ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f8c8ab31543eb2cbefd00a180cc789ff
6db968c2326be8c4ab1797ab8a23a4bd18803e9d
a63d99e5c00e4e3bd4915988a0dde4ef5a52d6717aa09d1955c415383b8067d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blogluyoruz.blogspot.nl/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
172.217.21.161302 Found 259 B URL User Request GET HTTP/2 blogluyoruz.blogspot.nl/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
IP 172.217.21.161:443
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38
ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 11f59423f861f42f83e4c920f333566d
b87f3cb403cb0bb26532fff29ddd5c5680fd973f
e0704c01df70b10d0f737d8c6e736306e724b0744871b8f9ebfee986f544c953
Analyzer Verdict Alert fortinet Malware
GET /search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011 HTTP/1.1
Host: blogluyoruz.blogspot.nl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Mon, 29 May 2023 12:42:39 GMT
expires: Mon, 29 May 2023 12:42:39 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 259
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f8c8ab31543eb2cbefd00a180cc789ff
6db968c2326be8c4ab1797ab8a23a4bd18803e9d
a63d99e5c00e4e3bd4915988a0dde4ef5a52d6717aa09d1955c415383b8067d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f8c8ab31543eb2cbefd00a180cc789ff
6db968c2326be8c4ab1797ab8a23a4bd18803e9d
a63d99e5c00e4e3bd4915988a0dde4ef5a52d6717aa09d1955c415383b8067d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c2174a4f64cf28797bdff8c47c4d5702
9205dfb389f988a1cd0022893d51bd9b241ca459
80c6f93480f11f69918b4adedaf417f18c1273c218cab7becee10427251f2415
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
142.250.74.41200 OK 7.8 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type ASCII text, with very long lines (35959)
Hash 1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 12:04:31 GMT
expires: Wed, 22 May 2024 12:04:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:55:27 GMT
content-type: text/css
vary: Accept-Encoding
age: 520689
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash a904a70ab436d9ee940b498d93189041
171c4aeb5d493f5ba64fad37452bab404095e095
cf3906b68f3b0c402e0395dd2af1a770456b881a5398a7981b800e0053a921a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c2174a4f64cf28797bdff8c47c4d5702
9205dfb389f988a1cd0022893d51bd9b241ca459
80c6f93480f11f69918b4adedaf417f18c1273c218cab7becee10427251f2415
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.41200 OK 162 B URL GET HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 01:54:56 GMT
expires: Wed, 31 May 2023 01:54:56 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 May 2023 21:55:38 GMT
content-type: image/gif
age: 470864
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
142.250.74.46200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.46:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint4F:FF:C8:C8:21:72:D7:61:54:72:75:EA:84:95:AD:F2:71:2F:C6:33
ValidityMon, 08 May 2023 08:25:22 GMT - Mon, 31 Jul 2023 08:25:21 GMT
File type ASCII text, with very long lines (1576)
Hash 92d41357b57749dd1d8d9f4c74bccae6
3422e31014b34c65af1f22414210c063ef6ec1c6
100b98dc40358e08109ec41e378361e2d5d9207c6fb3e13b1dbad54c07b15d53
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 22282
date: Mon, 29 May 2023 12:42:41 GMT
expires: Mon, 29 May 2023 12:42:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "148a2688502551df"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c2174a4f64cf28797bdff8c47c4d5702
9205dfb389f988a1cd0022893d51bd9b241ca459
80c6f93480f11f69918b4adedaf417f18c1273c218cab7becee10427251f2415
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash c2174a4f64cf28797bdff8c47c4d5702
9205dfb389f988a1cd0022893d51bd9b241ca459
80c6f93480f11f69918b4adedaf417f18c1273c218cab7becee10427251f2415
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash dfd5ad02f4f42dfda06a983cde156afc
22aa6b74534fcf3dea8b9baf4578d94e7d668e18
885fcb0b62d31ffaccbc95a3ff7a2478fe67a28f62917c980555911e11717d36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 61 kB URL GET HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint4F:FF:C8:C8:21:72:D7:61:54:72:75:EA:84:95:AD:F2:71:2F:C6:33
ValidityMon, 08 May 2023 08:25:22 GMT - Mon, 31 Jul 2023 08:25:21 GMT
File type ASCII text, with very long lines (1518)
Hash d85dfcb282204e84412e38a682697c38
c4c614672ccc6264c1bfdd6e282653fdb2133cf1
671cce3e4dca0d6ebe5906b16482266d3137a807b183450327df30cfed9b656d
GET /_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61265
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 05:40:16 GMT
expires: Wed, 22 May 2024 05:40:16 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 28 Apr 2023 16:21:16 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 543745
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/1kt/transparent/white80.png
142.250.74.41200 OK 96 B URL GET HTTP/3 resources.blogblog.com/blogblog/data/1kt/transparent/white80.png
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type PNG image data, 20 x 20, 1-bit colormap, non-interlaced\012- data
Hash 94a1820903fb1f98de19df188a6ad531
599ad7d04fd5b1fa13f334e95240a5a9f4a66583
6e232a3693a281342acc16b293dddeafcf91579f1b52df2cf22303b17c2a0e57
GET /blogblog/data/1kt/transparent/white80.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 96
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 23:00:32 GMT
expires: Tue, 30 May 2023 23:00:32 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 May 2023 05:53:29 GMT
content-type: image/png
age: 481329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/blogblog/data/1kt/transparent/black50.png
142.250.74.41200 OK 96 B URL GET HTTP/3 resources.blogblog.com/blogblog/data/1kt/transparent/black50.png
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type PNG image data, 20 x 20, 1-bit colormap, non-interlaced\012- data
Hash 857cf81cfd3449fd408ac0604cd3a326
69209e67fdd7533fb3c76a7f3e2430a63909e4e9
380be71e72fb28899a6cf71bad4434677a6df3a2fcce56d23c28bc4794549047
GET /blogblog/data/1kt/transparent/black50.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 96
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 10:44:28 GMT
expires: Tue, 30 May 2023 10:44:28 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 May 2023 14:52:34 GMT
content-type: image/png
age: 525493
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/img/share_buttons_20_3.png
142.250.74.41200 OK 5.1 kB URL GET HTTP/3 www.blogger.com/img/share_buttons_20_3.png
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 08:04:43 GMT
expires: Tue, 30 May 2023 08:04:43 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 May 2023 06:53:03 GMT
content-type: image/png
age: 535078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8bc2743253a8fc930e5a747ab63e94c5
178071f3eaaa9b894f9e1579179c412fd14339a2
73c2b75f4956c2bde3595b8f6df91cc8061b93214ba8d26da0490a6f8790eee7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e202444f49089fa6735f57e2f885afc1
b43c6fef9149614a86afb99c181201b13b33559e
69602a4c6fcac3fe2c73366b48d5998f803bd55e9ea83645e8dccdc2f1349fab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 42 B URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint4D:38:FE:62:28:C3:2C:26:D3:E4:2A:D2:FD:07:5A:0E:7D:C6:AD:7C
ValidityMon, 08 May 2023 08:20:04 GMT - Mon, 31 Jul 2023 08:20:03 GMT
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Sun, 28 May 2023 20:34:57 GMT
expires: Sun, 11 Jun 2023 20:34:57 GMT
cache-control: public, max-age=1209600
age: 58064
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
172.217.21.161200 OK 151 kB URL User Request GET HTTP/2 blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
IP 172.217.21.161:443
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38
ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1537)
Size 151 kB (151127 bytes)
Hash faeed604f6dc935247eb249dd7174ea5
be2c1a89e2036b704389ae1d0b9fb69ac0d0be50
c0e80700cb0abf8d27fe6e5a0acc2e9a508698b5c42835131cfff1b58272b21c
Analyzer Verdict Alert urlquery suspicious Suspicious - JavaScript obfusction
fortinet Malware
GET /search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011 HTTP/1.1
Host: blogluyoruz.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Mon, 29 May 2023 12:42:40 GMT
date: Mon, 29 May 2023 12:42:40 GMT
cache-control: private, max-age=0
last-modified: Mon, 29 May 2023 08:58:03 GMT
etag: W/"39901b372a57b90c2c5d6fae947e5e0c497d160eb4568dbb1de6fcfcfeee3b1f"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 151127
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8bc2743253a8fc930e5a747ab63e94c5
178071f3eaaa9b894f9e1579179c412fd14339a2
73c2b75f4956c2bde3595b8f6df91cc8061b93214ba8d26da0490a6f8790eee7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blogluyoruz.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL GET HTTP/3 blogluyoruz.blogspot.com/js/cookienotice.js
IP 172.217.21.161:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38
ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: blogluyoruz.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:43:20 GMT
expires: Mon, 29 May 2023 21:43:20 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 May 2023 19:11:03 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 572361
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/widgets/541336192-widgets.js
142.250.74.41200 OK 56 kB URL GET HTTP/3 www.blogger.com/static/v1/widgets/541336192-widgets.js
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type ASCII text, with very long lines (2215)
Hash aa44d6ded7a7f494bb801da2e270d438
2afe3b98239baba11dae4252198314c3c06088ab
9ca45e0cd2719c8403f25e13c931515b162cbb57faf9773db1033fee191efeff
GET /static/v1/widgets/541336192-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56539
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 02:05:25 GMT
expires: Thu, 23 May 2024 02:05:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:50:57 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 470236
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
142.250.74.74200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP 142.250.74.74:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30082
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:20:03 GMT
expires: Wed, 22 May 2024 17:20:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 501758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash dfd5ad02f4f42dfda06a983cde156afc
22aa6b74534fcf3dea8b9baf4578d94e7d668e18
885fcb0b62d31ffaccbc95a3ff7a2478fe67a28f62917c980555911e11717d36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
142.250.74.129200 OK 58 kB URL GET HTTP/2 themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
IP 142.250.74.129:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintE9:43:A2:2D:EB:A2:E1:09:B0:36:19:CF:E3:9C:F0:37:52:4F:DB:7A
ValidityMon, 08 May 2023 08:24:36 GMT - Mon, 31 Jul 2023 08:24:35 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x809, components 3\012- data
Hash 56e529f03ccf994afc47d432cd2d8083
b444c289c8334c91cd1634ef1d5ce55150b34a66
b05487f9e5748eb8cde3125ab58b39bfb7b6c361a3c65e135d895e7f838e7487
GET /image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Tue, 30 May 2023 12:42:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Mon, 29 May 2023 12:42:41 GMT
server: fife
content-length: 58425
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4195d3f97e59fc4f34d523d0195d8d0b
244cd9dd441c530c8e03405819eb759e95f25cb0
1fc6101023c68883ddf2cb7eb133e96a3e3cf96d7657223e38621f9fc9a7653d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e202444f49089fa6735f57e2f885afc1
b43c6fef9149614a86afb99c181201b13b33559e
69602a4c6fcac3fe2c73366b48d5998f803bd55e9ea83645e8dccdc2f1349fab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 29 May 2023 12:42:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-25Dtf9poWE4/UCum3r73I5I/AAAAAAAAMoo/kYHFk-G40RI/s1600/koddostu-face.png
142.250.74.161200 OK 61 kB URL GET HTTP/2 2.bp.blogspot.com/-25Dtf9poWE4/UCum3r73I5I/AAAAAAAAMoo/kYHFk-G40RI/s1600/koddostu-face.png
IP 142.250.74.161:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38
ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT
File type PNG image data, 549 x 325, 8-bit/color RGBA, non-interlaced\012- data
Hash 182fb69840f4d18c4407cf0bf5ed263c
87b4273e603d3bac8d1ca0b6254ccbdc96593365
b53930b96e84e69802b84b350cb8a691a1557db47918a7bb39c6d23e495b58c2
GET /-25Dtf9poWE4/UCum3r73I5I/AAAAAAAAMoo/kYHFk-G40RI/s1600/koddostu-face.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="koddostu-face.png"
x-content-type-options: nosniff
server: fife
content-length: 61261
x-xss-protection: 0
date: Mon, 29 May 2023 12:42:41 GMT
expires: Tue, 30 May 2023 12:42:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "ve813"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=4232969618436844136&zx=3e52b86c-f12f-4d91-a9e4-9ee2ee22f34a
142.250.74.41200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=4232969618436844136&zx=3e52b86c-f12f-4d91-a9e4-9ee2ee22f34a
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=4232969618436844136&zx=3e52b86c-f12f-4d91-a9e4-9ee2ee22f34a HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:41 GMT
last-modified: Mon, 29 May 2023 12:42:41 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__
142.250.74.41 2.6 kB URL www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__
IP 142.250.74.41:0
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 942ed84aee876a901f8db125f2803953
fbacc6b4411a1d92ff984a54b5fdb20626d80dc1
fd945e8cdedc30dd911b076c445771934913e367a393d26688c58ecbed781ad7
GET /navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:41 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
142.250.74.46200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP 142.250.74.46:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fblogluyoruz.blogspot.com&pfname=&rpctoken=12923832
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (1576)
Hash d17bc740f03b4aa69fb9a9339d903c58
70bf00a7c92a5559cc809e6a9d170d34db5ca9b7
8bcb3049771e333c4b5b58c79a4305c610762168e187ff252c5a0c9c48e72b4d
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 22292
date: Mon, 29 May 2023 12:42:41 GMT
expires: Mon, 29 May 2023 12:42:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "d5b7af8aa1fd0d8e"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_peach.png
142.250.74.41200 OK 907 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_peach.png
IP 142.250.74.41:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fblogluyoruz.blogspot.com&pfname=&rpctoken=12923832
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:19:17 GMT
expires: Wed, 31 May 2023 00:19:17 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 May 2023 23:02:07 GMT
content-type: image/png
age: 476604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-light.png
142.250.74.41200 OK 117 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-light.png
IP 142.250.74.41:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fblogluyoruz.blogspot.com&pfname=&rpctoken=12923832
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 08:04:43 GMT
expires: Tue, 30 May 2023 08:04:43 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 May 2023 23:02:07 GMT
content-type: image/png
age: 535078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs
142.250.74.46200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs
IP 142.250.74.46:443
Requested by https://www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fblogluyoruz.blogspot.com&pfname=&rpctoken=12923832
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (1518)
Hash af5451be87c3fed1eebf7180794e439f
00dd2f3a77c890d660d85e3228c16292d18f52e5
8c846694312e4e242cf688b74ac5d88d1147daf9085002d18f9ca8befb642efb
GET /_/scs/abc-static/_/js/k=gapi.lb.en.wW0KrNepdTU.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:54:12 GMT
expires: Wed, 22 May 2024 22:54:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 28 Apr 2023 16:21:16 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 481710
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogluyoruz.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL GET HTTP/3 blogluyoruz.blogspot.com/favicon.ico
IP 172.217.21.161:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38
ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: blogluyoruz.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Cookie: acildibibe2=kapali
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Mon, 29 May 2023 12:42:42 GMT
date: Mon, 29 May 2023 12:42:42 GMT
cache-control: private, max-age=86400
last-modified: Mon, 29 May 2023 08:58:03 GMT
etag: W/"39901b372a57b90c2c5d6fae947e5e0c497d160eb4568dbb1de6fcfcfeee3b1f"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
goo.gl/dk570x
142.250.74.14403 Forbidden 0 B IP 142.250.74.14:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk570x HTTP/1.1
Host: goo.gl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:41 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000
content-security-policy: require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport, script-src 'nonce-n4TeOWkKQ96Bz2Iow6COzA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__
142.250.74.41200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__
IP 142.250.74.41:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C
ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6909), with no line terminators
Hash 93fe1958eb2cac09ff6268fd68137ea8
ab7bf44f35cc2494bd2d630581ba5d3f42f359bd
00219e966a07df08c777dee89944f231c9ab7149a9cc9057467436766bee0ee3
GET /navbar.g?targetBlogID=4232969618436844136&blogName=G%C3%BCnceliz+%7C+G%C3%BCncelliyoruz+%7C+En+G%C3%BCncel+...&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://blogluyoruz.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://blogluyoruz.blogspot.com/&vt=-7511630698399547621&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.wW0KrNepdTU.O%2Fd%3D1%2Frs%3DAHpOoo8Je2IwWe-sD_xcm5fABAaEfyuc1g%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:41 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
goo.gl/dk570x
142.250.74.14403 Forbidden 0 B IP 142.250.74.14:443
Requested by https://blogluyoruz.blogspot.com/search/label/Yetenek%20Sizsiniz%20T%C3%BCrkiye%20%C4%B0brahim%20Oral%20Sihirbazl%C4%B1k%20G%C3%B6sterisi%2024.12.2011
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk570x HTTP/1.1
Host: goo.gl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://blogluyoruz.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 29 May 2023 12:42:41 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-b2OPdFLZZXD9cawvgGx0Vw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DurableDeepLinkUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/DurableDeepLinkUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/DurableDeepLinkUi/cspreport
cross-origin-opener-policy: unsafe-none
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000