtU7_mI6UiuTRMQNsn1YP3VD_s-z9GVqGluBQTFddFWDlDNL7CJ8zlhH4bGbuDY5asLLtLOdF1Bl_UxrG4LVgAHrl9U0qD31MLjP36i6Z60XbjSTwlf-Z4rDfQLYYACjUQSlEDdtuUFqlfE-yZTtJpWjS2Cg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCM00W-feBY7aTLomUywXy-KCoBMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBKkCT9DJbJEl90tsN5hF-SfTYXXgvAZxqsoUnZ6rGB4ilj7lJvuuuFJ6b3A0ubJ6OmbX2t1sfnIDPhMT-Rjkp6JYL04iTVaEI_jR1l1mdTsxpg1dAPLoGrCdewgOQfnVIGqKdkmY6uSGRvqD1Vzb4zsfV1ulUHcvoEMTq7it4wOYcB7lh7moE_4S6CMWnV2i5ZHDY2AUrAtcv5iLVqOFgtIvF-VxLRbwwrqGluBvkzQj52GEOFM3-lJlfV0VSKo_vao_gVKb5kL34VXLCus0OSIhIS2e1fNt1psOY1cRdqqdxanrtc-8UTZNjb8Rve8iD_Cu5Xb_B8G5_J9f8WC87WAeIFGiiCXvl3ZlOeuH8KcDPsWsL_WWFPLo06WyXX5R8ZwvHfZ1rnCdeBpHgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_27qBaIERt4CJlj01idewjsIvQlNQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=6Y6fLNXDmeafmHmVxmrhJ0FFT6ETXVoQIsu-IFUAAxdUiPjiUwsODw5f-ZE4X1gMPE_0ii9brFRVjcP7NHzDVvyM18J9lSAPBByxqHTd5e5QU2GGnfK_PlD-RQrmQQ4v4aj0vp3eLZ-eiUrpuaVgrBoKT6tYqf0rkdEzU8GXOnqIku3FKjyYzegAdhUocoj1BofCIJ3wvBuJMafScM61T8YnL0w2MLtcATq3cbcjwQa3JH7N1t4OI_hU98gZmUmgAu8FPg"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 36697461
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7f971e3f1eb902334885879605f
37.157.4.39302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7f971e3f1eb902334885879605f
IP 37.157.4.39:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6381f7f971e3f1eb902334885879605f HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=46676&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.10:0
GET /css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 11:26:50 GMT
date: Sat, 26 Nov 2022 11:26:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A&u=%7CXYRfmU6K4AOQZTrp0on1ZBhm8x6sfrpzYVD4Fp7faLw%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNR7EKK7tWtToMz75d1zLrnsCjh3xUx2xWdX-veEh-yKBJ_wI__5rrJHR8xC0NORHsUC4Zw0I2nfT2HTH50eofEg1TXSvvgYoEGlxJLbVErmcW2wT45td5PyId3J-V23ngYK3Jjf5b4O0mR-bOZOua04Z2gpJJxtDyRRw8pkCKNucWadXkB69afFsTY1s_7vwSzhGJHL3Pp4PC2LGe5wuPkmNi4ZrEo6ivYuRNsOsV-Tg0OkvgrUu2dri2f-8fRICXblxU-sElqWocCXwwBHjpLFwF6L3-z4_ALzDkSnXLfDHoEyb8F76Y9u8lfAenEOps3Z4J0N_e91ZfAdI_ry5P_iAIKUzUkh1ahtRj5yeDnvmcIJSj2Dmprz3wn4ATHxQernxa8XH9JlMYQf7YAksdJ4QLSoUjyuv5l4Lf6-_HemPRPLgkx_vxPSOLrxgdGp5i7PbkIiQWWyht_GX05kdlNeF-HrPByrGr_1EBwZ4YyRp7rk1k35XvjMypfEXFbCy9vJ7pgXgJL26Km0XLKi6ufywN06JZzUFP3rXfuK7n8AExzWFM_nZwVg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC0ARI-feBY8maLsWCygW6samABcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBK8CT9CwtxI7rqqKpaq8Cgghk-2Z2_0j-bBOZftejvsw0XUCk9PG2Xpcvi2KKJWsZ2tbtHCjYE-YGhx311cDXiOulv6YCpvLbkzGlKBS6OvAtHcmO4MaOIDHuYLGtOs9WQiusDAvD7-rXRpJMumA9rp-_2WbmdAmFxgCOGy_W10KThHYUNfj803MwOIYbmpOOrZQ1h96wsKJtlI0Q6QmFYflYqKO_E_7eiX7XKvXQYqR_27bgcRUyHLrbdvtui03nv4tKVOO9WSUNOp5OSywXNXZjPB54IrDh7cMXPWUW8cuUTxgtWO49qMOWyN_lcoqsk49NeO3tPx7PjYFW7gBJmCoc4XeCl6E_iGd6tN9zyBM4HoHz_t1x-rqCsTCf5dJjQrOFfM6zYJZ3tCnS2BBzetFgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_22neZv1BZVZhcCvdBC29HlB39sNg%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A&u=%7CXYRfmU6K4AOQZTrp0on1ZBhm8x6sfrpzYVD4Fp7faLw%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNR7EKK7tWtToMz75d1zLrnsCjh3xUx2xWdX-veEh-yKBJ_wI__5rrJHR8xC0NORHsUC4Zw0I2nfT2HTH50eofEg1TXSvvgYoEGlxJLbVErmcW2wT45td5PyId3J-V23ngYK3Jjf5b4O0mR-bOZOua04Z2gpJJxtDyRRw8pkCKNucWadXkB69afFsTY1s_7vwSzhGJHL3Pp4PC2LGe5wuPkmNi4ZrEo6ivYuRNsOsV-Tg0OkvgrUu2dri2f-8fRICXblxU-sElqWocCXwwBHjpLFwF6L3-z4_ALzDkSnXLfDHoEyb8F76Y9u8lfAenEOps3Z4J0N_e91ZfAdI_ry5P_iAIKUzUkh1ahtRj5yeDnvmcIJSj2Dmprz3wn4ATHxQernxa8XH9JlMYQf7YAksdJ4QLSoUjyuv5l4Lf6-_HemPRPLgkx_vxPSOLrxgdGp5i7PbkIiQWWyht_GX05kdlNeF-HrPByrGr_1EBwZ4YyRp7rk1k35XvjMypfEXFbCy9vJ7pgXgJL26Km0XLKi6ufywN06JZzUFP3rXfuK7n8AExzWFM_nZwVg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC0ARI-feBY8maLsWCygW6samABcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBK8CT9CwtxI7rqqKpaq8Cgghk-2Z2_0j-bBOZftejvsw0XUCk9PG2Xpcvi2KKJWsZ2tbtHCjYE-YGhx311cDXiOulv6YCpvLbkzGlKBS6OvAtHcmO4MaOIDHuYLGtOs9WQiusDAvD7-rXRpJMumA9rp-_2WbmdAmFxgCOGy_W10KThHYUNfj803MwOIYbmpOOrZQ1h96wsKJtlI0Q6QmFYflYqKO_E_7eiX7XKvXQYqR_27bgcRUyHLrbdvtui03nv4tKVOO9WSUNOp5OSywXNXZjPB54IrDh7cMXPWUW8cuUTxgtWO49qMOWyN_lcoqsk49NeO3tPx7PjYFW7gBJmCoc4XeCl6E_iGd6tN9zyBM4HoHz_t1x-rqCsTCf5dJjQrOFfM6zYJZ3tCnS2BBzetFgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_22neZv1BZVZhcCvdBC29HlB39sNg%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y4H3-QALjUkKsoFFAApYusbrMGgeQf1e9hUy8A&u=%7CXYRfmU6K4AOQZTrp0on1ZBhm8x6sfrpzYVD4Fp7faLw%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNR7EKK7tWtToMz75d1zLrnsCjh3xUx2xWdX-veEh-yKBJ_wI__5rrJHR8xC0NORHsUC4Zw0I2nfT2HTH50eofEg1TXSvvgYoEGlxJLbVErmcW2wT45td5PyId3J-V23ngYK3Jjf5b4O0mR-bOZOua04Z2gpJJxtDyRRw8pkCKNucWadXkB69afFsTY1s_7vwSzhGJHL3Pp4PC2LGe5wuPkmNi4ZrEo6ivYuRNsOsV-Tg0OkvgrUu2dri2f-8fRICXblxU-sElqWocCXwwBHjpLFwF6L3-z4_ALzDkSnXLfDHoEyb8F76Y9u8lfAenEOps3Z4J0N_e91ZfAdI_ry5P_iAIKUzUkh1ahtRj5yeDnvmcIJSj2Dmprz3wn4ATHxQernxa8XH9JlMYQf7YAksdJ4QLSoUjyuv5l4Lf6-_HemPRPLgkx_vxPSOLrxgdGp5i7PbkIiQWWyht_GX05kdlNeF-HrPByrGr_1EBwZ4YyRp7rk1k35XvjMypfEXFbCy9vJ7pgXgJL26Km0XLKi6ufywN06JZzUFP3rXfuK7n8AExzWFM_nZwVg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC0ARI-feBY8maLsWCygW6samABcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakC_V3iep9wsT6oAwGqBK8CT9CwtxI7rqqKpaq8Cgghk-2Z2_0j-bBOZftejvsw0XUCk9PG2Xpcvi2KKJWsZ2tbtHCjYE-YGhx311cDXiOulv6YCpvLbkzGlKBS6OvAtHcmO4MaOIDHuYLGtOs9WQiusDAvD7-rXRpJMumA9rp-_2WbmdAmFxgCOGy_W10KThHYUNfj803MwOIYbmpOOrZQ1h96wsKJtlI0Q6QmFYflYqKO_E_7eiX7XKvXQYqR_27bgcRUyHLrbdvtui03nv4tKVOO9WSUNOp5OSywXNXZjPB54IrDh7cMXPWUW8cuUTxgtWO49qMOWyN_lcoqsk49NeO3tPx7PjYFW7gBJmCoc4XeCl6E_iGd6tN9zyBM4HoHz_t1x-rqCsTCf5dJjQrOFfM6zYJZ3tCnS2BBzetFgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_22neZv1BZVZhcCvdBC29HlB39sNg%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 11:26:49 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=EDZ2T9XDmeafmHmVsnnP0vSFdM29S4CHOcqRb1kU6hOWtNW4bY5pIMBJfh5ZKZ7hohxsCk7pXQlqEeAaFJu3OXGU0EAJlutyCLgrWRvqv_vFK_jbL-MI531rwYD-XFl97rw4vwSgNRWeFA1Ilvz1Eg6PjR3Qve_pzJSTG9iFnG9ZwF5MkJ1uBIdbpN5WFiox6StDMv-UCRkpQhbpRxD8yDJ9JJn8RtdfPze1oA5Qr9bHpO4I9A36krSVakbq_lAgF84WQA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 58776436
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 11:26:50 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Tue, 21 Nov 2023 11:26:50 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2