8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.250.185.170:80

GET /css?family=Fjalla+One HTTP/1.1
Host: fonts.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 11 May 2024 06:51:17 GMT
Date: Sat, 11 May 2024 06:51:17 GMT
Cache-Control: private, max-age=86400, stale-while-revalidate=604800
Last-Modified: Sat, 11 May 2024 06:51:17 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

142.250.185.170:80

GET /css?family=Montserrat%3Aregular%2C700&subset=latin&ver=4.1.1 HTTP/1.1
Host: fonts.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 11 May 2024 06:51:17 GMT
Date: Sat, 11 May 2024 06:51:17 GMT
Cache-Control: private, max-age=86400, stale-while-revalidate=604800
Last-Modified: Sat, 11 May 2024 06:51:17 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

142.250.185.170:80

GET /css?family=Raleway:300,400,500,600 HTTP/1.1
Host: fonts.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 11 May 2024 06:51:17 GMT
Date: Sat, 11 May 2024 06:51:17 GMT
Cache-Control: private, max-age=86400, stale-while-revalidate=604800
Last-Modified: Sat, 11 May 2024 06:51:17 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

142.250.186.42:80

GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 06 May 2024 06:48:23 GMT
Expires: Tue, 06 May 2025 06:48:23 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 432174

142.250.186.42:80

GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 95786
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 06 May 2024 08:22:32 GMT
Expires: Tue, 06 May 2025 08:22:32 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 426525

142.250.74.201:443

GET /static/v1/widgets/2437439463-css_bundle_v2.css HTTP/2.0
host: www.blogger.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

142.250.74.201:443

GET /static/v1/widgets/1535467126-widget_css_2_bundle.css HTTP/2.0
host: www.blogger.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

142.250.74.201:443

GET /static/v1/jsbin/1565398628-comment_from_post_iframe.js HTTP/2.0
host: www.blogger.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

199.232.56.84:80

GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 290
ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
X-CDN: fastly
alt-svc: h3=":443";ma=600
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Vary: Accept-Encoding, Origin
Cache-Control: max-age=300
date: Sat, 11 May 2024 06:51:17 GMT

107.154.148.103:80

GET /scripts/banner.php?a_aid=5213554487f39&a_bid=e2829ca1 HTTP/1.1
Host: aff.adland.co.il
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 302 Found
Date: Sat, 11 May 2024 06:51:18 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://aff.adland.co.il/merchants/login.php#loginscripts/banner.php?a_aid=5213554487f39&a_bid=e2829ca1
Content-Length: 373
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: visid_incap_2842202=BhOXfs/zSIS+h6JuSZ+/ZFgVP2YAAAAAQUIPAAAAAAD7LM0b40ul4GPjJO6S+HIc; expires=Sat, 10 May 2025 15:56:26 GMT; HttpOnly; path=/; Domain=.adland.co.il
Set-Cookie: incap_ses_406_2842202=h63AUncKJnKJGBv662aiBWUVP2YAAAAAmrgeuOKrQIlqsa3TgsSGlQ==; path=/; Domain=.adland.co.il
X-CDN: Imperva
X-Iinfo: 5-16188267-16188269 NNNN CT(316 -1 0) RT(1715410276914 1) q(0 0 3 2) r(6 6) U11

8.8.8.8:53

163.70.151.21:80

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 11 May 2024 06:51:17 GMT
Connection: keep-alive
Content-Length: 0

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

13.248.169.48:80

GET /3561360330/banners-min.js HTTP/1.1
Host: yourjavascript.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Server: openresty
Date: Sat, 11 May 2024 06:51:17 GMT
Content-Type: text/html
Content-Length: 114
Connection: keep-alive

8.8.8.8:53

142.250.186.110:443

GET /js/plusone.js HTTP/2.0
host: apis.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

142.250.185.97:80

GET /-K_R1qZKOnN4/V3Kywq5kyNI/AAAAAAAAAKI/MP6TOhkZF8o5DA-HX8O6jN_vzJVef0tKwCK4B/s1600/money.png HTTP/1.1
Host: 3.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="money.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 34499
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "va3"
Content-Type: image/png
Vary: Origin
Age: 13

142.250.185.97:80

GET /-psX2THlX3fw/Ve6TTR3HBvI/AAAAAAAAAk8/oVi4_7k5YZk/s72-c/mmgc.jpg HTTP/1.1
Host: 3.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mmgc.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5738
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v250"
Content-Type: image/jpeg
Vary: Origin
Age: 14

8.8.8.8:53

142.250.74.201:443

GET /img/icon18_wrench_allbkg.png HTTP/2.0
host: resources.blogblog.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

142.250.185.97:80

GET /-s6yeRU_f3yI/VfKD6uE-j1I/AAAAAAAAACc/LyCX3_2MUYk/s640/swi.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="swi.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 51860
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v28"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-pzRfKq93FSc/VVjsjRKLN9I/AAAAAAAAAEk/7o3L2G_oivo/s72-c/wealthy-affiliate-review.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="wealthy-affiliate-review.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2469
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v8a"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-3ZY0CzIN0hw/VewPW5EYzRI/AAAAAAAAAHw/uyYZTOxWM0M/s72-c/salehoo.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="salehoo.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3854
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v7d"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-s6yeRU_f3yI/VfKD6uE-j1I/AAAAAAAAACc/LyCX3_2MUYk/s72-c/swi.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="swi.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2743
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v28"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-i-a--YTe5M8/VhZmIjC71VI/AAAAAAAAACw/vLZYIKpd6l8/s72-c/adultaff.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="adultaff.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4834
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v2d"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-vZmZLm6YFHY/VIxf9UqC-GI/AAAAAAAAAYE/W-F-0CC-P9s/s72-c/studcnt_4128800003.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="studcnt_4128800003.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5419
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v292"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-KstMMj9Uijc/VVjJCVlFWdI/AAAAAAAAADs/N2iT4CTSDUA/s72-c/scam.jpg HTTP/1.1
Host: 1.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="scam.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3544
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:05 GMT
Expires: Sun, 12 May 2024 06:51:05 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3c"
Content-Type: image/jpeg
Vary: Origin
Age: 13

8.8.8.8:53

142.250.185.97:80

GET /-wNEUqZisrcM/VazZCvuESRI/AAAAAAAAAG0/ZSIf6HOPY8U/s320/ShowMeMoreButton.jpg HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ShowMeMoreButton.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 15458
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v6e"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-pd8XVrJNHxI/VXalFYT9dqI/AAAAAAAAAF4/E1pfRCwSWio/s72-c/plugr.png HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="plugr.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2810
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5f"
Content-Type: image/png
Vary: Origin
Age: 14

142.250.185.97:80

GET /-Lf8TWlijQjg/VVl_YAmK8BI/AAAAAAAAAFI/bsDzdsE3AJA/s72-c/cb.jpg HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="cb.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6095
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v53"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-Nbh9VcKj_qI/VZWg5WhW-2I/AAAAAAAAAGM/ChldPlDTxgQ/s72-c/img3.jpg HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="img3.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4824
X-XSS-Protection: 0
Date: Sat, 11 May 2024 06:51:04 GMT
Expires: Sun, 12 May 2024 06:51:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v64"
Content-Type: image/jpeg
Vary: Origin
Age: 14

142.250.185.97:80

GET /-YxxeRcqP6UI/U6V7A_pfmnI/AAAAAAAAAik/NyzEC4z7POQ/s1600/menu-bg2.png HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="menu-bg2.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 212
X-XSS-Protection: 0
Date: Sat, 11 May 2024 03:17:21 GMT
Expires: Sun, 12 May 2024 03:17:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 12947
ETag: "v22a"
Content-Type: image/png
Vary: Origin

107.154.148.103:443

GET /merchants/login.php HTTP/2.0
host: aff.adland.co.il
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Sat, 11 May 2024 06:51:20 GMT
server: Apache/2.4.41 (Ubuntu)
cache-control: private, no-cache, no-store, max-age=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-frame-options: DENY
set-cookie: signup_pap_sid=nbuw7wv2ph0rz9guz2qp0cnr88fulfk7; path=/; Secure;; HttpOnly; SameSite=Lax
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
set-cookie: visid_incap_2842202=XcDU6qIzS3uqeuAb0tP87mcVP2YAAAAAQUIPAAAAAAC25aCamHi2RR5OzbOLN2xw; expires=Sat, 10 May 2025 16:01:05 GMT; HttpOnly; path=/; Domain=.adland.co.il
x-incap-sess-cookie-hdr: 44fCLYK0AE+JGBv662aiBWcVP2YAAAAAhNWoAADz7dFULmRnD7k6ug==
set-cookie: incap_ses_406_2842202=4gc1SZSYmUxHQhv662aiBWcVP2YAAAAAyNH3fcoK1bVh5A5V+dLtrQ==; path=/; Domain=.adland.co.il
x-cdn: Imperva
x-iinfo: 9-36181932-36181981 NNNN CT(312 313 0) RT(1715410278072 392) q(0 0 6 -1) r(10 13) U12

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

2.17.196.137:443

GET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/2.0
host: www.bing.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1107
date: Sat, 11 May 2024 06:51:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.85c41102.1715410278.b6c0ebf

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.250.185.97:80

GET /-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png HTTP/1.1
Host: 4.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="icon-search.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 953
X-XSS-Protection: 0
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 11 May 2024 03:04:52 GMT
Expires: Sun, 12 May 2024 03:04:52 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 13607
ETag: "v13f"
Content-Type: image/png
Vary: Origin

142.250.185.97:80

GET /-M_utSb-nN04/U6V8Gut9dJI/AAAAAAAAAjE/6g1X58pjjcg/s1600/single-share.png HTTP/1.1
Host: 4.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="single-share.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1137
X-XSS-Protection: 0
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 11 May 2024 03:49:12 GMT
Expires: Sun, 12 May 2024 03:49:12 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 11036
ETag: "v232"
Content-Type: image/png
Vary: Origin

93.184.220.66:443

GET /widgets.js HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 525
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 11 May 2024 06:51:39 GMT
Etag: "824beb891744db98ccbd3a456e59e0f7+gzip"
Last-Modified: Mon, 11 Dec 2023 17:20:28 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/668B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27597

93.184.220.66:443

GET /js/button.856debeac157d9669cf51e73a08fbc93.js HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4078020
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 11 May 2024 06:53:08 GMT
Etag: "fdf02dd038ed38dbf3c240d56262af0c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:47 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/668B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2620

93.184.220.66:443

GET /widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 4078017
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 11 May 2024 06:53:08 GMT
Etag: "e29e65db7bf0a096587728e1faacfd9c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:48 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (frb/668B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 12332

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

163.70.151.21:443

GET /en_US/all.js?hash=2c24e062486a632e02308eca83e545f7 HTTP/2.0
host: connect.facebook.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: null
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

163.70.151.21:443

GET /rsrc.php/v3/yw/l/0,cross/x5V11gDx983.css?_nc_x=Ij3Wp8lg5Kz HTTP/2.0
host: static.xx.fbcdn.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.facebook.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

199.232.56.84:443

GET /js/pinit_main.js?0.635989327438935 HTTP/2.0
host: assets.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
content-type: application/javascript; charset=utf-8
x-cdn: fastly
alt-svc: h3=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=300
date: Sat, 11 May 2024 06:53:08 GMT
content-length: 18679

142.250.185.227:80

GET /s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
Connection: keep-alive
Origin: null
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Referer: http://fonts.googleapis.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 48336
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 09 May 2024 14:37:54 GMT
Expires: Fri, 09 May 2025 14:37:54 GMT
Cache-Control: public, max-age=31536000
Age: 144914
Last-Modified: Wed, 01 May 2024 20:31:48 GMT
Content-Type: font/woff2

8.8.8.8:53

8.8.8.8:53

173.194.69.84:443

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/comment-iframe.g?blogID%3D202552083745637138%26postID%3D298758256201081102%26blogspotRpcToken%3D7041792%26bpli%3D1&followup=https://www.blogger.com/comment-iframe.g?blogID%3D202552083745637138%26postID%3D298758256201081102%26blogspotRpcToken%3D7041792%26bpli%3D1&go=true HTTP/2.0
host: accounts.google.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

142.250.186.97:80

GET //feeds/posts/default?alt=json-in-script&max-results=20&callback=jQuery17109486108603543293_1715410298461&_=1715410387579 HTTP/1.1
Host: nano-mag-soratemplates.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Cross-Origin-Resource-Policy: cross-origin
Location: https://nano-mag-soratemplates.blogspot.com/feeds/posts/default?alt=json-in-script&max-results=20&callback=jQuery17109486108603543293_1715410298461
Date: Sat, 11 May 2024 06:53:08 GMT
Content-Type: text/html
Server: Blogger Render Server 1.0
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

8.8.8.8:53

142.250.184.238:80

GET / HTTP/1.1
Host: developers.google.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: e80a69a8e559c696b2a5378db5074b2a
Date: Sat, 11 May 2024 06:53:08 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0

151.101.0.84:443

GET /v1/urls/count.json?url=http%3A%2F%2Fdianasworldhe.blogspot.com%2F2015%2F09%2Fswipe-vault-review.html&callback=PIN_1715410387626.f.callback[0] HTTP/2.0
host: widgets.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Sat, 11 May 2024 07:08:08 GMT
x-envoy-upstream-service-time: 47
x-pinterest-rid: 1029832361267334
accept-ranges: none
age: 0
date: Sat, 11 May 2024 06:53:08 GMT
content-encoding: br
vary: accept-encoding

151.101.0.84:443

GET /?type=pidget&guid=AHtjQoQBdXfm&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fdianasworldhe.blogspot.com%2F2015%2F09%2Fswipe-vault-review.html&viaSrc=canonical HTTP/2.0
host: log.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 400
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 4
server: envoy
x-pinterest-rid: 1057116579719528
accept-ranges: bytes
date: Sat, 11 May 2024 06:53:09 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600052-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1715410390.531629,VS0,VE16
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
alt-svc: h3=":443";ma=600
content-length: 0

8.8.8.8:53

8.8.8.8:53

104.244.42.72:443

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fdianasworldhe.blogspot.com%2F2015%2F09%2Fswipe-vault-review.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1715410387775%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Sat, 11 May 2024 06:53:08 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sat, 11 May 2024 06:53:08 GMT
content-length: 43
x-transaction-id: f47fe6e90c46e3ce
strict-transport-security: max-age=631138519
x-response-time: 113
x-connection-hash: e2134619bbc1369c0b852e1ec43da54ada78bf866dcd3d71f284b3573e7fbef8

142.250.184.238:443

GET / HTTP/2.0
host: developers.google.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

142.250.186.97:443

GET /feeds/posts/default?alt=json-in-script&max-results=20&callback=jQuery17109486108603543293_1715410298461 HTTP/2.0
host: nano-mag-soratemplates.blogspot.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

142.250.185.67:443

GET /accounts/o/3604799710-postmessagerelay.js HTTP/2.0
host: ssl.gstatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://accounts.google.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.250.185.164:443

GET /js/bg/wzW03wSMKGadcZM3w2SLC_Xpa1daedvy2LBHVDfiSZI.js HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.blogger.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

142.250.186.97:80

GET /favicon.ico HTTP/1.1
Host: dianasworldhe.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 11 May 2024 06:53:10 GMT
Date: Sat, 11 May 2024 06:53:10 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 07 Feb 2024 14:17:32 GMT
ETag: W/"906996a50a351f8668e553547d4256c42062b0466fb1344124beca6b7c8ecfc7"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE