r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10587
Expires: Wed, 30 Nov 2022 05:41:09 GMT
Date: Wed, 30 Nov 2022 02:44:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=115883
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:42 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 10:56:05 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 02:19:39 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1503
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3768
Expires: Wed, 30 Nov 2022 03:47:30 GMT
Date: Wed, 30 Nov 2022 02:44:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: C5uQvVwHG7C6hd/qcMx2IuWMIL78jtPTmY3LtoXjcejuyd2i3dH0b1lSzFZYxhTqT/cdPFQvxNw=
x-amz-request-id: GPZCCAB7Q75H5EBS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 01:45:02 GMT
age: 3580
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 02:11:13 GMT
cache-control: public,max-age=3600
age: 2009
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=110820
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:42 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:31:42 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
bookworm-bilgeadam.blogspot.com/search/label/%C4%B0lber%20Ortayl%C4%B1
172.217.21.161200 OK 28 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/search/label/%C4%B0lber%20Ortayl%C4%B1
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Hash 31742108078d0b0047d6467f2a9a42ec
bccc2e31099457d0782d00e5199875edf1730b37
4e801774657f2a694400bf339139965131656d8d0dbe20d693a32c8696de1560
GET /search/label/%C4%B0lber%20Ortayl%C4%B1 HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 30 Nov 2022 02:44:42 GMT
Date: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 27908
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0ce182bf4da446af91c7e5562006de39
04a3bffa405645fb06932346c6d61b3a20b9c491
2e9d7f33041a8c0eb78a717173b26eca2c92136d2d8fe7f20087bd40d6c13f04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e16bd266c88eb80e84b5e036b8ee3cbb
3d8b0e5c7a6dc0631a6f8760582643b6e5bdcfba
cf791532099e27f14dd5c928a8a3b8c319578d671fb67fa51b3a360140e9b918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0ce182bf4da446af91c7e5562006de39
04a3bffa405645fb06932346c6d61b3a20b9c491
2e9d7f33041a8c0eb78a717173b26eca2c92136d2d8fe7f20087bd40d6c13f04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:47:53 GMT
expires: Wed, 29 Nov 2023 21:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 29 Nov 2022 20:52:41 GMT
content-type: text/css
age: 17809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 0b18068106050cc2598b6f91277af005
fd33254a44b0ffc3f6e571e65dc033f27a280af8
cbfb90d9c1ee9915123feb56275e1fb412537858ffe28b9ece56506eec200144
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20985
date: Wed, 30 Nov 2022 02:44:42 GMT
expires: Wed, 30 Nov 2022 02:44:42 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash d1b2ca15c2ed673d162312e7b2a9ac24
88dd73c6789b0905bfbebe579702f28dc33f09cd
2ba3dd6cc88563dcaf2cebec13eebc9ffe977c331265fddb9dc94aa542c67117
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 30 Nov 2022 02:44:42 GMT
Expires: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 15165053756514250200
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51778
X-XSS-Protection: 0
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:21 GMT
expires: Tue, 06 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 01:54:20 GMT
content-type: image/gif
age: 44721
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/arrow_dropdown.gif
216.58.207.233200 OK 141 B URL HTTP/2 resources.blogblog.com/img/widgets/arrow_dropdown.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 10\012- data
Hash 2964a07d60a4e76b299130fb1b4115f6
3b72dcc19f3ad685513eaba612e07e0ed495f2e1
28ab89f0285c48d2faed701905c185c302f2b389584a52ceaa76a91ea64dc3a7
GET /img/widgets/arrow_dropdown.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 141
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:06:04 GMT
expires: Tue, 06 Dec 2022 15:06:04 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 12:51:31 GMT
content-type: image/gif
age: 41918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bookworm-bilgeadam.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/%C4%B0lber%20Ortayl%C4%B1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Wed, 30 Nov 2022 02:44:42 GMT
Expires: Wed, 07 Dec 2022 02:44:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 18:54:36 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
resources.blogblog.com/img/icon_feed12.png
216.58.207.233200 OK 500 B URL HTTP/2 resources.blogblog.com/img/icon_feed12.png
IP 216.58.207.233:0
File type PNG image data, 12 x 12, 8-bit colormap, non-interlaced\012- data
Hash 44e7355a788fd1082deff0018883758e
50e3a28a44978e85d13c30522e0c71c8d0b24675
3cd341f37642f8a58b0fe14c2645913449c0ffe10be6ba0986275bfef29bc319
GET /img/icon_feed12.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:00:15 GMT
expires: Tue, 06 Dec 2022 14:00:15 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 17:52:28 GMT
content-type: image/png
age: 45867
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.162200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (3577)
Hash 763df178c306f343c19fb2644d277e03
77eed6ad86c57f1a39311a32d41b8d2275d7c2ff
a4e52014ae37022c75aa712695b2cbcb7aadb3dc01922be2a8af67ef94a8caff
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 30 Nov 2022 02:44:42 GMT
Expires: Wed, 30 Nov 2022 02:44:42 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 16424530211033122325
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36120
X-XSS-Protection: 0
resources.blogblog.com/img/widgets/subscribe-netvibes.png
216.58.207.233200 OK 1.4 kB URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-netvibes.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash c52a5f4ecb6be5d7e93b23ef4122ee4e
4e698a5f455daf3a8ea1e219b1998079f0546716
71b8ad79c680b3e5d452a792c3b418b23f739a0a34005e0f37ec674f4c78cb5d
GET /img/widgets/subscribe-netvibes.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1445
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:58:06 GMT
expires: Tue, 06 Dec 2022 21:58:06 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 03:53:34 GMT
content-type: image/png
age: 17196
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/subscribe-yahoo.png
216.58.207.233200 OK 580 B URL HTTP/2 resources.blogblog.com/img/widgets/subscribe-yahoo.png
IP 216.58.207.233:0
File type PNG image data, 91 x 17, 8-bit colormap, non-interlaced\012- data
Hash 79f602b6ac18bee79b4e2353a6674010
28accf82263aa1a11bb821439d4d185865662530
bbf9b924cc32bff4738bb54d86905476349f90c8b20f748633e56f64379d553e
GET /img/widgets/subscribe-yahoo.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:41:39 GMT
expires: Tue, 06 Dec 2022 10:41:39 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 03:53:34 GMT
content-type: image/png
age: 57783
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 75673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 47 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Server: cafe
Content-Length: 47
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 14:11:18 GMT
Expires: Tue, 13 Dec 2022 14:11:18 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 45204
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:06 GMT
expires: Wed, 29 Nov 2023 13:44:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 46836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/share_buttons_20_3.png
216.58.207.233200 OK 5.1 kB URL HTTP/2 www.blogger.com/img/share_buttons_20_3.png
IP 216.58.207.233:0
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:28:12 GMT
expires: Tue, 06 Dec 2022 17:28:12 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 14:52:29 GMT
content-type: image/png
age: 33391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
216.58.207.233200 OK 182 B URL HTTP/1.1 www.blogblog.com/1kt/awesomeinc/tabs_gradient_light.png
IP 216.58.207.233:0
File type PNG image data, 20 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c2c1c288eca66ee27f75ea41dcd96f
77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
GET /1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 182
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 12:40:06 GMT
Expires: Tue, 06 Dec 2022 12:40:06 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Content-Type: image/png
Age: 50677
push.services.mozilla.com/
35.160.184.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.184.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bxWnRrEELT3l334L8NooVQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UQbF0tKi4AzkyjxxQhXe+3ag+f4=
bumerang.hurriyet.com.tr/show_ads.js
83.66.162.14200 OK 1.2 kB URL HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP 83.66.162.14:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with CRLF line terminators
Hash efafc786c6b70e2f6dd9793187cf96b8
ec35f24abf100ae3382ffe944407cd13576e8299
e1b4bbbe35c54d33512a263265e34cd7035a31bfffd400be82b8570dfe78619c
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:36 GMT
Content-Length: 1195
Set-Cookie: NSC_JOgbbvpgeocp2mkbisummyespuwpmbq=ffffffffd6fb0e0b45525d5f4f58455e445a4a423661;path=/
sayac.onlinewebstat.com/c.js
217.195.203.216200 OK 2.4 kB URL HTTP/1.1 sayac.onlinewebstat.com/c.js
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type ASCII text, with CRLF line terminators
Hash 93e259972860a0e13edf59ab0ac01fbc
e5c790c39dca158666bfa94013512ec579042557
a98c5155f8586678344d1c2a312e8098bf72dcc832a5b0c15406c44ed19a7d94
GET /c.js HTTP/1.1
Host: sayac.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Sun, 18 Jan 2015 06:57:45 GMT
ETag: "251e-50ce7b90a6c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2418
Connection: close
Content-Type: application/javascript
1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 1.bp.blogspot.com/-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 49580bf15d6c9cd5b8571621b4e8141c
8e889626f8507eebff70a7e5c74c7348a364c64d
3424d8286f316866dad95f4686bb070e35be4ee7c12cb0975bb159731208b7ae
GET /-qImFTs0DKKQ/Umv3TIqzuOI/AAAAAAAADic/3rpggnWvcWQ/w72-h72-p-k-no-nu/kitap-okumak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve28"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kitap-okumak.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 4949
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0ihjclaO_ajM6GBq1u0_Q9C0Nx2PwJutQqFa1pE9YsYA9Ncp4ZBWdHr86r83lKGr4maV2NVlWfoZ75-pj-Cat8_fp8ftlON_QXH0kN0Fqet326OQddA3KhUr-VYkL2J5TaDT-7dnyvJzHjdbblC7ZKrey2-pCP-iAPMMjv6ZlemBh8sXaOZQ=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0ihjclaO_ajM6GBq1u0_Q9C0Nx2PwJutQqFa1pE9YsYA9Ncp4ZBWdHr86r83lKGr4maV2NVlWfoZ75-pj-Cat8_fp8ftlON_QXH0kN0Fqet326OQddA3KhUr-VYkL2J5TaDT-7dnyvJzHjdbblC7ZKrey2-pCP-iAPMMjv6ZlemBh8sXaOZQ=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash cbbbf3bb7b15b7eead3c8e6c4ab9c0c9
9697069ea0a0bc837032f2a8f591b8494ef87b5c
a3f8833d2726dd727cfe193d4d8c4a29c95af093216cda7c6cffaede370040fb
GET /blogger_img_proxy/ANbyha0ihjclaO_ajM6GBq1u0_Q9C0Nx2PwJutQqFa1pE9YsYA9Ncp4ZBWdHr86r83lKGr4maV2NVlWfoZ75-pj-Cat8_fp8ftlON_QXH0kN0Fqet326OQddA3KhUr-VYkL2J5TaDT-7dnyvJzHjdbblC7ZKrey2-pCP-iAPMMjv6ZlemBh8sXaOZQ=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 01 Dec 2022 02:44:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 02:44:43 GMT
server: fife
content-length: 3345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8d5f53eac27302554bb029ae36aa283c
2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa
a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1o1LJpfOqkhxYe-0u21tQ5mIGi0uBjYvvQPPW0g5M9UTgz8LCFlscEU4TEkCyv2uF0kWTRIxLxTtNeX0n1L2cAU3G3wxf1i4HzbxdoZiIQbZqjp-Bs8HKPewM=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1o1LJpfOqkhxYe-0u21tQ5mIGi0uBjYvvQPPW0g5M9UTgz8LCFlscEU4TEkCyv2uF0kWTRIxLxTtNeX0n1L2cAU3G3wxf1i4HzbxdoZiIQbZqjp-Bs8HKPewM=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c313c4f656ce6b4985b819f162cc2bcf
ee484416be0561d5c4259e6a6cb69d4787ce394f
52d655bb4db59ed388875c36eab77d8a0e4d782e5a72c7ab83582225978f9455
GET /blogger_img_proxy/ANbyha1o1LJpfOqkhxYe-0u21tQ5mIGi0uBjYvvQPPW0g5M9UTgz8LCFlscEU4TEkCyv2uF0kWTRIxLxTtNeX0n1L2cAU3G3wxf1i4HzbxdoZiIQbZqjp-Bs8HKPewM=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 01 Dec 2022 02:44:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 02:44:43 GMT
server: fife
content-length: 3808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0ce182bf4da446af91c7e5562006de39
04a3bffa405645fb06932346c6d61b3a20b9c491
2e9d7f33041a8c0eb78a717173b26eca2c92136d2d8fe7f20087bd40d6c13f04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/widgets/s_top.png
216.58.207.233200 OK 335 B URL HTTP/2 resources.blogblog.com/img/widgets/s_top.png
IP 216.58.207.233:0
File type PNG image data, 144 x 400, 4-bit colormap, non-interlaced\012- data
Hash c4908f4189f7698dc8afdd67df8ce041
b6f7cd64ff84e7cedb4b8b92ceb8b9800ad7624a
cfe1d5dd45c7f0897d769e6c95ae9036fbdc7dad76ac9ed6ce6b21a785ecd6de
GET /img/widgets/s_top.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 335
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:19 GMT
expires: Tue, 06 Dec 2022 14:19:19 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 06:52:50 GMT
content-type: image/png
age: 44724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/widgets/s_bottom.png
216.58.207.233200 OK 172 B URL HTTP/2 resources.blogblog.com/img/widgets/s_bottom.png
IP 216.58.207.233:0
File type PNG image data, 144 x 3, 4-bit colormap, non-interlaced\012- data
Hash a9bbd1bf495055e06e61aec7f8c1b6c4
491c1a006da8a9eea4f3d1bb27e5815ab66a9f45
91fe35689444e53c1bf3e04f24c154fa0468be9edd3c84344f9f64c2eff89eeb
GET /img/widgets/s_bottom.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Tue, 06 Dec 2022 14:01:43 GMT
cache-control: public, max-age=604800
last-modified: Mon, 28 Nov 2022 19:53:31 GMT
content-type: image/png
age: 45780
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0pvcwvnUhvgOZUBw5lVOl97mHPzFRoUZ0zAh6jP4Y8o1sFd8DlgCAbxworTzbx_dDJCDh7VLoBYLnU2qo5u4g7R4__BaSCW6YETAsvUkNe_ZFRWtHk6mUfjuH2PgE_abiiTbNmNRQ=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.1 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0pvcwvnUhvgOZUBw5lVOl97mHPzFRoUZ0zAh6jP4Y8o1sFd8DlgCAbxworTzbx_dDJCDh7VLoBYLnU2qo5u4g7R4__BaSCW6YETAsvUkNe_ZFRWtHk6mUfjuH2PgE_abiiTbNmNRQ=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c93badb9263932a542f357a467ac584a
977c236de2c637e3456393655d998cd739c7ffcb
2e3f73ea041dc4def75bc3dccb6f4587916f0e8b3000b2fa63f9ae38b3166e52
GET /blogger_img_proxy/ANbyha0pvcwvnUhvgOZUBw5lVOl97mHPzFRoUZ0zAh6jP4Y8o1sFd8DlgCAbxworTzbx_dDJCDh7VLoBYLnU2qo5u4g7R4__BaSCW6YETAsvUkNe_ZFRWtHk6mUfjuH2PgE_abiiTbNmNRQ=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 01 Dec 2022 02:44:43 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 02:44:43 GMT
server: fife
content-length: 3086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0hbDL_Z-7unPJcLHCro_5AcGQZ-BsSCbyyyIbFt9MmG4agnDIsOPgtpqN2W_SnumppDhUk1a6cHEftGQCznN3cy_gykMFRNwqQvz30-bb_N2P_VRFJ9ZkFIv2y7XcXlop3jbAmoo_5C1PL4Q=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0hbDL_Z-7unPJcLHCro_5AcGQZ-BsSCbyyyIbFt9MmG4agnDIsOPgtpqN2W_SnumppDhUk1a6cHEftGQCznN3cy_gykMFRNwqQvz30-bb_N2P_VRFJ9ZkFIv2y7XcXlop3jbAmoo_5C1PL4Q=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash a28118b0ce0e4ef6306f5280e65e1508
c7906c602de823b0f261d8019abee1cbe5ec3145
c9a4a9fa98267216fc54cb2f65c1aec5d66b1b40871f30f8f334d696f80b2f13
GET /blogger_img_proxy/ANbyha0hbDL_Z-7unPJcLHCro_5AcGQZ-BsSCbyyyIbFt9MmG4agnDIsOPgtpqN2W_SnumppDhUk1a6cHEftGQCznN3cy_gykMFRNwqQvz30-bb_N2P_VRFJ9ZkFIv2y7XcXlop3jbAmoo_5C1PL4Q=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 02:44:43 GMT
server: fife
content-length: 1747
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash ac3f4df0da2ce5b690bc60ec031c74fd
43e53edaa32b7a59e89f3b0b0ceacded3e90a1a7
e05ca378e82578b751fc4561442f8f1c646d7a157df2f5e67bc564bb8b810a6a
GET /-YHtWiPnE-Cs/TLQ5xxjyGgI/AAAAAAAAAY4/6yNpEqf6Pgo/w72-h72-p-k-no-nu/kitap-oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kitap-oku.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3135
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 02:44:43 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18e"
Content-Type: image/jpeg
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-XTZDdr7rAPg/TwW9DLrCJ5I/AAAAAAAABao/LyVcsHG7JvM/s200/Mekanlar+ve+Olaylar%25C4%25B1yla+Topkap%25C4%25B1+Saray%25C4%25B1+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 8.1 kB URL HTTP/1.1 1.bp.blogspot.com/-XTZDdr7rAPg/TwW9DLrCJ5I/AAAAAAAABao/LyVcsHG7JvM/s200/Mekanlar+ve+Olaylar%25C4%25B1yla+Topkap%25C4%25B1+Saray%25C4%25B1+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 140x200, components 3\012- data
Hash ffe2a22bcdb69582f3853080c9aa1bbe
650e5a64e8fde4d86ee246db558aaa5a23874317
b3cbcde79be5506d6c0a8ab58895f020891712fc6b44e0fa8f28210a799041af
GET /-XTZDdr7rAPg/TwW9DLrCJ5I/AAAAAAAABao/LyVcsHG7JvM/s200/Mekanlar+ve+Olaylar%25C4%25B1yla+Topkap%25C4%25B1+Saray%25C4%25B1+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5aa"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Mekanlar ve Olaylar_yla Topkap_ Saray_ ilber ortayl_.jpg";filename*=UTF-8''Mekanlar%20ve%20Olaylar%C4%B1yla%20Topkap%C4%B1%20Saray%C4%B1%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 8137
X-XSS-Protection: 0
logo.onlinewebstat.com/logo/c.gif
217.195.203.216200 OK 613 B URL HTTP/1.1 logo.onlinewebstat.com/logo/c.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 20 x 14\012- data
Hash 71568e3bef1945b53531d1e7d64e60db
0ea4fd52ba859aed188a7ac646a1bb926a84bbb7
88a9b0fd0969e4815f0465824311b1c015dfd93c326b627ce5b10e8104b42f5f
GET /logo/c.gif HTTP/1.1
Host: logo.onlinewebstat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 27 Sep 2007 15:42:10 GMT
ETag: "270-43b1fd034f880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 613
Connection: close
Content-Type: image/gif
1.bp.blogspot.com/-bAmV17CdKME/TwXII6GkecI/AAAAAAAABcU/VdeDkpBhiuM/s200/Son+%25C4%25B0mparatorluk+Osmanl%25C4%25B1++Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+2.jpg
142.250.74.161200 OK 20 kB URL HTTP/1.1 1.bp.blogspot.com/-bAmV17CdKME/TwXII6GkecI/AAAAAAAABcU/VdeDkpBhiuM/s200/Son+%25C4%25B0mparatorluk+Osmanl%25C4%25B1++Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 128x200, components 3\012- data
Hash c31cce00ca6e1ba9b5b416fc7852de41
13a8a85562701bdc5e51fe8291991d3ae96cfe77
2d31ec43b9e9fe8e6395b40027dfa1f7aeadfaeb54fdeb3f4d89bffcf9048367
GET /-bAmV17CdKME/TwXII6GkecI/AAAAAAAABcU/VdeDkpBhiuM/s200/Son+%25C4%25B0mparatorluk+Osmanl%25C4%25B1++Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c5"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Son _mparatorluk Osmanl_ Osmanl_'y_ Yeniden Ke_fetmek 2.jpg";filename*=UTF-8''Son%20%C4%B0mparatorluk%20Osmanl%C4%B1%20%20Osmanl%C4%B1'y%C4%B1%20Yeniden%20Ke%C5%9Ffetmek%202.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 19805
X-XSS-Protection: 0
4.bp.blogspot.com/-ARWmIaizFb4/TwW-qbwzMkI/AAAAAAAABbM/Zw_zbFj2kzQ/s200/Ilber-Hocayla-Topkapi-Sarayi.jpg
142.250.74.161200 OK 15 kB URL HTTP/1.1 4.bp.blogspot.com/-ARWmIaizFb4/TwW-qbwzMkI/AAAAAAAABbM/Zw_zbFj2kzQ/s200/Ilber-Hocayla-Topkapi-Sarayi.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 125x200, components 3\012- data
Hash d381b47f0f22ccf68902e9468706af5a
7b22253a32ba1194f23765e48f36827dfcb460ce
69529a0cb557371cd0ab6a43e7b272db4dd7ef5b3c89bdb8e8790b70a71d1813
GET /-ARWmIaizFb4/TwW-qbwzMkI/AAAAAAAABbM/Zw_zbFj2kzQ/s200/Ilber-Hocayla-Topkapi-Sarayi.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5b3"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Ilber-Hocayla-Topkapi-Sarayi.jpg"
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 14643
X-XSS-Protection: 0
4.bp.blogspot.com/-5_W-vKwP3HY/TwXAxHRM3HI/AAAAAAAABbY/LXyBF-MWmrY/s200/Bat%25C4%25B1l%25C4%25B1la%25C5%259Fma+Yolunda+ilber+ortayli.jpg
142.250.74.161200 OK 14 kB URL HTTP/1.1 4.bp.blogspot.com/-5_W-vKwP3HY/TwXAxHRM3HI/AAAAAAAABbY/LXyBF-MWmrY/s200/Bat%25C4%25B1l%25C4%25B1la%25C5%259Fma+Yolunda+ilber+ortayli.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 131x200, components 3\012- data
Hash e3017443ecd735aa57a4a5813828615c
900a85dcc146d8905da2610d80ff24639d6dbdea
5c43dc7dfe3f1348afc9cc1f4883b0087ec17cf2f5bb56b6d9d8b6bfa1d8476d
GET /-5_W-vKwP3HY/TwXAxHRM3HI/AAAAAAAABbY/LXyBF-MWmrY/s200/Bat%25C4%25B1l%25C4%25B1la%25C5%259Fma+Yolunda+ilber+ortayli.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5b6"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Bat_l_la_ma Yolunda ilber ortayli.jpg";filename*=UTF-8''Bat%C4%B1l%C4%B1la%C5%9Fma%20Yolunda%20ilber%20ortayli.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 13757
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 663d7a15e6575b4513f2f419c6c7c091
c8a76ecc119f9b4b81a192720713377d2e521b34
ee7ad65e8b239c9f51bab0e58e8495bc6bc7144e40f55503f1084da047462ef8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-k3yIZa3c3g0/TwXHd4qtx5I/AAAAAAAABcI/zrbyAVlmbCo/s200/%25C3%259C%25C3%25A7+K%25C4%25B1tada+Osmanl%25C4%25B1lar+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+-+3.jpg
142.250.74.161200 OK 16 kB URL HTTP/1.1 4.bp.blogspot.com/-k3yIZa3c3g0/TwXHd4qtx5I/AAAAAAAABcI/zrbyAVlmbCo/s200/%25C3%259C%25C3%25A7+K%25C4%25B1tada+Osmanl%25C4%25B1lar+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+-+3.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 129x200, components 3\012- data
Hash 03a604b6e7f7a6d9cc606d30dce61c51
a8071916cf4819d3f266ccde91d12954d848e249
78624f4992e232c774e0719c99b0c6f375874a7297c5dba4ba2eb062cf96d36b
GET /-k3yIZa3c3g0/TwXHd4qtx5I/AAAAAAAABcI/zrbyAVlmbCo/s200/%25C3%259C%25C3%25A7+K%25C4%25B1tada+Osmanl%25C4%25B1lar+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+-+3.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c2"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="__ K_tada Osmanl_lar Osmanl_'y_ Yeniden Ke_fetmek - 3.jpg";filename*=UTF-8''%C3%9C%C3%A7%20K%C4%B1tada%20Osmanl%C4%B1lar%20Osmanl%C4%B1'y%C4%B1%20Yeniden%20Ke%C5%9Ffetmek%20-%203.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 16213
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/logo-16.png
216.58.207.233200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.233:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 07:09:33 GMT
Expires: Tue, 06 Dec 2022 07:09:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 05:51:11 GMT
Content-Type: image/png
Age: 70510
4.bp.blogspot.com/-o2Qpr8z6EcM/TwW9v7B9nWI/AAAAAAAABa0/wvOAYuREPsw/s200/%25C4%25B0stanbul%2527dan+Sayfalar+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 15 kB URL HTTP/1.1 4.bp.blogspot.com/-o2Qpr8z6EcM/TwW9v7B9nWI/AAAAAAAABa0/wvOAYuREPsw/s200/%25C4%25B0stanbul%2527dan+Sayfalar+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 139x200, components 3\012- data
Hash defcf89e374e17db4c7319f88cc9f9fe
9ec50e5c84d8a1aaddb0160b26d7184ee5c67df0
6e8322d1d692f318f1a05f3a587783c9ea8981a9c3bfe69513145514aa0ee3e1
GET /-o2Qpr8z6EcM/TwW9v7B9nWI/AAAAAAAABa0/wvOAYuREPsw/s200/%25C4%25B0stanbul%2527dan+Sayfalar+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5ad"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="_stanbul'dan Sayfalar ilber ortayl_.jpg";filename*=UTF-8''%C4%B0stanbul'dan%20Sayfalar%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 15201
X-XSS-Protection: 0
1.bp.blogspot.com/-KrAD4hGyows/TwXCnaH1w0I/AAAAAAAABbw/6QBsuvwEbg8/s200/Osmanl%25C4%25B1da+De%25C4%259Fi%25C5%259Fim+ve+Anayasal+Rejim+Sorunu.jpg
142.250.74.161200 OK 18 kB URL HTTP/1.1 1.bp.blogspot.com/-KrAD4hGyows/TwXCnaH1w0I/AAAAAAAABbw/6QBsuvwEbg8/s200/Osmanl%25C4%25B1da+De%25C4%259Fi%25C5%259Fim+ve+Anayasal+Rejim+Sorunu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash 637c40ff7ec7a62ef5457ab395b60c93
b31d0e54b15dad2b3d19623af5d2cb4a41f52e83
298d758859e5de4f03c458eb685a03ec35c1f20236fdf7a0075f1da14ef439a0
GET /-KrAD4hGyows/TwXCnaH1w0I/AAAAAAAABbw/6QBsuvwEbg8/s200/Osmanl%25C4%25B1da+De%25C4%259Fi%25C5%259Fim+ve+Anayasal+Rejim+Sorunu.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5bc"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_da De_i_im ve Anayasal Rejim Sorunu.jpg";filename*=UTF-8''Osmanl%C4%B1da%20De%C4%9Fi%C5%9Fim%20ve%20Anayasal%20Rejim%20Sorunu.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 17992
X-XSS-Protection: 0
4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 965x150, components 3\012- data
Hash a50201e83f86a2ea09ade682f7444f33
abfde01b7800ee92e418138b6db6d4ae5b9cb5b8
9e1e16a2acb473427c3a370bb7f36ba7770397706f5e4ce3f65747c4e4311f0a
GET /-EScL_Altdg4/UJu4ry_v2GI/AAAAAAAACyU/hnVRj4iSpsY/s1600/Ba%25C5%259Fl%25C4%25B1k.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb25"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Ba_l_k.jpg";filename*=UTF-8''Ba%C5%9Fl%C4%B1k.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 39837
X-XSS-Protection: 0
3.bp.blogspot.com/-Nl4E7N7Ksew/TwXByvka-BI/AAAAAAAABbk/2Nbh2EpBUDc/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+%25C4%25B0ktisadi+ve+Sosyal+De%25C4%259Fi%25C5%259Fim+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 8.6 kB URL HTTP/1.1 3.bp.blogspot.com/-Nl4E7N7Ksew/TwXByvka-BI/AAAAAAAABbk/2Nbh2EpBUDc/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+%25C4%25B0ktisadi+ve+Sosyal+De%25C4%259Fi%25C5%259Fim+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 130x200, components 3\012- data
Hash 0347450bf1fa8ed278e1dca5e878c0c3
3de8ea8bd4e2512eccdc52e24e422cc421b9c980
316f680749a0b3d179b9319f3e9366d113878fd16bf3bd4d2af1850092c9494f
GET /-Nl4E7N7Ksew/TwXByvka-BI/AAAAAAAABbk/2Nbh2EpBUDc/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+%25C4%25B0ktisadi+ve+Sosyal+De%25C4%259Fi%25C5%259Fim+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5b9"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_ _mparatorlu_u'nda _ktisadi ve Sosyal De_i_im ilber ortayl_.jpg";filename*=UTF-8''Osmanl%C4%B1%20%C4%B0mparatorlu%C4%9Fu'nda%20%C4%B0ktisadi%20ve%20Sosyal%20De%C4%9Fi%C5%9Fim%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 8648
X-XSS-Protection: 0
2.bp.blogspot.com/-RqEZ_PnpOgE/TwXI79sx_NI/AAAAAAAABcg/iCzXRIyJWnw/s200/Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+1+%2528%25C4%25B0lber+Ortayl%25C4%25B1%2529.jpg
142.250.74.161200 OK 19 kB URL HTTP/1.1 2.bp.blogspot.com/-RqEZ_PnpOgE/TwXI79sx_NI/AAAAAAAABcg/iCzXRIyJWnw/s200/Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+1+%2528%25C4%25B0lber+Ortayl%25C4%25B1%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 129x200, components 3\012- data
Hash de754e0f6a0e4adf40ef31d591c9037d
0c0aa65bf6e83f9866b46a1742a75e044835f67e
bbb8c39319f36917777b09234da9ac1636a655ce5cc932f3eea1b147c7a3d88b
GET /-RqEZ_PnpOgE/TwXI79sx_NI/AAAAAAAABcg/iCzXRIyJWnw/s200/Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+1+%2528%25C4%25B0lber+Ortayl%25C4%25B1%2529.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c8"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_'y_ Yeniden Ke_fetmek 1 (_lber Ortayl_).jpg";filename*=UTF-8''Osmanl%C4%B1'y%C4%B1%20Yeniden%20Ke%C5%9Ffetmek%201%20(%C4%B0lber%20Ortayl%C4%B1).jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 18829
X-XSS-Protection: 0
217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/%25C4%25B0lber%2520Ortayl%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.08366839085848832&ns=1
217.195.203.216200 OK 43 B URL HTTP/1.1 217.195.203.216/analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/%25C4%25B0lber%2520Ortayl%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.08366839085848832&ns=1
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 1 x 1\012- data
Hash ff8a32564f433c5abbc7c446ade8802c
66dd592e78f6536f10986695527e16b7b1e1e391
48a4d21a5b9c82c4bda4b48532965ecc561f32212403de37e2359e6ff7857071
Analyzer Verdict Alert quad9 Sinkholed
GET /analiz.gif?user=bookwormbilgeadam&wnos=99&wnobr=31&k=ccyes&agent=Mozilla/5.0%2520%2528Windows%2520NT%252010.0%253B%2520Win64%253B%2520x64%253B%2520rv%253A105.0%2529%2520Gecko/20100101%2520Firefox/105.0&l=http%3A//bookworm-bilgeadam.blogspot.com/search/label/%25C4%25B0lber%2520Ortayl%25C4%25B1&w=1280&h=1024&n=1&ce=true&r=0.08366839085848832&ns=1 HTTP/1.1
Host: 217.195.203.216
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/5.4.16
Pragma: no-cache
Cache-Control: max-age=0, no-store, no-cache, must-revalidate
Expires: Thu, 1 Jan 1970 00:00:00 GMT
Connection: close
Vary: User-Agent
Content-Length: 43
Content-Type: image/gif
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 29 Nov 2022 11:45:52 GMT
expires: Tue, 13 Dec 2022 11:45:52 GMT
cache-control: public, max-age=1209600
age: 53931
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-WnnNuaLdBnM/TwW6jJBysxI/AAAAAAAABaE/jBIY13wWFZg/s200/Osmanl%25C4%25B1+Saray%25C4%25B1nda+Hayat+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 21 kB URL HTTP/1.1 3.bp.blogspot.com/-WnnNuaLdBnM/TwW6jJBysxI/AAAAAAAABaE/jBIY13wWFZg/s200/Osmanl%25C4%25B1+Saray%25C4%25B1nda+Hayat+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 126x200, components 3\012- data
Hash 399788022bfa581a49932948b6f382c2
b1dae60abc62e73ced88346f6ac22cb008218c04
bca43d852e99867d7fe712616f8fb7743f9618a78ab0ea4430ce910491c14dd2
GET /-WnnNuaLdBnM/TwW6jJBysxI/AAAAAAAABaE/jBIY13wWFZg/s200/Osmanl%25C4%25B1+Saray%25C4%25B1nda+Hayat+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a1"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_ Saray_nda Hayat ilber ortayl_.jpg";filename*=UTF-8''Osmanl%C4%B1%20Saray%C4%B1nda%20Hayat%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 20557
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
213.243.16.160200 OK 339 B URL HTTP/1.1 bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with no line terminators
Hash ad85ada71f79ce3d7f9287c6cb929636
a5fdd34a3d80b8a17b37ded463fec8cc6cdfd11d
f9f48eb70f0c6ad075c74703b78991a9572efd74f12b80e43ef0a2cc6b7befa5
GET /showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58; expires=Tue, 29-Nov-2022 02:44:37 GMT; path=/
ASP.NET_SessionId=ideih50nuhr2c3u53m3r3g0v; path=/; HttpOnly; SameSite=Lax
BMDSD365TP50BFACTEX=9b26f84b-dfe6-409c-b38f-da4814564074=1; expires=Thu, 01-Dec-2022 02:44:37 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:36 GMT
Content-Length: 339
4.bp.blogspot.com/-oMcDAR6uBnM/TwW8My6p2VI/AAAAAAAABac/AKyri-7rSbs/s200/Osmanl%25C4%25B1+D%25C3%25BC%25C5%259F%25C3%25BCnce+D%25C3%25BCnyas%25C4%25B1+ve+Tarih+Yaz%25C4%25B1m%25C4%25B1+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 14 kB URL HTTP/1.1 4.bp.blogspot.com/-oMcDAR6uBnM/TwW8My6p2VI/AAAAAAAABac/AKyri-7rSbs/s200/Osmanl%25C4%25B1+D%25C3%25BC%25C5%259F%25C3%25BCnce+D%25C3%25BCnyas%25C4%25B1+ve+Tarih+Yaz%25C4%25B1m%25C4%25B1+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash 082c806b9d3b6332d6fbd8c8541b3960
19f6ffc1755357b96e205a087e61f5783e4fd5a9
f5af00c40c431ad498aa96b686141ca2ea4cf063aa80dfbe7a2d5dd31050407e
GET /-oMcDAR6uBnM/TwW8My6p2VI/AAAAAAAABac/AKyri-7rSbs/s200/Osmanl%25C4%25B1+D%25C3%25BC%25C5%259F%25C3%25BCnce+D%25C3%25BCnyas%25C4%25B1+ve+Tarih+Yaz%25C4%25B1m%25C4%25B1+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a7"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_ D___nce D_nyas_ ve Tarih Yaz_m_ ilber ortayl_.jpg";filename*=UTF-8''Osmanl%C4%B1%20D%C3%BC%C5%9F%C3%BCnce%20D%C3%BCnyas%C4%B1%20ve%20Tarih%20Yaz%C4%B1m%C4%B1%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 13917
X-XSS-Protection: 0
www.google-analytics.com/analytics.js
216.239.38.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.38.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 30 Nov 2022 00:46:55 GMT
expires: Wed, 30 Nov 2022 02:46:55 GMT
cache-control: public, max-age=7200
age: 7068
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-mFwenoIU7ig/TwWu9o1JLPI/AAAAAAAABZg/OgANLMSQa6Q/s200/Tarihin+I%25C5%259F%25C4%25B1%25C4%259F%25C4%25B1nda+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 2.bp.blogspot.com/-mFwenoIU7ig/TwWu9o1JLPI/AAAAAAAABZg/OgANLMSQa6Q/s200/Tarihin+I%25C5%259F%25C4%25B1%25C4%259F%25C4%25B1nda+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 129x200, components 3\012- data
Hash e23286740ef7f77d4e084a5a8b22dc02
8159f7dd739934a1576224622825ef2a84d97abb
05ddf4e27eaa60c0affbfbdef2c10d29bab911596163f40d095de9b9b6b86820
GET /-mFwenoIU7ig/TwWu9o1JLPI/AAAAAAAABZg/OgANLMSQa6Q/s200/Tarihin+I%25C5%259F%25C4%25B1%25C4%259F%25C4%25B1nda+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vfbf"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Tarihin I____nda ilber ortayl_.jpg";filename*=UTF-8''Tarihin%20I%C5%9F%C4%B1%C4%9F%C4%B1nda%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 12667
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-VzOrsvLpL7g/TwXLIuHtyFI/AAAAAAAABc4/g0T7mNAe9mY/s200/Defterimden+Portreler+Tarihimizden+ve+G%25C3%25BCn%25C3%25BCm%25C3%25BCzden.jpg
142.250.74.161200 OK 16 kB URL HTTP/1.1 2.bp.blogspot.com/-VzOrsvLpL7g/TwXLIuHtyFI/AAAAAAAABc4/g0T7mNAe9mY/s200/Defterimden+Portreler+Tarihimizden+ve+G%25C3%25BCn%25C3%25BCm%25C3%25BCzden.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 129x200, components 3\012- data
Hash ae91e0d6e46e6a1093db0fecccc5e339
465846ff8220fb37b156df9048a074af628f538a
e227c66a95677059f6b137686c1bcd5c268109a2f622b69ed0efc26d3dce8fbb
GET /-VzOrsvLpL7g/TwXLIuHtyFI/AAAAAAAABc4/g0T7mNAe9mY/s200/Defterimden+Portreler+Tarihimizden+ve+G%25C3%25BCn%25C3%25BCm%25C3%25BCzden.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vfbf"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Defterimden Portreler Tarihimizden ve G_n_m_zden.jpg";filename*=UTF-8''Defterimden%20Portreler%20Tarihimizden%20ve%20G%C3%BCn%C3%BCm%C3%BCzden.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 15960
X-XSS-Protection: 0
3.bp.blogspot.com/-Jdg9XOe-CxU/TwW7W1oQJrI/AAAAAAAABaQ/4RheXWthheE/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+Alman+N%25C3%25BCfuzu+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 11 kB URL HTTP/1.1 3.bp.blogspot.com/-Jdg9XOe-CxU/TwW7W1oQJrI/AAAAAAAABaQ/4RheXWthheE/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+Alman+N%25C3%25BCfuzu+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 131x200, components 3\012- data
Hash 2f4be921f27086bc8257f0150a3f84d0
fb5ca70e26ece692aa0b6bda45cfdb707ea65ddf
8f1a4bb3ab2ffcd7c2ade22722d6dce4f89fcd096fdbb186830e9b654cb33828
GET /-Jdg9XOe-CxU/TwW7W1oQJrI/AAAAAAAABaQ/4RheXWthheE/s200/Osmanl%25C4%25B1+%25C4%25B0mparatorlu%25C4%259Fu%2527nda+Alman+N%25C3%25BCfuzu+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a4"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_ _mparatorlu_u'nda Alman N_fuzu ilber ortayl_.jpg";filename*=UTF-8''Osmanl%C4%B1%20%C4%B0mparatorlu%C4%9Fu'nda%20Alman%20N%C3%BCfuzu%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 11414
X-XSS-Protection: 0
1.bp.blogspot.com/-AIwG5hUOYSc/TwXMhxyTXaI/AAAAAAAABdE/qGkg3O_kuYA/s200/Zaman+Kaybolmaz.jpg
142.250.74.161200 OK 12 kB URL HTTP/1.1 1.bp.blogspot.com/-AIwG5hUOYSc/TwXMhxyTXaI/AAAAAAAABdE/qGkg3O_kuYA/s200/Zaman+Kaybolmaz.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 132x200, components 3\012- data
Hash 660bc66c8bfd08026288554b4abf22fb
76d186598b82e3a999c6dc6fa50a0ffe3463046e
75222e494caa41bca7a4ba76f7a016977087c32c07303f8ae85e7966fb3db4a6
GET /-AIwG5hUOYSc/TwXMhxyTXaI/AAAAAAAABdE/qGkg3O_kuYA/s200/Zaman+Kaybolmaz.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5d1"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Zaman Kaybolmaz.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 12270
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com
142.250.74.162200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with very long lines (6148)
Size 119 kB (119174 bytes)
Hash ebfba46fbec584e60104a85b282d902e
4805386d6e1639e54d39540f42804276e0685242
393e18ed1984c728e31e5ada866ffb0ff4d6997a78a15920ea7ebf040e53de39
GET /pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7168214029370425&plah=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 30 Nov 2022 02:44:43 GMT
expires: Wed, 30 Nov 2022 02:44:43 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 12350122865156925252
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.idefix.com/cache/0/270/407237
108.157.229.23200 OK 71 kB URL HTTP/1.1 static.idefix.com/cache/0/270/407237
IP 108.157.229.23:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", progressive, precision 8, 270x419, components 3\012- data
Hash 94bc945dd91d088712a94f7bc7a3e02d
c01d10d667733683d265c5aad11ed40ed194eb7b
4959e39752e2ff4b33524a04e80fac1bbe1a2159641111c41c08e524bcf97fa1
GET /cache/0/270/407237 HTTP/1.1
Host: static.idefix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 30 Nov 2022 02:44:42 GMT
Server: Apache/2.2.3 (CentOS)
Content-Disposition: inline; filename="phpThumb_generated_thumbnail.jpeg"
Cache-Control: max-age=31536000
Expires: Thu, 30 Nov 2023 02:44:42 GMT
X-Cache: Miss from cloudfront
Via: 1.1 2cbf148f6c14a1a6f56400dc9dc76f2a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P2
X-Amz-Cf-Id: 2-df9P__OQsJt6xd7-ZQZXv4bi85gf19H2sK_WtKUE8IHmqxxELJgg==
3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
142.250.74.161200 OK 9.4 kB URL HTTP/1.1 3.bp.blogspot.com/-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 80 x 67\012- data
Hash c623657241ae3b196a536deff4f2c2a3
2691e12c46d950a22c3a228e1897ef6002689469
344a085a5778689f03282da04e55d535de1f32a6775eb251576056f5b4500621
GET /-c7gXQjyGiCg/UJtSyQZwyKI/AAAAAAAACxQ/RP3Q7LIyPZ4/s80/anatomy.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anatomy.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9363
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 02:44:43 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vdd7"
Content-Type: image/gif
Age: 0
2.bp.blogspot.com/-gofHu7Qmk-o/TwXDYIpDfyI/AAAAAAAABb8/gHRuK9HuV-A/s200/Tarihimiz+ve+Biz+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+4.JPG
142.250.74.161200 OK 14 kB URL HTTP/1.1 2.bp.blogspot.com/-gofHu7Qmk-o/TwXDYIpDfyI/AAAAAAAABb8/gHRuK9HuV-A/s200/Tarihimiz+ve+Biz+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+4.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 128x200, components 3\012- data
Hash 89e2ac5fccc55b36c07fcdbb7895a448
76208301d90b031248c0bc0eb2b40b95f451bec8
d3053455c9863512fb11dba7d53f1db777baa6ad2576a593a640f15e36b86949
GET /-gofHu7Qmk-o/TwXDYIpDfyI/AAAAAAAABb8/gHRuK9HuV-A/s200/Tarihimiz+ve+Biz+Osmanl%25C4%25B1%2527y%25C4%25B1+Yeniden+Ke%25C5%259Ffetmek+4.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5bf"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Tarihimiz ve Biz Osmanl_'y_ Yeniden Ke_fetmek 4.JPG";filename*=UTF-8''Tarihimiz%20ve%20Biz%20Osmanl%C4%B1'y%C4%B1%20Yeniden%20Ke%C5%9Ffetmek%204.JPG
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 13616
X-XSS-Protection: 0
2.bp.blogspot.com/-X_QCL2bLsAg/TwXJ8Ai345I/AAAAAAAABcs/I51lWOTLpU0/s200/Osmanl%25C4%25B1%2527da+Milletler+ve+Diplomasi+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 14 kB URL HTTP/1.1 2.bp.blogspot.com/-X_QCL2bLsAg/TwXJ8Ai345I/AAAAAAAABcs/I51lWOTLpU0/s200/Osmanl%25C4%25B1%2527da+Milletler+ve+Diplomasi+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash 2fcb08ff9197b4e51e51d62afaae49f9
5c17144f91eed5e5a6033bd08327ca6897603173
173e7204bc2a4f34d1a27870cdbec9b79bffada86f981d25179549d43fd1e6ff
GET /-X_QCL2bLsAg/TwXJ8Ai345I/AAAAAAAABcs/I51lWOTLpU0/s200/Osmanl%25C4%25B1%2527da+Milletler+ve+Diplomasi+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5cb"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Osmanl_'da Milletler ve Diplomasi ilber ortayl_.jpg";filename*=UTF-8''Osmanl%C4%B1'da%20Milletler%20ve%20Diplomasi%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 13882
X-XSS-Protection: 0
www.google-analytics.com/j/collect?v=1&_v=j98&a=1206817609&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2F%25C4%25B0lber%2520Ortayl%25C4%25B1&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20%C4%B0lber%20Ortayl%C4%B1&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1767104970&gjid=1283340382&cid=2039486636.1669776282&tid=UA-19003279-7&_gid=1473502716.1669776282&_r=1&_slc=1&z=632903583
216.239.38.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1206817609&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2F%25C4%25B0lber%2520Ortayl%25C4%25B1&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20%C4%B0lber%20Ortayl%C4%B1&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1767104970&gjid=1283340382&cid=2039486636.1669776282&tid=UA-19003279-7&_gid=1473502716.1669776282&_r=1&_slc=1&z=632903583
IP 216.239.38.178:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1206817609&t=pageview&_s=1&dl=http%3A%2F%2Fbookworm-bilgeadam.blogspot.com%2Fsearch%2Flabel%2F%25C4%25B0lber%2520Ortayl%25C4%25B1&ul=en-us&de=UTF-8&dt=!%20Bilmek%20kaliteli%20ya%C5%9Famakt%C4%B1r%20%2F%20Kitap%20Blogu%20%2F%20Kitap%20Okumak%20%2F%20Genel%20K%C3%BClt%C3%BCr%3A%20%C4%B0lber%20Ortayl%C4%B1&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1767104970&gjid=1283340382&cid=2039486636.1669776282&tid=UA-19003279-7&_gid=1473502716.1669776282&_r=1&_slc=1&z=632903583 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://bookworm-bilgeadam.blogspot.com
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://bookworm-bilgeadam.blogspot.com
date: Wed, 30 Nov 2022 02:44:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-Oj14q3LeJkQ/TwWxm_7manI/AAAAAAAABZs/om-ZR1YBHZM/s200/Tarih+Sohbetleri+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 19 kB URL HTTP/1.1 2.bp.blogspot.com/-Oj14q3LeJkQ/TwWxm_7manI/AAAAAAAABZs/om-ZR1YBHZM/s200/Tarih+Sohbetleri+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 128x200, components 3\012- data
Hash fdfdf8d6978b328c2616faaed95fab53
fef32571e062915d2792f81d33fd35ecb074af31
35bdecb51c20660569774ca0c1f4f09fac422eb6e6a35bd934f331dbe7b6010c
GET /-Oj14q3LeJkQ/TwWxm_7manI/AAAAAAAABZs/om-ZR1YBHZM/s200/Tarih+Sohbetleri+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vfbf"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Tarih Sohbetleri ilber ortayl_.jpg";filename*=UTF-8''Tarih%20Sohbetleri%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 19310
X-XSS-Protection: 0
bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCoEfDvWYjM28krBX1MNIxHg1UOL9UXjfvIjDcDWeELPW-5kKSCD8n5M816L8TolcVOje8DxGr-UxSUwyEsJxm3zlb91g
172.217.21.161200 OK 240 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCoEfDvWYjM28krBX1MNIxHg1UOL9UXjfvIjDcDWeELPW-5kKSCD8n5M816L8TolcVOje8DxGr-UxSUwyEsJxm3zlb91g
IP 172.217.21.161:0
File type JSON data\012- , ASCII text, with very long lines (389), with no line terminators
Hash 8e2c9846172d4310033f9657e875facc
1128576d848d8cf0697863f9499fa2327d74df64
13c00e566bed4d89e062446edf42079fef888fe8367543ec4a95443caa9f8a8d
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCoEfDvWYjM28krBX1MNIxHg1UOL9UXjfvIjDcDWeELPW-5kKSCD8n5M816L8TolcVOje8DxGr-UxSUwyEsJxm3zlb91g HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/%C4%B0lber%20Ortayl%C4%B1
Cookie: cwou_bookwormbilgeadam=1669776282; bwou_bookwormbilgeadam=1669776282; woubookwormbilgeadam=t
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 30 Nov 2022 02:44:43 GMT
Expires: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 240
Server: GSE
1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
142.250.74.161200 OK 24 kB URL HTTP/1.1 1.bp.blogspot.com/-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x372, components 3\012- data
Hash 236d5a35ee196634d6618435be21e5a1
ce5221e81ca6a3b7d195a04009e8d28f14d1c18c
82348a8f23dc69296e399f9e8073dcbe4e265e8e8a7b4e0b06aeb4da8d366f26
GET /-6MrBShV8Cv0/Umv4jn59laI/AAAAAAAADio/SFjK-u0QZCY/s1600/nerelerde_kitap_okunur.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve2b"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nerelerde_kitap_okunur.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 23635
X-XSS-Protection: 0
www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7477769263351366370&zx=15b48567-b6c9-489b-bb01-da346b7ea509 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 02:44:43 GMT
last-modified: Wed, 30 Nov 2022 02:44:43 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 14bc2bf6e3158890bec81a596e3f6bf0
87b3b9b92320b230704454c03a21f8a468f1a05c
997e6f25a393a0e85f979b0f0b73451d988bc07d762517a78cc9d72c14c9d59d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
216.58.207.233200 OK 2.6 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 447a0f90697a0e59f69cc9c403d46ea0
276b5c02e53ebbf978054e01ae06d69d867661b1
2d09996481855d87debd4068214db57b16bda89d3808da62c5f31f9841d2b9bb
GET /navbar.g?targetBlogID=7477769263351366370&blogName=!+Bilmek+kaliteli+ya%C5%9Famakt%C4%B1r+/+Kitap+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://bookworm-bilgeadam.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=http://bookworm-bilgeadam.blogspot.com/&vt=5098400471594981234&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 02:44:43 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2626
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
216.58.207.226200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 1dd0ec50620ac1191e9ac52c1de4dabc
07d785c8a5056630c69231846c614a833ac5d159
b6a848b6e467cf78634839db46f118142d182e78948339741293369a20a0dadc
GET /gampad/cookie.js?domain=bookworm-bilgeadam.blogspot.com&callback=_gfp_s_&client=ca-pub-7168214029370425&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 02:44:43 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
142.250.74.161200 OK 2.5 kB URL HTTP/1.1 1.bp.blogspot.com/-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 36f16f09a5115ffed779db71133f0710
ce3ea0e6716770c580959d62c7c285bdd31632d5
859cd33d4518e807061488fdfa08a55708739ae88633328346574688899a1520
GET /-jjAXEjIDro0/URulzNLVHCI/AAAAAAAADBQ/lhzHEdjl4gs/w72-h72-p-k-no-nu/can+s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc14"
Expires: Thu, 01 Dec 2022 02:44:43 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="can s_k_nt_s_.jpg";filename*=UTF-8''can%20s%C4%B1k%C4%B1nt%C4%B1s%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 2526
X-XSS-Protection: 0
1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 1.bp.blogspot.com/-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d959c4c88baf56ba285135a00eedf0c0
22d40e06fe2d669f3dbffb02330cc938f78134f6
a8e12299bb04d2c44b4afdb99d76de3ed90f4864238fffa2a8340d653e2ade78
GET /-u8haA9t7CWE/TwB9N6UiBKI/AAAAAAAABHE/O0nRTJhX8Sk/w72-h72-p-k-no-nu/en+g%25C3%25BCzel+kitap+oku.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="en g_zel kitap oku.jpg";filename*=UTF-8''en%20g%C3%BCzel%20kitap%20oku.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5015
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 02:44:43 GMT
Expires: Thu, 24 Nov 2022 12:46:18 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v471"
Content-Type: image/jpeg
Age: 0
adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 02:44:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bookworm-bilgeadam.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 02:44:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee42df19cb85a32274da55a436f6099c
f2efc95b28a170acce5d07080a1841a704490890
d227692b55435fe171db887ceecd17983ee29cc2ed2b8f1f11429fa9116474d3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-DVfQuWXz4pI/TwW0i4JgtxI/AAAAAAAABZ4/ufplJKHmVF8/s200/Ottoman+Studies+ilber+ortayl%25C4%25B1.jpg
142.250.74.161200 OK 15 kB URL HTTP/1.1 4.bp.blogspot.com/-DVfQuWXz4pI/TwW0i4JgtxI/AAAAAAAABZ4/ufplJKHmVF8/s200/Ottoman+Studies+ilber+ortayl%25C4%25B1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 138x200, components 3\012- data
Hash f57baee0824b892ff308d328b266a015
a2a3be98b13da7ebaee91ea18c84763708b9bdbf
df1895f45cf2654ec66fce62917abc606348bba508f417793730c0cd4f0dd973
GET /-DVfQuWXz4pI/TwW0i4JgtxI/AAAAAAAABZ4/ufplJKHmVF8/s200/Ottoman+Studies+ilber+ortayl%25C4%25B1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v59e"
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: private, max-age=86400, no-transform
Content-Disposition: inline;filename="Ottoman Studies ilber ortayl_.jpg";filename*=UTF-8''Ottoman%20Studies%20ilber%20ortayl%C4%B1.jpg
Content-Type: image/jpeg
Vary: Origin
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 02:44:43 GMT
Server: fife
Content-Length: 15220
X-XSS-Protection: 0
bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
213.243.16.160200 OK 2.8 kB URL HTTP/1.1 bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (1100), with CRLF line terminators
Hash 021cc4e58c31f9a1accd1d0a569f6532
62a81e3cbf2f041594b57b01f6ad5ac53f1b5967
8b6c1ac7d52bc1b8abcf4649f23d911162ff1d7c10004f37e4601ddeda743d81
GET /templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074 HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/showadvert.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074&ctype=58
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=windows-1254
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Set-Cookie: HurriyetNewSiteUser=RequestURL=http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074; expires=Tue, 29-Nov-2022 02:44:37 GMT; path=/
ASP.NET_SessionId=rizrlbvcwbtpocvjqk1bigb3; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 2781
bumerangeski.boomads.com/styles/ads.css
213.243.16.160200 OK 2.7 kB URL HTTP/1.1 bumerangeski.boomads.com/styles/ads.css
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type ASCII text, with very long lines (545), with CRLF line terminators
Hash 7c6b613326b653f457ea18a1021d0787
e87ec524338257fd33b0680847c578e908b39cad
1dcd77f26a60f337ba20a8a54dd3c697e77ac54f07e7d48ddfab994e6a09cdc7
GET /styles/ads.css HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 22 Sep 2012 15:53:35 GMT
Accept-Ranges: bytes
ETag: "80693f6cda98cd1:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 2725
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5559d3bff3b0df32a76343a873b15612
bc2faed483f422fc34b9863fc2028a9373832427
c18670a28169ee49d550b634ea930e61694b6705e1d3144337f9de539de13233
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bumerangeski.boomads.com/images/spacer.gif
213.243.16.160200 OK 43 B URL HTTP/1.1 bumerangeski.boomads.com/images/spacer.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/spacer.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Fri, 21 May 2010 06:38:30 GMT
Accept-Ranges: bytes
ETag: "9a3fe939b0f8ca1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 43
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
172.217.21.161200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221110/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:29:36 GMT
expires: Tue, 13 Dec 2022 13:29:36 GMT
cache-control: public, max-age=1209600
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
age: 47707
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/images/ads/s_yesil_02.gif
213.243.16.160200 OK 1.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_02.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 1 x 24\012- data
Hash ef48574fa8efe62c1bad08f07e40424c
28abdbc5e24e5784223a13e4536e655e30cdfac1
81a64667790d4348f62efbb14029585678c18aab327c1ce902ffee4aa31097f2
GET /images/ads/s_yesil_02.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "f6bbbc1aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 1261
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5559d3bff3b0df32a76343a873b15612
bc2faed483f422fc34b9863fc2028a9373832427
c18670a28169ee49d550b634ea930e61694b6705e1d3144337f9de539de13233
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.162200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.162:0
File type ASCII text, with very long lines (3502)
Hash 297e24828abaf97fb29460fd75369140
e9e02d737f1bcf9874a55562edff5f795a1c170c
cdbe4e689ca060e94f00f0aa4c45a89efacddac90df42929ff42a3bff44a9d3e
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48265
date: Wed, 30 Nov 2022 02:44:43 GMT
expires: Wed, 30 Nov 2022 02:44:43 GMT
cache-control: private, max-age=3000
etag: "1668095300071091"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
213.243.16.160200 OK 4.0 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/s_yesil_bg.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 29\012- data
Hash 1df7c6c630f84a791ecf18651b4429fb
26eee83128ab29845906e838298d2ef77c998ead
3badc27a242b146034883b5529d5e0ef713f45bd3246c43615ce32bf643b8037
GET /images/ads/s_yesil_bg.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:01 GMT
Accept-Ranges: bytes
ETag: "b64cc61aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 3993
bookworm-bilgeadam.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 bookworm-bilgeadam.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: bookworm-bilgeadam.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/search/label/%C4%B0lber%20Ortayl%C4%B1
Cookie: cwou_bookwormbilgeadam=1669776282; bwou_bookwormbilgeadam=1669776282; woubookwormbilgeadam=t; _ga=GA1.3.2039486636.1669776282; _gid=GA1.3.1473502716.1669776282; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Wed, 30 Nov 2022 02:44:44 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 21 Nov 2022 12:22:53 GMT
ETag: W/"d6a77c8b0755133aa14cdab30e9934b71ac9eea4967768cc1bdc11f95850c95a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash ee9d7267c5c33c7cdba1ecbe1ff2ebbf
6f7be2ba1e4f077d9d45de30adc1220b1f545943
ca31974b1b175063846b368f144ee9b471ecf615bdb2e0d1b20ff84e21928bee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1442
Cache-Control: max-age=161557
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6386920f-138"
Expires: Thu, 01 Dec 2022 23:37:21 GMT
Last-Modified: Tue, 29 Nov 2022 23:13:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash ee9d7267c5c33c7cdba1ecbe1ff2ebbf
6f7be2ba1e4f077d9d45de30adc1220b1f545943
ca31974b1b175063846b368f144ee9b471ecf615bdb2e0d1b20ff84e21928bee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1442
Cache-Control: max-age=161557
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6386920f-138"
Expires: Thu, 01 Dec 2022 23:37:21 GMT
Last-Modified: Tue, 29 Nov 2022 23:13:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash ee9d7267c5c33c7cdba1ecbe1ff2ebbf
6f7be2ba1e4f077d9d45de30adc1220b1f545943
ca31974b1b175063846b368f144ee9b471ecf615bdb2e0d1b20ff84e21928bee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1442
Cache-Control: max-age=161557
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6386920f-138"
Expires: Thu, 01 Dec 2022 23:37:21 GMT
Last-Modified: Tue, 29 Nov 2022 23:13:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
213.243.16.160200 OK 3.3 kB URL HTTP/1.1 bumerangeski.boomads.com/images/ads/buton_yesil_saglik.gif
IP 213.243.16.160:0
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
File type GIF image data, version 89a, 180 x 28\012- data
Hash 504b338076be77e4a2bc400c79177fd0
d91f251482238fc3359e5855e95fb9b09efd5c66
073807612778e4fc61a6ab404ff1cd8b668a5028f74ddd372d5abdc721c8d2fa
GET /images/ads/buton_yesil_saglik.gif HTTP/1.1
Host: bumerangeski.boomads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bumerangeski.boomads.com/templates/saglik_yesil_180x380.aspx?clientid=9b26f84b-dfe6-409c-b38f-da4814564074
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Mon, 18 Oct 2010 09:09:00 GMT
Accept-Ranges: bytes
ETag: "8662771aa46ecb1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
XSrv: BOOM01
Date: Wed, 30 Nov 2022 02:44:37 GMT
Content-Length: 3282
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 30 Nov 2022 07:16:21 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 30 Nov 2022 07:16:21 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 30 Nov 2022 07:16:21 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 30 Nov 2022 07:16:21 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16297
Expires: Wed, 30 Nov 2022 07:16:21 GMT
Date: Wed, 30 Nov 2022 02:44:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GydenCzPtpFdVLqN4ssiZ4dKN48WGneS3mwzEdDE81pobtLznfC4VQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:07:59 GMT
age: 16605
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rtfl896JX35oFFEVmqyH9Nm62iSY6rqwzkLwZMcM45p_ySF6J2QwEQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:47 GMT
age: 17997
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ec2HkhHmHE2ddGBpLsJ5Rn7SCMjyR5kzaTyrguDoI9xOohgsCi08CQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 18018
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d64lSE184IwrwZKVC8KOUINEBclth9b7xRGV9T1uNfAptgXz0bxKhw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:14:25 GMT
age: 16219
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7c72c70f2b8be44dd384abb4b4a6fdd
eed94c5cb2a5810e985894af5d5f73238a83e136
49a560a81471ad567067dfa4be4bc02d592eeac9ac5bf5376e67f8c93d2ef0d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffcc0013-bfb7-45fa-bdf2-4b7a90daae54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8953
x-amzn-requestid: 65d5d2d4-62aa-4d5b-abd4-1aa52eb3550f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhXeFPgoAMFojw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c2f-6eaf6ebe4bb408d51abe0660;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:39:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DqSVagVTQVJm7gZyiBIQP-X113XjRI5tHxaxLRFD1b7aQQiRyKoPZA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:45 GMT
age: 17999
etag: "eed94c5cb2a5810e985894af5d5f73238a83e136"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acb1e555533322dbfeb8e0d8c956c43d
e1eec39299f081b53c647953b57da4f2f1ba10bc
579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5492
x-amzn-requestid: 4b09d9a8-09fa-40e5-a996-8a6ad9f8283e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgE9E5TIAMF6ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1f-2f17467d7a6318796d01fd2e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:11 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8kjwcw34ssnai7n-fW6lGV5ZmFpHR7bTX5MvKPNSgqqzMAgGFCI5fA==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "e1eec39299f081b53c647953b57da4f2f1ba10bc"
content-type: image/jpeg
age: 18009
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 94e8c8784bb1243b633aa311f29ebc59
39c09b1d249977e42e2bc9481be6063208750344
6b50c6e456e7709ded1cb20bf54576cea3674f7f6ee1697cbf2addc544eceb53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash e8ee1bb872dfa18ae6ec02e41532544b
89bf07ef037291b2255de88877597d9ee827147c
7b122646c71ba9bc0ce327274a6e0f6e73fea5edf2cbdeadb9e5eddecf5c9e1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1472
Cache-Control: max-age=103982
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6385b10a-138"
Expires: Thu, 01 Dec 2022 07:37:46 GMT
Last-Modified: Tue, 29 Nov 2022 07:13:14 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EJvDhmN5yv-jSMgeebZJzwASAAA&wp=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EJvDhmN5yv-jSMgeebZJzwASAAA&wp=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWawC2ASdg2ICAgAAAGtD7PegAgx1EJvDhmN5yv-jSMgeebZJzwASAAA&wp=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 316041
date: Wed, 30 Nov 2022 02:44:43 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEJrDhmNQkny0-oWtTpYSUwASAAA&wp=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEJrDhmNQkny0-oWtTpYSUwASAAA&wp=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWawC-gGdg2ICAgAAAJxfQb2KCE9vEJrDhmNQkny0-oWtTpYSUwASAAA&wp=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 142949
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEJvDhmNAKnZAwnx7mglXIwASAAA&wp=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEJvDhmNAKnZAwnx7mglXIwASAAA&wp=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWcAEmAKdg2ICAgAAAPL-iLEbJCucEJvDhmNAKnZAwnx7mglXIwASAAA&wp=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 413481
date: Wed, 30 Nov 2022 02:44:43 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw&u=%7C2doVo1LhGDdC%2FeYgWiNj38ZwRKs0QaENpuZvYOT%2Fh3M%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrogQIIXJ_M647t4cwh4gE_FigkoGQ1qtvWlHbhwWR1UthUkqcSTKEGeAkWsbAsxBNHofNfPrqQmmN-6e7vubTGkYnUSyhsPj-57eEDQreCGuAjHJV_IyLINYasUygaBLb3uCZV0SHa-mI8s73vk4SVpIPxJHBf4GsAe1m9Wsyiu24QUrPj4Mkunh2lmX_6TeOMXpsatjrhA2QGl1wfxnZFTZqiOlxZTgsXy9laYsbiMgw_z3Xbak0DXPkYRariNwPnsbgx8H0iDV3x_m49_dqoFk6et3OVI16BnpZRSzsRuAAns5LzS0ThH71mPY2va5iYXONJ2sbzkvsETtbhg6EEU-JXbRKu4jP3GJaHDYUDaAI_-EvPzAoboyh6sqnNcpO1o8QIoBUKasBl6ewVX1orNWpFNNbVyeUP9iIHrEgHC6pRJzUh8eRIWupVMn9JX90dsWBG1QFtKf8rcS5eRoiQU9m-98K-YxRb0Liv-aH0OwaFnfKdl12MQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DChUfnm8OGY7yGLYm_6wT_ooqoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIoCT9Ar233-mTeW8UeHdRlJa6C9XNMAWxe-JUQCAA6DVWoJMi3hrjrwcAYQ8wIh2USAfchy69JgDXfD-ht_NMK-sfGfCbV2wVzEcgI6FWBlKQ3p3UzZY2Vcc3t0eyiixJZNPNpBVuJRZsLlrBT6ElzBC2TCSiCoqYZGIxfsbK5nUAv6o0mvnJzx9KUhAwzt_k2-55GH2FovjpbBLaCfb5J4SYFw3Dz904iXUZ8kYzulm1t8O9Im_lYBv8fM2FBxCe9nG3RPJMhuZ1AZAox7fBAB1EVP7qzObUhwjU2RyAwDeeE_nGRG-CYIqJGEc9-8KqAkRhL5mlb7F9w0PMZ9p6xFPmsDZYc7A-IwuGiABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0kqH0ZZH3iHcr27t1HRDZJ06b7OQ%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 48 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw&u=%7C2doVo1LhGDdC%2FeYgWiNj38ZwRKs0QaENpuZvYOT%2Fh3M%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrogQIIXJ_M647t4cwh4gE_FigkoGQ1qtvWlHbhwWR1UthUkqcSTKEGeAkWsbAsxBNHofNfPrqQmmN-6e7vubTGkYnUSyhsPj-57eEDQreCGuAjHJV_IyLINYasUygaBLb3uCZV0SHa-mI8s73vk4SVpIPxJHBf4GsAe1m9Wsyiu24QUrPj4Mkunh2lmX_6TeOMXpsatjrhA2QGl1wfxnZFTZqiOlxZTgsXy9laYsbiMgw_z3Xbak0DXPkYRariNwPnsbgx8H0iDV3x_m49_dqoFk6et3OVI16BnpZRSzsRuAAns5LzS0ThH71mPY2va5iYXONJ2sbzkvsETtbhg6EEU-JXbRKu4jP3GJaHDYUDaAI_-EvPzAoboyh6sqnNcpO1o8QIoBUKasBl6ewVX1orNWpFNNbVyeUP9iIHrEgHC6pRJzUh8eRIWupVMn9JX90dsWBG1QFtKf8rcS5eRoiQU9m-98K-YxRb0Liv-aH0OwaFnfKdl12MQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DChUfnm8OGY7yGLYm_6wT_ooqoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIoCT9Ar233-mTeW8UeHdRlJa6C9XNMAWxe-JUQCAA6DVWoJMi3hrjrwcAYQ8wIh2USAfchy69JgDXfD-ht_NMK-sfGfCbV2wVzEcgI6FWBlKQ3p3UzZY2Vcc3t0eyiixJZNPNpBVuJRZsLlrBT6ElzBC2TCSiCoqYZGIxfsbK5nUAv6o0mvnJzx9KUhAwzt_k2-55GH2FovjpbBLaCfb5J4SYFw3Dz904iXUZ8kYzulm1t8O9Im_lYBv8fM2FBxCe9nG3RPJMhuZ1AZAox7fBAB1EVP7qzObUhwjU2RyAwDeeE_nGRG-CYIqJGEc9-8KqAkRhL5mlb7F9w0PMZ9p6xFPmsDZYc7A-IwuGiABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0kqH0ZZH3iHcr27t1HRDZJ06b7OQ%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
Hash 74b376c1c46a6680ab652bda01c48bae
c03055ce5ba6956368b43845ea76d1ab1045d1b5
adfa16bbcb46c17d7bffa241742f5c2707e900958a2b0d8a043d3d12ca880150
GET /delivery/r/afr.php?z=Y4bDmwALQzwKmt-JAAKRf5wqzTkowB2S99FEqw&u=%7C2doVo1LhGDdC%2FeYgWiNj38ZwRKs0QaENpuZvYOT%2Fh3M%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKywCQfyPPNAxrogQIIXJ_M647t4cwh4gE_FigkoGQ1qtvWlHbhwWR1UthUkqcSTKEGeAkWsbAsxBNHofNfPrqQmmN-6e7vubTGkYnUSyhsPj-57eEDQreCGuAjHJV_IyLINYasUygaBLb3uCZV0SHa-mI8s73vk4SVpIPxJHBf4GsAe1m9Wsyiu24QUrPj4Mkunh2lmX_6TeOMXpsatjrhA2QGl1wfxnZFTZqiOlxZTgsXy9laYsbiMgw_z3Xbak0DXPkYRariNwPnsbgx8H0iDV3x_m49_dqoFk6et3OVI16BnpZRSzsRuAAns5LzS0ThH71mPY2va5iYXONJ2sbzkvsETtbhg6EEU-JXbRKu4jP3GJaHDYUDaAI_-EvPzAoboyh6sqnNcpO1o8QIoBUKasBl6ewVX1orNWpFNNbVyeUP9iIHrEgHC6pRJzUh8eRIWupVMn9JX90dsWBG1QFtKf8rcS5eRoiQU9m-98K-YxRb0Liv-aH0OwaFnfKdl12MQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DChUfnm8OGY7yGLYm_6wT_ooqoCcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIoCT9Ar233-mTeW8UeHdRlJa6C9XNMAWxe-JUQCAA6DVWoJMi3hrjrwcAYQ8wIh2USAfchy69JgDXfD-ht_NMK-sfGfCbV2wVzEcgI6FWBlKQ3p3UzZY2Vcc3t0eyiixJZNPNpBVuJRZsLlrBT6ElzBC2TCSiCoqYZGIxfsbK5nUAv6o0mvnJzx9KUhAwzt_k2-55GH2FovjpbBLaCfb5J4SYFw3Dz904iXUZ8kYzulm1t8O9Im_lYBv8fM2FBxCe9nG3RPJMhuZ1AZAox7fBAB1EVP7qzObUhwjU2RyAwDeeE_nGRG-CYIqJGEc9-8KqAkRhL5mlb7F9w0PMZ9p6xFPmsDZYc7A-IwuGiABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0kqH0ZZH3iHcr27t1HRDZJ06b7OQ%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 36241842
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3a0a01094712c4dfe702588ec1cac257
dcd959c6bf3999d48ea6b782dbbcd3e5d9520bc0
6bb28aff4d50f3d35ef74ab0802b3e94c2f26bd306e9cbaf4d378681572bbf32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3a0a01094712c4dfe702588ec1cac257
dcd959c6bf3999d48ea6b782dbbcd3e5d9520bc0
6bb28aff4d50f3d35ef74ab0802b3e94c2f26bd306e9cbaf4d378681572bbf32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1487
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3a0a01094712c4dfe702588ec1cac257
dcd959c6bf3999d48ea6b782dbbcd3e5d9520bc0
6bb28aff4d50f3d35ef74ab0802b3e94c2f26bd306e9cbaf4d378681572bbf32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3a0a01094712c4dfe702588ec1cac257
dcd959c6bf3999d48ea6b782dbbcd3e5d9520bc0
6bb28aff4d50f3d35ef74ab0802b3e94c2f26bd306e9cbaf4d378681572bbf32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3a0a01094712c4dfe702588ec1cac257
dcd959c6bf3999d48ea6b782dbbcd3e5d9520bc0
6bb28aff4d50f3d35ef74ab0802b3e94c2f26bd306e9cbaf4d378681572bbf32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Last-Modified: Wed, 30 Nov 2022 02:19:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b994b2317328e155754baf3e73bbd3d0
488e4de2ae0103e833af064a35ddd2e68706493d
eea297488392f4bd056b7fa548067493cc3a4e42017f104f2297102c7838f05a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=119837
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6385eee3-138"
Expires: Thu, 01 Dec 2022 12:02:01 GMT
Last-Modified: Tue, 29 Nov 2022 11:37:07 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash b994b2317328e155754baf3e73bbd3d0
488e4de2ae0103e833af064a35ddd2e68706493d
eea297488392f4bd056b7fa548067493cc3a4e42017f104f2297102c7838f05a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=119837
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6385eee3-138"
Expires: Thu, 01 Dec 2022 12:02:01 GMT
Last-Modified: Tue, 29 Nov 2022 11:37:07 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
pix.eu.criteo.net/img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld
178.250.2.135200 OK 8.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld
IP 178.250.2.135:0
File type PNG image data, 303 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ef7dec6ed3643af4cfd629df62c412d
fcc40d1d3c3ac72e8a09ba34214d38b38c652d07
b992d1d1082d07656bca4d92b4ff0e85fdee67ef495ded576f5204b7c66f39db
GET /img/img?h=76&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=ANs_K7TN_LETkIWnc-r60Uld HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30662685
expires: Mon, 20 Nov 2023 00:09:30 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8932
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eacb9365a3f376b65d82ce111de73ae5
13df90d1a00481469916e2facf9d3b3d178e8bb8
58a55d3cef32a31b312230ecc7701e5fd284c608b096069cff0cfb47858b3509
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1498
Cache-Control: max-age=149323
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6386620d-1d7"
Expires: Thu, 01 Dec 2022 20:13:27 GMT
Last-Modified: Tue, 29 Nov 2022 19:48:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eacb9365a3f376b65d82ce111de73ae5
13df90d1a00481469916e2facf9d3b3d178e8bb8
58a55d3cef32a31b312230ecc7701e5fd284c608b096069cff0cfb47858b3509
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: max-age=149322
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Etag: "6386620d-1d7"
Expires: Thu, 01 Dec 2022 20:13:26 GMT
Last-Modified: Tue, 29 Nov 2022 19:48:29 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF
IP 178.250.2.135:0
File type PNG image data, 415 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash e9b0fd59da29f2602796f49b90db422f
ea6484f5cf21f1bb301e9c98b1fd22f22f786bee
4ebe73165f0a173af9aaf37d37dd09ceee42cc06dadad2d10c564e3c39558128
GET /img/img?h=104&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=596&s=QAVa0A0pD8hxbQtkBNT2maZF HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30662685
expires: Mon, 20 Nov 2023 00:09:30 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14495
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 28 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
Hash 59867ca58be104a30ad612c38369356a
b1e9da5da36204e31ef38a29bfa40e729a46268e
0d7d7bb306236fbf0fe9a87c084cf698be7f7f7544634ce5445cb5e5a9cf51e9
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 41 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
Hash e0c9ac9e520ce54d80167d0c3a0f315e
5338fa55e2dc71f44eb6c0c615a66534e824cf7c
e7536541f26559c718b5d1a7a561086004baa9acf0616a4a322a3683c5aecc1c
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=800
178.250.2.135200 OK 82 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6a8f452c86c3953f54669bc0bab438e
9fe6177189a16fcd76c9e02342bfa3f9de1a771e
18c2ee2b697f9911e87437615c49a15b1857aa747fb3d2479b20960ea32b0037
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=800&s=7W7V3A7O2fqUc6A4I7Cf3GSA&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 30 Nov 2022 02:44:44 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 82200
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
IP 178.250.2.135:0
File type PNG image data, 196 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash bc381116221b106493d972a9262c65e3
980f03704c3d56409200806ffc1b8269240383a4
391ed2f12f92968f164c061b48e5421254b9aae4dfce080b727d60dd6c1cb72e
GET /img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30670175
expires: Mon, 20 Nov 2023 02:14:20 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10921
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=enZEB_nTBSVdD-mFds6_mLz8BV_x7Ow2F2n77FNvRsqHWQzB5nmDNh2FwgUhFjvAyAAJJM0RLApJBFuObM9YXsXzWCBKQom6HLv-Kno3h__a0pzgosu5I-w_fGGCsfX1keJd47Hj-zMxz4YOpF19EdpdpssP504X302q2nT8ZrLgZL91aTYXsnHx5al5dJ1IeH_tU5YDYesTwR7OR3fY5U44vIbN9ChwuKs97axytVfaLwaTNSyRaEjISu3dzV3PgTrv5tKUcap7lpTe6rX0zBP9tohpA-rp2oxj-al6gtLU8n9DFS3olktkRC4Ue75BArQfomSqyPziSCqeDJdQlYPl1OxTWU0Q8HuPdQqbCWILDfDs5fSDRjQ6sKfkOIEsTmoV-CcuipzL7gG7SVJLUNJWwyh0Ezekn5ETtGOTFQwdZN5Y
178.250.2.148200 OK 515 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=enZEB_nTBSVdD-mFds6_mLz8BV_x7Ow2F2n77FNvRsqHWQzB5nmDNh2FwgUhFjvAyAAJJM0RLApJBFuObM9YXsXzWCBKQom6HLv-Kno3h__a0pzgosu5I-w_fGGCsfX1keJd47Hj-zMxz4YOpF19EdpdpssP504X302q2nT8ZrLgZL91aTYXsnHx5al5dJ1IeH_tU5YDYesTwR7OR3fY5U44vIbN9ChwuKs97axytVfaLwaTNSyRaEjISu3dzV3PgTrv5tKUcap7lpTe6rX0zBP9tohpA-rp2oxj-al6gtLU8n9DFS3olktkRC4Ue75BArQfomSqyPziSCqeDJdQlYPl1OxTWU0Q8HuPdQqbCWILDfDs5fSDRjQ6sKfkOIEsTmoV-CcuipzL7gG7SVJLUNJWwyh0Ezekn5ETtGOTFQwdZN5Y
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 67e4ec8872f92ab463c11840762ebc1c
926f7d6d936b0a0229a3dea6cee0325a0e5ba1da
4b02884e71f07513d5914cc1d9db1e3f22658b00a6dbe9887a5bfeaa7a01a922
GET /delivery/lg.php?cppv=3&cpp=enZEB_nTBSVdD-mFds6_mLz8BV_x7Ow2F2n77FNvRsqHWQzB5nmDNh2FwgUhFjvAyAAJJM0RLApJBFuObM9YXsXzWCBKQom6HLv-Kno3h__a0pzgosu5I-w_fGGCsfX1keJd47Hj-zMxz4YOpF19EdpdpssP504X302q2nT8ZrLgZL91aTYXsnHx5al5dJ1IeH_tU5YDYesTwR7OR3fY5U44vIbN9ChwuKs97axytVfaLwaTNSyRaEjISu3dzV3PgTrv5tKUcap7lpTe6rX0zBP9tohpA-rp2oxj-al6gtLU8n9DFS3olktkRC4Ue75BArQfomSqyPziSCqeDJdQlYPl1OxTWU0Q8HuPdQqbCWILDfDs5fSDRjQ6sKfkOIEsTmoV-CcuipzL7gG7SVJLUNJWwyh0Ezekn5ETtGOTFQwdZN5Y HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1798792
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 41 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
Hash 86ee16287c5a816984243cab17724977
7102ab4536afb4b97c3544005e58d137510b468c
f5260899b7c22ef04a76bca6b3056dc6979234b11378604365538992031b7892
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=400&s=3qWGeqGwagT5TGU4Mgz977tS&b=400
178.250.2.135200 OK 28 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=400&s=3qWGeqGwagT5TGU4Mgz977tS&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1579cf890b816206889a2b4b51240f76
bd5995b4cfecca8caa29b77f5251c38cec8ee028
346358815d56f2e77f5c25d8c733647688a0772af6af571647d5c767b82b92e9
GET /img/img?c=3&cq=256&h=400&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A976b125e-e2de-4bdc-9dd7-9adc7dfbec65%2FSol_House_Costa_del_Sol_1SQUARE_800X800.jpg&v=3&w=400&s=3qWGeqGwagT5TGU4Mgz977tS&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 30 Nov 2022 02:44:44 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 28004
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1sl_Q4hURFmNdEbg7kvhFuk56TBZJknnAWKNyoHYHYnhtfPlv_qnF6eLdSIWd9h66g7l4UOr9r_7vRD8_khktjsYgt0nxJbN7hWpHtxMRskl6WZPj_VBRK82jnBC2rq77HIaNnatCCRQ3y8a7GqRPTNg=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1sl_Q4hURFmNdEbg7kvhFuk56TBZJknnAWKNyoHYHYnhtfPlv_qnF6eLdSIWd9h66g7l4UOr9r_7vRD8_khktjsYgt0nxJbN7hWpHtxMRskl6WZPj_VBRK82jnBC2rq77HIaNnatCCRQ3y8a7GqRPTNg=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 20878b844df9de9eb28cd1edb9a740a6
6b5fd583fe1f354fa79ca709f6b71d06a14b2e7f
5873bcfe0a62682a2f93f48ada473031068801eb0ae0e0e92ea42d47c9388f3d
GET /blogger_img_proxy/ANbyha1sl_Q4hURFmNdEbg7kvhFuk56TBZJknnAWKNyoHYHYnhtfPlv_qnF6eLdSIWd9h66g7l4UOr9r_7vRD8_khktjsYgt0nxJbN7hWpHtxMRskl6WZPj_VBRK82jnBC2rq77HIaNnatCCRQ3y8a7GqRPTNg=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 02:44:44 GMT
server: fife
content-length: 1755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:08 GMT
expires: Wed, 29 Nov 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 34416
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:30:11 GMT
expires: Sat, 25 Nov 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 418473
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
109.232.197.33302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
IP 109.232.197.33:0
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
109.232.197.33302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
IP 109.232.197.33:0
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
109.232.197.33302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
IP 109.232.197.33:0
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
csm.eu.criteo.net/all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:44 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=UcMk7i5ivMyHfxAmGtqqCfOJWhkeJF8UPKNnr3OgN8EJszoeuTSrhw--; expires=Thu, 28 Dec 2023 02:44:45 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=gUOFkhEBOYK7.tNs44Wmgg6hxvGcNe8.YSTBfcwB1FONteYT6Mvfzg--; expires=Thu, 28 Dec 2023 02:44:45 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
109.232.197.110200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
IP 109.232.197.110:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=EKi9Sq8SuIgIGORjQx9OQEQDCchqfOW5MYRg7mEUIBCPCoe4xC_0rg--; expires=Thu, 28 Dec 2023 02:44:45 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=k6pjt5dCfPLp6nIRUI_5ROuOn6U1g7XflNdOukaQIdx4XIeWMFCFDp4RDJmQO52ECGnhZIHtC7m6jZOOaUNPq4jbRIiiyiQE1SVaENJXUz7vpNQhJH2LyhLulVp7LzCM4Ck-; expires=Thu, 28 Dec 2023 02:44:45 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Thu, 28 Dec 2023 02:44:45 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
sayac.onlinewebstats.com/logo/s.gif
217.195.203.216200 OK 1.1 kB URL HTTP/1.1 sayac.onlinewebstats.com/logo/s.gif
IP 217.195.203.216:0
ASN #20649 FS Veri Merkezi Internet Teknolojileri Limited Sirketi
File type GIF image data, version 89a, 90 x 30\012- data
Hash 86b20fb84a3c460bb5b6f28e1fc58a8f
be37c58c27b312e1b8445d446d5e9008843fc8d0
16c7fd0e2962fbb0f79e261c14b3e89f71af00413c77ce6c284c2aabdad557f3
GET /logo/s.gif HTTP/1.1
Host: sayac.onlinewebstats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 02:44:45 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
Last-Modified: Thu, 17 Aug 2006 22:15:44 GMT
ETag: "4a6-41b3dfc23c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1127
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 02:44:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 2151a4c221ef46c83fb3960a76066657
989ff1451c66236b39ed73a2fd85b1a72bf635a9
e80d2beae248c6b0b3d5e5f86121468b85363d0568df86af37f53303697c0367
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bookworm-bilgeadam.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 30 Nov 2022 02:44:45 GMT
date: Wed, 30 Nov 2022 02:44:45 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-fWA_wAyxiQAFDBZz8uAOww' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=7RcZI710EdqASBcTt1-LMaG90Vh7DFr-Jk4Qi0oS2D5dHCGvaszmRs4alQv3KLKyEUXuetTJCpxbOAY15v3tsUBbAGpTMVC2jy2iu4dbgRJ4z7YKVNPx29J9ZdYNbEajLFZrbtRM4NbroUtujzW9hGTulIERlVb2kKo5NxgW_0QQwD9s56XmC9w5X5lm-TWdyWFq3tbw6gNu_sWfsjHszvbnxJzftdbjH_edJXZVzbA00xeVm3_Aa4S-pZYna0VGllVeT3wQrIpnEtoR&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:45 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:45 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:45 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sat, 25 Nov 2023 02:44:44 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=qQHCafnTBSVdD-mFds6_mLz8BV8lbnbzQdM41HstvsYueFmFh7fZHEhhzqlzbg-Xs7uNCxWfPPVh6EAiaJeQ8DLcAIwLcBszJeMLVgdgCNhMlkTJSVXVA7Z7ROGUEhl9oyn5vWxb937leOqLKmIXOfXymGagOqvJfrq3tt9F1KWnDX4eN2SZ0E_s3fSLg-AeAmO0C8joXGZHMVFuQMH2sj-H9jS_95pIvRtXFYLXUyoWQkhvMsito6sU-6rxh0S17SgzFF_pWbRTJSbn9ZHIzuaSKb-2Xa1jO-Yws72cYJicA-6NJHdlgmSEe2dzh8ekZBdXTqeHbL9SO5TAjndvWMqKToQB0DIkFRNyR85FlhXh6D0rR9Fy-w_kPZPASuW_8Lom_hocm_EPlpOqWNrL8vPLoVfSHdElMPkGJvS1V6uxvy25oKDEFBCBW3QLHzM7-NA0NQ
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=qQHCafnTBSVdD-mFds6_mLz8BV8lbnbzQdM41HstvsYueFmFh7fZHEhhzqlzbg-Xs7uNCxWfPPVh6EAiaJeQ8DLcAIwLcBszJeMLVgdgCNhMlkTJSVXVA7Z7ROGUEhl9oyn5vWxb937leOqLKmIXOfXymGagOqvJfrq3tt9F1KWnDX4eN2SZ0E_s3fSLg-AeAmO0C8joXGZHMVFuQMH2sj-H9jS_95pIvRtXFYLXUyoWQkhvMsito6sU-6rxh0S17SgzFF_pWbRTJSbn9ZHIzuaSKb-2Xa1jO-Yws72cYJicA-6NJHdlgmSEe2dzh8ekZBdXTqeHbL9SO5TAjndvWMqKToQB0DIkFRNyR85FlhXh6D0rR9Fy-w_kPZPASuW_8Lom_hocm_EPlpOqWNrL8vPLoVfSHdElMPkGJvS1V6uxvy25oKDEFBCBW3QLHzM7-NA0NQ
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=qQHCafnTBSVdD-mFds6_mLz8BV8lbnbzQdM41HstvsYueFmFh7fZHEhhzqlzbg-Xs7uNCxWfPPVh6EAiaJeQ8DLcAIwLcBszJeMLVgdgCNhMlkTJSVXVA7Z7ROGUEhl9oyn5vWxb937leOqLKmIXOfXymGagOqvJfrq3tt9F1KWnDX4eN2SZ0E_s3fSLg-AeAmO0C8joXGZHMVFuQMH2sj-H9jS_95pIvRtXFYLXUyoWQkhvMsito6sU-6rxh0S17SgzFF_pWbRTJSbn9ZHIzuaSKb-2Xa1jO-Yws72cYJicA-6NJHdlgmSEe2dzh8ekZBdXTqeHbL9SO5TAjndvWMqKToQB0DIkFRNyR85FlhXh6D0rR9Fy-w_kPZPASuW_8Lom_hocm_EPlpOqWNrL8vPLoVfSHdElMPkGJvS1V6uxvy25oKDEFBCBW3QLHzM7-NA0NQ HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3473032
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39ca96f90b27b9c1683ac8bf20e
37.157.3.28302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39ca96f90b27b9c1683ac8bf20e
IP 37.157.3.28:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39ca96f90b27b9c1683ac8bf20e HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=25024&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b1f66a306ec91182fbe68ac35
37.157.3.28302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b1f66a306ec91182fbe68ac35
IP 37.157.3.28:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b1f66a306ec91182fbe68ac35 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=13633&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.106:0
GET /css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 02:44:44 GMT
date: Wed, 30 Nov 2022 02:44:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA&u=%7C2doVo1LhGDcR1COCZzAp6i%2FtOVvmGanP140jQjF34zM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbcxmFzsfaVmkMQ5phYnNX2qG6ulP3qJY3xSsiTP9AtKWeXDoa-qwImPl3J8-loHTJukIhDxsPZBLcFY5kJNatvEr2UzoY-GeT8T0eFMmhWkK8HzA_Hi7awhBcJnlN6k9iSdry_L2A2Nb5VbU1sXWip8F-eUBiVSRJybWmcQWfVUejVOv4eP20Spd7xS_VLRQeg-G-YO2mE21hQbAeJWiN6xADL1_7n90djFkSbiwKLJblk3DIa26hzUS2sKTfkTyH5igJqpgdVPoOC0mmWx0weBkoUu3W4NhKxlFso8DtQynbZZCu1fRiTDqz_VLSjJOA6hQ2xRwdVBavFNT0yoAoFEZf1W8i9fgLfoH_y-aoJCshu1W9lezYS7eALQlUCN4m9lTksbN6sHaSG89MQTPt-qYT85W3iOShzogKhZgFpz8sa-lfEmPvbBw8LVh8-RIPYc-eKjPafebuFbY4BuIRlPMW7ev1ubvBfYl0tIKfUJ7691Wd72uV5L&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCzDG_m8OGY9zELpPG6gScs5ewB8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBI0CT9CqoNalmh9-C-PSnvxC3g2vyfwOL7GD4waO7wstD5Nas4ryMCdyEOrNhr7ywloxfNur6D3iOk9Z8EMbgC3QpJImwIr6bBqmlw4St3EtjjGzKJWpvgBUkqL7Rp68H2eRMGAu2njEtcYgTPvU9VJu0boMHhOWNitiFUqEA9gc4f33OjnpoxS4fqFWaceQTjmwV2S9hzUdrau8RnWD51yJJW8yurH-amEeh35VIjZTO7zMnhuE1oVamTo07l_NLKu-beMnFneUGu8mbcpfeBPj_PWRXB-y4IrGM44837S04iUW6FjgG3DukNDpdbQj75egAh8bkhDEXscLlofqYREFYk9z7tG2kThkzK6oEpSABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3HkN3_34N-3rkd_NKVyOLmiLZQ4w%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA&u=%7C2doVo1LhGDcR1COCZzAp6i%2FtOVvmGanP140jQjF34zM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbcxmFzsfaVmkMQ5phYnNX2qG6ulP3qJY3xSsiTP9AtKWeXDoa-qwImPl3J8-loHTJukIhDxsPZBLcFY5kJNatvEr2UzoY-GeT8T0eFMmhWkK8HzA_Hi7awhBcJnlN6k9iSdry_L2A2Nb5VbU1sXWip8F-eUBiVSRJybWmcQWfVUejVOv4eP20Spd7xS_VLRQeg-G-YO2mE21hQbAeJWiN6xADL1_7n90djFkSbiwKLJblk3DIa26hzUS2sKTfkTyH5igJqpgdVPoOC0mmWx0weBkoUu3W4NhKxlFso8DtQynbZZCu1fRiTDqz_VLSjJOA6hQ2xRwdVBavFNT0yoAoFEZf1W8i9fgLfoH_y-aoJCshu1W9lezYS7eALQlUCN4m9lTksbN6sHaSG89MQTPt-qYT85W3iOShzogKhZgFpz8sa-lfEmPvbBw8LVh8-RIPYc-eKjPafebuFbY4BuIRlPMW7ev1ubvBfYl0tIKfUJ7691Wd72uV5L&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCzDG_m8OGY9zELpPG6gScs5ewB8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBI0CT9CqoNalmh9-C-PSnvxC3g2vyfwOL7GD4waO7wstD5Nas4ryMCdyEOrNhr7ywloxfNur6D3iOk9Z8EMbgC3QpJImwIr6bBqmlw4St3EtjjGzKJWpvgBUkqL7Rp68H2eRMGAu2njEtcYgTPvU9VJu0boMHhOWNitiFUqEA9gc4f33OjnpoxS4fqFWaceQTjmwV2S9hzUdrau8RnWD51yJJW8yurH-amEeh35VIjZTO7zMnhuE1oVamTo07l_NLKu-beMnFneUGu8mbcpfeBPj_PWRXB-y4IrGM44837S04iUW6FjgG3DukNDpdbQj75egAh8bkhDEXscLlofqYREFYk9z7tG2kThkzK6oEpSABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3HkN3_34N-3rkd_NKVyOLmiLZQ4w%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y4bDmwALolwKmqMTAAXZnGnqLIX6dn0CrxyHVA&u=%7C2doVo1LhGDcR1COCZzAp6i%2FtOVvmGanP140jQjF34zM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XYo_N4ow7Uxjo7-iE2opnbcxmFzsfaVmkMQ5phYnNX2qG6ulP3qJY3xSsiTP9AtKWeXDoa-qwImPl3J8-loHTJukIhDxsPZBLcFY5kJNatvEr2UzoY-GeT8T0eFMmhWkK8HzA_Hi7awhBcJnlN6k9iSdry_L2A2Nb5VbU1sXWip8F-eUBiVSRJybWmcQWfVUejVOv4eP20Spd7xS_VLRQeg-G-YO2mE21hQbAeJWiN6xADL1_7n90djFkSbiwKLJblk3DIa26hzUS2sKTfkTyH5igJqpgdVPoOC0mmWx0weBkoUu3W4NhKxlFso8DtQynbZZCu1fRiTDqz_VLSjJOA6hQ2xRwdVBavFNT0yoAoFEZf1W8i9fgLfoH_y-aoJCshu1W9lezYS7eALQlUCN4m9lTksbN6sHaSG89MQTPt-qYT85W3iOShzogKhZgFpz8sa-lfEmPvbBw8LVh8-RIPYc-eKjPafebuFbY4BuIRlPMW7ev1ubvBfYl0tIKfUJ7691Wd72uV5L&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCzDG_m8OGY9zELpPG6gScs5ewB8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBI0CT9CqoNalmh9-C-PSnvxC3g2vyfwOL7GD4waO7wstD5Nas4ryMCdyEOrNhr7ywloxfNur6D3iOk9Z8EMbgC3QpJImwIr6bBqmlw4St3EtjjGzKJWpvgBUkqL7Rp68H2eRMGAu2njEtcYgTPvU9VJu0boMHhOWNitiFUqEA9gc4f33OjnpoxS4fqFWaceQTjmwV2S9hzUdrau8RnWD51yJJW8yurH-amEeh35VIjZTO7zMnhuE1oVamTo07l_NLKu-beMnFneUGu8mbcpfeBPj_PWRXB-y4IrGM44837S04iUW6FjgG3DukNDpdbQj75egAh8bkhDEXscLlofqYREFYk9z7tG2kThkzK6oEpSABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3HkN3_34N-3rkd_NKVyOLmiLZQ4w%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:43 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=8inJ1L10EdqASBcTeC2RdsporN5NdeH-lynBpwXGmNAKTxR6K1B3eGX889RueAfSJmHnVcOqQClzT9h2Kopy27-EF2ZSuqMWBErWXLvE3CjKVLBJcEBrRxBDR47pxe7_obMvqFe3-2R26XPRvTpZIHIarZDyYUSt5NqxnuVKqizyHcwBoxvV7zV5DrrtY_sSmT7eQbhDKxnpCc2yuE17_gdYgYWREkCM37rpXBNLLdwHvc2J4Bwlz_MdSU7GAnH2-E-sNQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 44930523
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=zqiSM_nTBSVdD-mFds6_mLz8BV8nX8GqzC0RoOXFo2pyubqBYuv8lHmQunkGpFj1KtSHV7VEnqAVUVAU9nqizE5kPcunBSnN34BZZR3EO_e4nBDV-f8uKJdEOq5IHB9Pbe5ti-olPeM5FmGVgbfQm3jDaYvJGzGhrYqpLf60DEtUuR7HlPsLNJw-waOrxEWng3qKCNeyfLKVxx88wPaUZlG2dv60CU4Brpia4ZnMXhnFCLVVajdCD6_t58K_22jDGkYjk1dLcfRl-D4ky5ozhwm_UzFS5VSsWYK2fJ-Vjtbg55LxShDT27viFeIWhDT2arNelLyY4dYkEoq4fMr16EUZZ61NcFHjYge1FKwOwnCMzEgigni0CndBG2F9pVo_iQCxXk4evN36b2XwUxl476FI6r3Q5sqSPT3Jv3bDCmxfwkAb
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=zqiSM_nTBSVdD-mFds6_mLz8BV8nX8GqzC0RoOXFo2pyubqBYuv8lHmQunkGpFj1KtSHV7VEnqAVUVAU9nqizE5kPcunBSnN34BZZR3EO_e4nBDV-f8uKJdEOq5IHB9Pbe5ti-olPeM5FmGVgbfQm3jDaYvJGzGhrYqpLf60DEtUuR7HlPsLNJw-waOrxEWng3qKCNeyfLKVxx88wPaUZlG2dv60CU4Brpia4ZnMXhnFCLVVajdCD6_t58K_22jDGkYjk1dLcfRl-D4ky5ozhwm_UzFS5VSsWYK2fJ-Vjtbg55LxShDT27viFeIWhDT2arNelLyY4dYkEoq4fMr16EUZZ61NcFHjYge1FKwOwnCMzEgigni0CndBG2F9pVo_iQCxXk4evN36b2XwUxl476FI6r3Q5sqSPT3Jv3bDCmxfwkAb
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=zqiSM_nTBSVdD-mFds6_mLz8BV8nX8GqzC0RoOXFo2pyubqBYuv8lHmQunkGpFj1KtSHV7VEnqAVUVAU9nqizE5kPcunBSnN34BZZR3EO_e4nBDV-f8uKJdEOq5IHB9Pbe5ti-olPeM5FmGVgbfQm3jDaYvJGzGhrYqpLf60DEtUuR7HlPsLNJw-waOrxEWng3qKCNeyfLKVxx88wPaUZlG2dv60CU4Brpia4ZnMXhnFCLVVajdCD6_t58K_22jDGkYjk1dLcfRl-D4ky5ozhwm_UzFS5VSsWYK2fJ-Vjtbg55LxShDT27viFeIWhDT2arNelLyY4dYkEoq4fMr16EUZZ61NcFHjYge1FKwOwnCMzEgigni0CndBG2F9pVo_iQCxXk4evN36b2XwUxl476FI6r3Q5sqSPT3Jv3bDCmxfwkAb HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2663181
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b184fbf4243ca15b5e3350ea3
37.157.3.28302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b184fbf4243ca15b5e3350ea3
IP 37.157.3.28:0
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6386c39b184fbf4243ca15b5e3350ea3 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 30 Nov 2022 02:44:44 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=59457&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg&u=%7C2doVo1LhGDcTElzQ1LVGAXia3hwBzi5xKpy%2BXmTKEWs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC9NvNTI3CPYBepFZcXmrBVapbFz8bFqTVJ4biFAk5oE0RpOU5bp2ol8U-fcH10gc6cIGt3O9DEJ_K6oAykfVSL6rHRi7QLXHk2NYUV_AmjGhGuMRMfWve4OwXTWpu77DMAjaeEvCx6qglDbpK2r-o_9HxM-0wqp2zTpOwpcc2354Fv3m9rWQHQ0cqDUNG-TRVUmOaPF5B9EzWP8VS0sFNGqOs7byBdtgcRnjLVY24OHpmE7Ag96wKK604xJlsiR5fcMNr1gKSxnucrjAuH5bbHHPxVE9kZgKCoegvffAATTBQt6MPZXzGQfhNanOiv2oHuVtg3Z2lKwBCbyK7LpBBGhZ8td2Pf-cYqAdBItXN5Js5qrsoFC8RY-DCFtGIz8TH4hQFqmswHPII5xdS6qGlDhG1MktIREXglIoK4uQiENnUIKCY4eVWV42GGYucYzinSyjKyyTXTYfmkZchu8YJvXKVRqJ2p33WwwYhA0mb6Rtg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC55e4m8OGY_TZLYXV6wTH_qKAAcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIcCT9B6P0r25AKdT5fV03Q2EZZQ-JuO18YsQqyE3stWckXJ30AveEo-McrMGGSbQM6YB28OvjbRijdFI4EwgENiCm_EpwCkN_aWT9mXIROplZED_1u7GsGfk5XUlz66G8Wo2-m0FpvzVHkKk3y7O97uGZ1n4VHkgEhHGsDZIuz9Z-w_pWmWDyv3J2b_me37akeB0e6RaPGEGatawFkEWDQ3eknJlGbBejBzabccHPbaNiTzlR1K8mVUo0eOmOwiU7U_XIuPUlqdn5Ro9j9tmldRCf8GBAAmDGk48BPZQGM0ZtmwJEmIz8cKjXqI943v2sxWSgxzXHBasQIRFeB-n-E5BJnRV38r8-qABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0vGrPDluXT43G0mOVagEuAq_iR9w%26client%3Dca-pub-7168214029370425%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg&u=%7C2doVo1LhGDcTElzQ1LVGAXia3hwBzi5xKpy%2BXmTKEWs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC9NvNTI3CPYBepFZcXmrBVapbFz8bFqTVJ4biFAk5oE0RpOU5bp2ol8U-fcH10gc6cIGt3O9DEJ_K6oAykfVSL6rHRi7QLXHk2NYUV_AmjGhGuMRMfWve4OwXTWpu77DMAjaeEvCx6qglDbpK2r-o_9HxM-0wqp2zTpOwpcc2354Fv3m9rWQHQ0cqDUNG-TRVUmOaPF5B9EzWP8VS0sFNGqOs7byBdtgcRnjLVY24OHpmE7Ag96wKK604xJlsiR5fcMNr1gKSxnucrjAuH5bbHHPxVE9kZgKCoegvffAATTBQt6MPZXzGQfhNanOiv2oHuVtg3Z2lKwBCbyK7LpBBGhZ8td2Pf-cYqAdBItXN5Js5qrsoFC8RY-DCFtGIz8TH4hQFqmswHPII5xdS6qGlDhG1MktIREXglIoK4uQiENnUIKCY4eVWV42GGYucYzinSyjKyyTXTYfmkZchu8YJvXKVRqJ2p33WwwYhA0mb6Rtg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC55e4m8OGY_TZLYXV6wTH_qKAAcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIcCT9B6P0r25AKdT5fV03Q2EZZQ-JuO18YsQqyE3stWckXJ30AveEo-McrMGGSbQM6YB28OvjbRijdFI4EwgENiCm_EpwCkN_aWT9mXIROplZED_1u7GsGfk5XUlz66G8Wo2-m0FpvzVHkKk3y7O97uGZ1n4VHkgEhHGsDZIuz9Z-w_pWmWDyv3J2b_me37akeB0e6RaPGEGatawFkEWDQ3eknJlGbBejBzabccHPbaNiTzlR1K8mVUo0eOmOwiU7U_XIuPUlqdn5Ro9j9tmldRCf8GBAAmDGk48BPZQGM0ZtmwJEmIz8cKjXqI943v2sxWSgxzXHBasQIRFeB-n-E5BJnRV38r8-qABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0vGrPDluXT43G0mOVagEuAq_iR9w%26client%3Dca-pub-7168214029370425%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y4bDmwALbPQKmuqFAAi_R6a8cv_QaJ81cIDzSg&u=%7C2doVo1LhGDcTElzQ1LVGAXia3hwBzi5xKpy%2BXmTKEWs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy3QrFlb0xFKqvXKPjeNIXC9NvNTI3CPYBepFZcXmrBVapbFz8bFqTVJ4biFAk5oE0RpOU5bp2ol8U-fcH10gc6cIGt3O9DEJ_K6oAykfVSL6rHRi7QLXHk2NYUV_AmjGhGuMRMfWve4OwXTWpu77DMAjaeEvCx6qglDbpK2r-o_9HxM-0wqp2zTpOwpcc2354Fv3m9rWQHQ0cqDUNG-TRVUmOaPF5B9EzWP8VS0sFNGqOs7byBdtgcRnjLVY24OHpmE7Ag96wKK604xJlsiR5fcMNr1gKSxnucrjAuH5bbHHPxVE9kZgKCoegvffAATTBQt6MPZXzGQfhNanOiv2oHuVtg3Z2lKwBCbyK7LpBBGhZ8td2Pf-cYqAdBItXN5Js5qrsoFC8RY-DCFtGIz8TH4hQFqmswHPII5xdS6qGlDhG1MktIREXglIoK4uQiENnUIKCY4eVWV42GGYucYzinSyjKyyTXTYfmkZchu8YJvXKVRqJ2p33WwwYhA0mb6Rtg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC55e4m8OGY_TZLYXV6wTH_qKAAcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzE2ODIxNDAyOTM3MDQyNcgBCakCOgI_k1hTsT6oAwGqBIcCT9B6P0r25AKdT5fV03Q2EZZQ-JuO18YsQqyE3stWckXJ30AveEo-McrMGGSbQM6YB28OvjbRijdFI4EwgENiCm_EpwCkN_aWT9mXIROplZED_1u7GsGfk5XUlz66G8Wo2-m0FpvzVHkKk3y7O97uGZ1n4VHkgEhHGsDZIuz9Z-w_pWmWDyv3J2b_me37akeB0e6RaPGEGatawFkEWDQ3eknJlGbBejBzabccHPbaNiTzlR1K8mVUo0eOmOwiU7U_XIuPUlqdn5Ro9j9tmldRCf8GBAAmDGk48BPZQGM0ZtmwJEmIz8cKjXqI943v2sxWSgxzXHBasQIRFeB-n-E5BJnRV38r8-qABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0vGrPDluXT43G0mOVagEuAq_iR9w%26client%3Dca-pub-7168214029370425%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 02:44:43 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=SlrkF710EdqASBcTCNOC7q1jBAl7UoBSPQT-2zfWtRP4Ds9iHn-seegcNDeeMFsMIvl94LrzFUZ5y3sHkzTYK1K8CJVe6Ppwt5RNWfsKNrKsE7-D-YSpeZfmKcbMS3BKDfRoxqLc9JhVrgz2xmUBH1yPdzOrg7yLbNj513sE8T5_oQlmwy8vUjzppNrRPh3jaKQziUUWzlIZV9qkR0gZ3oAdPESw2lGr0XvSnmqi3mD65blERvncCOrzM-4-ymoDvT_iwyJcwg_U6NL8"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 44213406
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2