Overview

URL wonderarticles.blogspot.com/2013/07
IP216.58.209.129
ASNAS15169 Google Inc.
Location United States
Report completed2018-09-24 18:19:41 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-09-24 2 wonderarticles.blogspot.com/2013/07 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 216.58.209.129

Date UQ / IDS / BL URL IP
2018-10-16 23:22:43 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.com/sear (...) 216.58.209.129
2018-10-16 23:22:22 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.ca/searc (...) 216.58.209.129
2018-10-16 19:47:40 +0200
0 - 0 - 0 https://onlinetvshow22.blogspot.com/2018/10/t (...) 216.58.209.129
2018-10-16 19:45:11 +0200
0 - 0 - 0 https://onlinetvshow22.blogspot.com/2018/10/s (...) 216.58.209.129
2018-10-16 19:43:28 +0200
0 - 0 - 0 https://onlinetvshow22.blogspot.com/2018/10/a (...) 216.58.209.129
2018-10-16 16:13:47 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.co.uk/20 (...) 216.58.209.129
2018-10-16 16:13:09 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.com/2011 (...) 216.58.209.129
2018-10-16 16:12:45 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.ca/searc (...) 216.58.209.129
2018-10-16 08:22:11 +0200
0 - 1 - 0 ptp-cpm.blogspot.com/2012/12/huong-dan-ang-ky (...) 216.58.209.129
2018-10-16 08:20:44 +0200
0 - 1 - 0 anazhthseis.blogspot.ca/2011 216.58.209.129

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2018-10-16 23:28:23 +0200
0 - 1 - 0 www.shirtroom.xyz/ 216.58.207.211
2018-10-16 23:22:43 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.com/sear (...) 216.58.209.129
2018-10-16 23:22:22 +0200
0 - 1 - 0 ninja-saga-hack-insyndicate.blogspot.ca/searc (...) 216.58.209.129
2018-10-16 23:18:55 +0200
0 - 0 - 0 https://youtu.be/BECGNiinGE4 216.58.207.206
2018-10-16 22:50:42 +0200
0 - 1 - 0 booter-center.blogspot.com/ 172.217.21.129
2018-10-16 22:41:54 +0200
0 - 0 - 0 https://www.google.co.uk/?gfe_rd=cr&ei=jvjrVP (...) 172.217.20.35
2018-10-16 22:23:11 +0200
0 - 0 - 0 holzwerk-hamburg.de 23.236.62.147
2018-10-16 22:05:22 +0200
0 - 1 - 0 r6---sn-ogueln7r.gvt1.com/edgedl/release2/chr (...) 173.194.51.156
2018-10-16 21:55:28 +0200
0 - 0 - 0 www.google.com/url?sa=t&rct=j&q=&esrc=s&sourc (...) 216.58.207.196
2018-10-16 21:33:13 +0200
0 - 0 - 0 8185216.fls.doubleclick.net 172.217.22.166

Last 10 reports on domain: wonderarticles.blogspot.com

Date UQ / IDS / BL URL IP
2018-10-12 15:27:28 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/what-is-m (...) 216.58.209.129
2018-10-12 00:41:27 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/what-is-m (...) 172.217.21.161
2018-10-11 20:36:47 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/what-is-m (...) 172.217.20.33
2018-10-10 21:22:06 +0200
0 - 0 - 1 wonderarticles.blogspot.com/search/label/inte (...) 216.58.207.225
2018-10-10 15:48:56 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/only-paki (...) 172.217.20.33
2018-10-10 06:46:42 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/only-paki (...) 172.217.21.161
2018-10-09 20:23:21 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/what-is-m (...) 172.217.20.33
2018-10-09 20:02:30 +0200
0 - 0 - 1 wonderarticles.blogspot.com/2013/07/what-is-m (...) 216.58.209.129
2018-10-06 10:07:08 +0200
0 - 0 - 1 wonderarticles.blogspot.com/search/label/inte (...) 172.217.20.33
2018-10-06 08:06:00 +0200
0 - 0 - 1 wonderarticles.blogspot.com/search/label/pctricks 172.217.21.129


JavaScript

Executed Scripts (81)


Executed Evals (90)

#1 JavaScript::Eval (size: 5271, repeated: 1) - SHA256: 0c89001964d44da84290ec2275005c9fa3a7342c0ba92f6dcf01d042669a1bd8

                                        (function() {
    try {
        var b = document.createElement("img");
        b.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fib.adnxs.com%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID";
        b.style.width = "1px";
        b.style.height = "1px";
        b.style.display = "none";
        if (document.body) {
            document.body.appendChild(b)
        }
    } catch (l) {
        console.log(l.message)
    }
    var Y = window;
    try {
        if (window.top && window.top.location && window.top.document && window.top.document.body && window.self !== window.top) {
            Y = window.top
        }
    } catch (n) {
        console.log("infolinks is embedded in an unfriendly IFRAME which is not supported.")
    }
    var p = window.location.href;
    var O = p.substr(0, p.indexOf("://") + 3);
    var g = navigator.userAgent.toLowerCase(),
        Z = function(q) {
            for (var r = 0, e = q.length; r < e; r++) {
                if (g.indexOf(q[r]) != -1) {
                    return true
                }
            }
            return false
        },
        U = Z(["mobi", "iphone", "ipad", "android", "windows phone", "opera mini", "ucweb"]) ? "mobile" : "",
        a = "ice" + U + ".js",
        B = window["infolinks_white_label"];

    function N(e) {
        return window[B + "_" + e] || window["infolinks_" + e] || window["infolink_" + e] || null
    }

    function S(t) {
        var s = t.split(/[&]/);
        for (var r = 0; r < s.length; r++) {
            var e = s[r].split("=");
            if (!e || e.length != 2) {
                continue
            }
            var q = decodeURIComponent(e[0]);
            var u = decodeURIComponent(e[1]);
            window["infolinks_" + q] = u
        }
    }
    var f = window["$iceboot"] = {};
    window["INFOLINKS"] = {
        _boot: f
    };
    var A = f.versions = {
        "1626.015-2.021": 100
    };
    var L = f.siteVersions = {
        "366.01.01": ["infolinks.com"]
    };
    var P = 0,
        G, m, c, D = location.hostname;
    G = location.search.match(/[\?&]il\.sv=([^&]+)/);
    if (G) {
        f.version = G[1]
    } else {
        for (m in A) {
            if (A.hasOwnProperty(m)) {
                c = A[m];
                A[m] = {
                    weight: c,
                    from: P,
                    to: P + c
                };
                P += c
            }
        }
        f.rand = Math.ceil((Math.random() * P));
        for (m in A) {
            if (A.hasOwnProperty(m)) {
                if (f.rand > A[m].from && f.rand <= A[m].to) {
                    f.version = m;
                    break
                }
            }
        }
    }
    var Q = [];
    for (m in L) {
        if (L.hasOwnProperty(m)) {
            for (k = 0, T = L[m].length; k < T; k++) {
                if (D.indexOf(L[m][k]) > -1) {
                    Q.push(m);
                    break
                }
            }
        }
    }
    if (Q.length) {
        f.version = Q[Math.floor(Math.random() * Q.length)]
    }
    var d = ["/", f.version, "/", a].join("");
    var K = N("resources");
    G = location.search.match(/[\?&]il\.su=([^&]+)/);
    if (G) {
        f.url = G[1] + d
    } else {
        if (K) {
            f.url = K + d
        } else {
            var J = document.getElementsByTagName("script"),
                E, k, T;
            var X = /\/infolinks_main\.js(\?.*)?$/;
            for (k = 0, T = J.length; k < T; k++) {
                E = J[k].src;
                if (E && E.match(X) != null) {
                    f.url = E.replace(X, d);
                    try {
                        var V = J[k].src.substr(J[k].src.indexOf("?") + 1, J[k].src.length);
                        S(V)
                    } catch (C) {}
                    break
                }
            }
            if (!f.url) {
                f.url = "https://resources.infolinks.com/js" + d
            }
        }
    }

    function W() {
        var e = f.url.substr(0, f.url.indexOf("/js/"));
        if (e && e != "undefined") {
            var i = document.createElement("iframe");
            i.width = "1px";
            i.height = "1px";
            i.style.display = "none";
            i.src = e + "/static/an/usersyncup-an.html";
            if (document.body) {
                document.body.appendChild(i)
            }
        }
    }
    f.tmr_scr = new Date().getTime();
    if (f.url) {
        var F = document.createElement("script");
        F.type = "text/javascript";
        F.charset = "UTF-8";
        F.src = f.url;
        F.async = N("async") || F.async;
        F.defer = N("ddw") || F.defer;
        var M = document.getElementsByTagName("head");
        if (M && M.length) {
            M[0].appendChild(F)
        } else {
            document.body.appendChild(F)
        }
    }
    try {
        var h = document.createElement("iframe");
        h.style.width = "1px";
        h.style.height = "1px";
        h.style.display = "none";
        h.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fads.pubmatic.com%2FAdServer%2Fjs%2Fuser_sync.html%3Fp%3D60809%26predirect%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D";
        if (document.body) {
            document.body.appendChild(h)
        }
    } catch (l) {
        console.log(l.message)
    }
    try {
        var j = document.createElement("iframe");
        j.style.width = "1px";
        j.style.height = "1px";
        j.style.display = "none";
        j.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fads.pubmatic.com%2FAdServer%2Fjs%2Fuser_sync.html%3Fp%3D156872%26userIdMacro%3DPM_UID%26predirect%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253DPM_UID%0D%0A%0D%0A";
        if (document.body) {
            document.body.appendChild(j)
        }
    } catch (l) {
        console.log(l.message)
    }
    try {
        var o = document.createElement("img");
        o.style.width = "1px";
        o.style.height = "1px";
        o.style.visibility = "none";
        o.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fsecure-assets.rubiconproject.com%2Futils%2Fxapi%2Fmulti-sync.html%3Fp%3Danswer_media%26endpoint%3Dus-west";
        if (document.body) {
            document.body.appendChild(o)
        }
    } catch (l) {
        console.log(l.message)
    }
    try {
        var I = document.createElement("img");
        I.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Finfolinks%2F%3Fcb%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fzmn-usync%253Fuid%253D__ZUID__";
        I.style.width = "0px";
        I.style.height = "0px";
        I.style.visibility = "none";
        if (document.body) {
            document.body.appendChild(I)
        }
    } catch (l) {
        console.log(l.message)
    }
    try {
        var R = document.createElement("img");
        R.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fmatch.deepintent.com%2Fusersync%2F117";
        R.style.width = "0px";
        R.style.height = "0px";
        R.style.visibility = "none";
        if (document.body) {
            document.body.appendChild(R)
        }
    } catch (l) {
        console.log(l.message)
    }
    try {
        var H = document.createElement("img");
        H.src = "https://router.infolinks.com/dyn/gdprfilter?cb=https%3A%2F%2Fib.adnxs.com%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3D" + encodeURIComponent(encodeURIComponent(encodeURIComponent(location))) + "%26pid%3D12306%26adnxs_uid%3D%24UID";
        H.style.width = "0px";
        H.style.height = "0px";
        H.style.visibility = "none";
        if (document.body) {
            document.body.appendChild(H)
        }
    } catch (l) {
        console.log(l.message)
    }
})()
                                    

#2 JavaScript::Eval (size: 38, repeated: 1) - SHA256: 93ef4fc1cf458cd664b2264d0548584fc0abfdfcb8090d18069ae411dcb98c27

                                        0,
function(c) {
    c.C && p(c, 0);
}
                                    

#3 JavaScript::Eval (size: 30, repeated: 1) - SHA256: 16efe66386db46e4f5996cff09824701a73dc1a5c393eb3dbd6ac966ea26b70a

                                        0,
function(c) {
    c.a(0);
}
                                    

#4 JavaScript::Eval (size: 30, repeated: 1) - SHA256: f706ae2808fffbcbf32407b739b78de85ef6b55a958d558df3371b9b9356af1f

                                        0,
function(c) {
    c.a(3);
}
                                    

#5 JavaScript::Eval (size: 30, repeated: 1) - SHA256: ad2526c2bc56afbe67a3246cfb47d82076445d1413c4338a46027c6ba443bead

                                        0,
function(c) {
    c.a(4);
}
                                    

#6 JavaScript::Eval (size: 30, repeated: 1) - SHA256: 5831e2eaf34bc2572c7261faa7ed66078aeb06fd485a0c1bbb8e9f7787a145f2

                                        0,
function(c) {
    c.a(7);
}
                                    

#7 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 95ef5f806107d62a8c14273428cd29a43fd999c0206796d6fe7a9037327bea29

                                        0,
function(c) {
    m(c, 1);
}
                                    

#8 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 9314077bac0708be3c86c28a332663ef47a6831ad16c3d0e06e38e903b82c5f9

                                        0,
function(c) {
    m(c, 2);
}
                                    

#9 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 28fa0b4e580c27e76400e1941ed6988087d55c49d583e17a63c7d9dd8498c3fc

                                        0,
function(c) {
    m(c, 4);
}
                                    

#10 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 59d007cbd774815c2f6256d50a6a213f3f69cae373b7f4df5f6a630c326cbf6f

                                        0,
function(c) {
    w(c, 1);
}
                                    

#11 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 7edbdb372652d90549255016c68cc6919026aaecd655fc09f6894b1d895bcee3

                                        0,
function(c) {
    w(c, 2);
}
                                    

#12 JavaScript::Eval (size: 31, repeated: 1) - SHA256: dce5a77911a9bb317ba4965ce63b8837ebe27a48dce360078aae95448e1c776d

                                        0,
function(c) {
    w(c, 4);
}
                                    

#13 JavaScript::Eval (size: 83, repeated: 1) - SHA256: 9f1082ca141c0bc41c6cb21e87759c45326b886bd7542b8be3a01eadcb8048dd

                                        0,
function(c, Z) {
    M(c, 1, 5) || (Z = X(c), V(c, Z.m, Z.S.apply(Z.l, Z.$)));
}
                                    

#14 JavaScript::Eval (size: 52, repeated: 1) - SHA256: bfef3137eb236e0f1a3af1e4b422c38810865dd17e83e7c779454f155c646784

                                        0,
function(c, Z) {
    U(c, (Z = c.w(c.I()), Z));
}
                                    

#15 JavaScript::Eval (size: 183, repeated: 1) - SHA256: bd35f9a88b61360dda96f22c1e63d566d72823abb2c2f34db2bbde601a435420

                                        0,
function(c, Z) {
    Z.push(c[0] << 24 | c[1] << 16 | c[2] << 8 | c[3]), Z.push(c[4] << 24 | c[5] << 16 | c[6] << 8 | c[7]), Z.push(c[8] << 24 | c[9] << 16 | c[10] << 8 | c[11]);
}
                                    

#16 JavaScript::Eval (size: 95, repeated: 1) - SHA256: fb9bdb6e4ec5a20c1a07c814158386336c1f8ab0d7328f4e0cdddb066a507a6c

                                        0,
function(c, Z) {
    c = (Z = c.I(), c).w(Z), c[0].removeEventListener(c[1], c[2], false);
}
                                    

#17 JavaScript::Eval (size: 123, repeated: 1) - SHA256: 2d43b44e3a0ffa391fed3fa6c40a30754b9ef989c77a8c8aec8c0ed15f1cfee2

                                        0,
function(c, Z) {
    if (Z = this.s[c], void 0 === Z) {
        throw E(this, 30, 0, c), this.U;
    }
    return Z();
}
                                    

#18 JavaScript::Eval (size: 514, repeated: 1) - SHA256: c362d249803fcb66de241230ea4640460f22c13716e73589022fd0cf9a846cb2

                                        0,
function(c, Z) {
    if (this.D) {
        return c = c ? this.D().shift() : this.X().shift(), this.D().length ||
            this.X().length || (this.X = this.D = void 0, this.G--), c;
    }
    if (!(c = this.w(121), c in this.A)) {
        throw E(this, 31), this.U;
    }
    return ((void 0 == this.P && (this.P = Y(this.A, c - 4), this.i = void 0), this).i != c >> 3 &&
        (this.i = c >> 3, Z = [0, 0, 0, this.w(64)], this.V = l(this.P, this.i, Z)), V)(this, 121, c + 1), this.A[c] ^ this.V[c % 8];
}
                                    

#19 JavaScript::Eval (size: 123, repeated: 1) - SHA256: 5be32f54a35566986a7ea2db39b72ac4bab08cc8701f131c37dd6ab98356e82e

                                        0,
function(c, Z, b) {
    M(c, 1, 5) ||
        (Z = c.I(), b = c.I(), V(c, b, function(c) {
            return eval(c);
        }(c.w(Z))));
}
                                    

#20 JavaScript::Eval (size: 83, repeated: 1) - SHA256: c347d5c2a64e4fb30c51552d8331a689d6dafe20125028a67b8ac43c1c3f1d2d

                                        0,
function(c, Z, b) {
    V((Z = (b = (Z = c.I(), c).I(), c.w(Z)), c), b, A(Z));
}
                                    

#21 JavaScript::Eval (size: 88, repeated: 1) - SHA256: b07d33af93a4b272ae6543ab3670695bd70b41144fb19c0692b516ffef8c7803

                                        0,
function(c, Z, b) {
    V((b = (Z = c.I(), c).I(), Z = c.s[Z] && c.w(Z), c), b, Z);
}
                                    

#22 JavaScript::Eval (size: 84, repeated: 1) - SHA256: 33e8b1d450be99ac81a301ebe5795bd52cedec8ab1b35a6f6b33507fc3c7403e

                                        0,
function(c, Z, b) {
    Z = c.I(), b = c.I(), 0 != c.w(Z) && V(c, 121, c.w(b));
}
                                    

#23 JavaScript::Eval (size: 74, repeated: 1) - SHA256: 315a3218fcce9d35476c4ce2e4e8628a10af3b63086b2a094726532f4513ea75

                                        0,
function(c, Z, b) {
    b = (Z = c.I(), c.I()), V(c, b, "" + c.w(Z));
}
                                    

#24 JavaScript::Eval (size: 78, repeated: 1) - SHA256: ac8aa7359ba80407358adcc2c115c0e4a91082eed1e425fd3448e99566086300

                                        0,
function(c, Z, b) {
    b = (Z = c.I(), c.I()), V(c, b, c.w(b) % c.w(Z));
}
                                    

#25 JavaScript::Eval (size: 78, repeated: 1) - SHA256: f520530ed495c075d0927ceaaaa5ebbcfdecb7d197604fd273ee5a2523281e97

                                        0,
function(c, Z, b) {
    b = (Z = c.I(), c.I()), V(c, b, c.w(b) * c.w(Z));
}
                                    

#26 JavaScript::Eval (size: 78, repeated: 1) - SHA256: e224f5a41568c9a757385f72c49505a885ac3549ba35750ebc2e418608ff7044

                                        0,
function(c, Z, b) {
    b = (Z = c.I(), c.I()), V(c, b, c.w(b) + c.w(Z));
}
                                    

#27 JavaScript::Eval (size: 78, repeated: 1) - SHA256: cad722629db55404b3ee8d75c7def6803b10235ba8f4fa1898b6c596cf151577

                                        0,
function(c, Z, b) {
    b = (Z = c.I(), c.I()), V(c, b, c.w(b) - c.w(Z));
}
                                    

#28 JavaScript::Eval (size: 244, repeated: 1) - SHA256: ceeea0a4dc0d71efd60bab68aaeeddf1718ab0a562363bfc057765d7b805727b

                                        0,
function(c, Z, b) {
    if (3 == c.length) {
        for (b = 0; 3 > b; b++) {
            Z[b] += c[b];
        }
        for (b = (c = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > b; b++) {
            Z[3](Z, b % 3, c[b]);
        }
    }
}
                                    

#29 JavaScript::Eval (size: 137, repeated: 1) - SHA256: e3def509e724ff7d82c6cc4ff86e2140c6f3c8270caf5886deefa9a2ca23628f

                                        0,
function(c, Z, b) {
    return (b = (Z = function() {
        return b();
    }, function() {
        return c;
    }), Z)[this.R] = function(F) {
        c = F;
    }, Z;
}
                                    

#30 JavaScript::Eval (size: 296, repeated: 1) - SHA256: da9440c32b20196d43433f8413248dec70903c329c088e659af3f67fd136c41d

                                        0,
function(c, Z, b, G, y, O, k) {
    if ((G = (Z = c.I(), b = K(c), ""), c.s)[149]) {
        for (y = c.w(149), O = 0, k = y.length; b--;) {
            O = (O + K(c)) % k, G += P[y[O]];
        }
    } else {
        for (; b--;) {
            G += P[c.I()];
        }
    }
    V(c, Z, G);
}
                                    

#31 JavaScript::Eval (size: 91, repeated: 1) - SHA256: 02b9dc8a044ec44cf9c1c4f499fd4e5e070f68138b36f91c5574ec49fa960034

                                        0,
function(c, Z, b, P) {
    (Z = c.I(), b = c.I(), P = c.I(), c.w(Z))[c.w(b)] = c.w(P);
}
                                    

#32 JavaScript::Eval (size: 90, repeated: 1) - SHA256: a325ccdd9d3a5ac990f5a246e5fef80921834639588dbb38a95a46e7b8b337e3

                                        0,
function(c, Z, b, P) {
    (b = (Z = c.I(), c).I(), P = c.I(), V)(c, P, c.w(Z) << b);
}
                                    

#33 JavaScript::Eval (size: 90, repeated: 1) - SHA256: a6569be6f8bb24844c92774b06f8b1e518b7f1003b10852345f86884e5cf784d

                                        0,
function(c, Z, b, P) {
    (b = (Z = c.I(), c).I(), P = c.I(), V)(c, P, c.w(Z) >> b);
}
                                    

#34 JavaScript::Eval (size: 196, repeated: 1) - SHA256: 615681d22d529be079c806ed071b0f0cd983c8672a8b4d55f254d7814bdac1fa

                                        0,
function(c, Z, b, P) {
    L(this, (P = (b = (c &= (Z = c & 4, 3), this.I()), this.I()), b = this.w(b), Z && (b = S(("" + b).replace(/\r\n/g, "\n"))), c && L(this, P, Q(b.length, 2)), P), b);
}
                                    

#35 JavaScript::Eval (size: 96, repeated: 1) - SHA256: 397b9b9a3a7cfd04691ecc766e782891295460ee0016e6bf51cb45e86d9f68a9

                                        0,
function(c, Z, b, P) {
    V((P = (b = (Z = c.I(), c).I(), c).I(), c), P, c.w(Z) | c.w(b));
}
                                    

#36 JavaScript::Eval (size: 97, repeated: 1) - SHA256: c096e873d61231f071d7b263efb999c3c233c8766ad0302dd8b4e9acf328144f

                                        0,
function(c, Z, b, P) {
    V((P = (b = (Z = c.I(), c).I(), c).I(), c), P, c.w(Z) || c.w(b));
}
                                    

#37 JavaScript::Eval (size: 103, repeated: 1) - SHA256: 14bf118cf1d2314d09f7eeb10d844b603289ae5330b8037fdb75d4a5b9ddba4f

                                        0,
function(c, Z, b, P) {
    V((P = (b = (Z = c.I(), c.I()), c).I(), c), P, (c.w(Z) in c.w(b)) + 0);
}
                                    

#38 JavaScript::Eval (size: 111, repeated: 1) - SHA256: c88c1d0be2129bc12073b7944b69bd00fdfdf425dbc6898801bed011924e97b8

                                        0,
function(c, Z, b, P) {
    V(c, (Z = (b = (b = (Z = c.I(), c).I(), P = c.I(), c.w(b)), c).w(Z), P), Z[b]);
}
                                    

#39 JavaScript::Eval (size: 102, repeated: 1) - SHA256: 39a86b7826b910c239a85732ec4ffe40cb7aeba17b20fc92bfead6585c822560

                                        0,
function(c, Z, b, P) {
    Z = (Z = c.I(), b = c.I(), P = c.I(), c.w(Z) == c.w(b)), V(c, P, +Z);
}
                                    

#40 JavaScript::Eval (size: 101, repeated: 1) - SHA256: 5de9e53fa7652c0e6e9e3edd9a0ad94bc175774983308cc9c10fd8cb53ebb9b9

                                        0,
function(c, Z, b, P) {
    Z = (Z = c.I(), b = c.I(), P = c.I(), c.w(Z) > c.w(b)), V(c, P, +Z);
}
                                    

#41 JavaScript::Eval (size: 142, repeated: 1) - SHA256: 810d3ecdedfc00e6f5cea638c84385618f4cd4959ac19d2dd657537b619a0e14

                                        0,
function(c, Z, b, P) {
    for (; b--;) {
        121 != b && 11 != b && Z.s[b] && (Z.s[b] = Z[P](Z[c](b), this));
    }
    Z[c] = this;
}
                                    

#42 JavaScript::Eval (size: 245, repeated: 1) - SHA256: 85e8ec1ee44929446b7284595ca633d7317d8463e0e5ecc018a8dc54afe3d929

                                        0,
function(c, Z, b, P) {
    if ((Z = c.O.pop())) {
        for (b = c.I(); 0 < b; b--) {
            P = c.I(), Z[P] = c.s[P];
        }
        Z[143] = c.s[143], Z[163] = c.s[163], c.s = Z;
    } else {
        V(c, 121, c.A.length);
    }
}
                                    

#43 JavaScript::Eval (size: 170, repeated: 1) - SHA256: 9116c4da0cc48f3868a733f99f7571ab3b89b37f7d4cc5c63c9ae95f43a56b70

                                        0,
function(c, Z, b, P) {
    try {
        P = c[(Z + 2) % 3], c[Z] = c[Z] - c[(Z + 1) % 3] - P ^ (1 == Z ? P << b : P >>> b);
    } catch (G) {
        throw G;
    }
}
                                    

#44 JavaScript::Eval (size: 228, repeated: 1) - SHA256: 60b93b50b4c6672ed05b4c395606aa7209ad7ed79ce5828b68e7c17a3e30076c

                                        0,
function(c, Z, b, P, G) {
    (P = (b = (Z = (P = (b = (Z = c.I(), c).I(), c).I(), c.w(Z)), G = c.w(c.I()), c.w(b)), c).w(P), 0 !== Z) &&
    (P = T(c, P, G, 1, Z, b), Z.addEventListener(b, P, t), V(c, 249, [Z, b, P]));
}
                                    

#45 JavaScript::Eval (size: 132, repeated: 1) - SHA256: 1e798db26d09558ad0718ea6ada3a39d43a5472a5ecbdad0ff3b6263b6330750

                                        0,
function(c, Z, b, P, G) {
    b = (G = (P = (b = (Z = c.I(), c).I(), c).w(c.I()), c).w(c.I()), c).w(b), V(c, Z, T(c, b, P, G));
}
                                    

#46 JavaScript::Eval (size: 138, repeated: 1) - SHA256: 30021133c976dd6b18b37e900c4b7416bf7661b8af2e5ffefa1cc6a68f4bb2c3

                                        0,
function(c, Z, b, P, G) {
    for (P = (b = (Z = c.I(), K(c)), []), G = 0; G < b; G++) {
        P.push(c.I());
    }
    V(c, Z, P);
}
                                    

#47 JavaScript::Eval (size: 401, repeated: 1) - SHA256: 8100c172d05980a4d1dff3f8e5d7ac19719aadb82c049abd0801d7c5ab88e765

                                        0,
function(c, Z, b, P, G, O) {
    if (!M(c, 1, 255)) {
        if (P = (b = (Z = (G = (Z = c.I(), b = c.I(), P = c.I(), c).I(), c.w(Z)), c).w(b), c.w(P)), c = c.w(G), "object" == A(Z)) {
            for (O in G = [], Z) {
                G.push(O);
            }
            Z = G;
        }
        for (O = (G = 0, Z.length); G < O; G += P) {
            b(Z.slice(G, G + P), c);
        }
    }
}
                                    

#48 JavaScript::Eval (size: 214, repeated: 1) - SHA256: 1dbb560d57360955022d2ff7b6863ca4d2e98c03488a7c0e0beb9c38ba100833

                                        0,
function(c, Z, b, P, G, O) {
    return c = (G = (b = this, function() {
        return P();
    }), P = function() {
        return P[b.J + (G[b.M] === Z) - !O[b.M]];
    }, O = b.Y, G[b.R] = function(c) {
        P[b.B] = c;
    }, G[b.R](c), G);
}
                                    

#49 JavaScript::Eval (size: 339, repeated: 1) - SHA256: a5321d8ddbc3ddaee330cfbf0b8336e58435233ada361f9a246bdc44c2d7e00a

                                        0,
function(c, Z, b, P, G, O, k) {
    M(c, 1, 5) ||
        (Z = X(c), G = Z.S, P = Z.l, b = Z.$, k = b.length, 0 == k ? (O = new(P[G])) : 1 == k ? (O = new(P[G])(b[0])) : 2 == k ? (O = new(P[G])(b[0], b[1])) : 3 == k ? (O = new(P[G])(b[0], b[1], b[2])) : 4 == k ? (O = new(P[G])(b[0], b[1], b[2], b[3])) : E(c, 22), V(c, Z.m, O));
}
                                    

#50 JavaScript::Eval (size: 776, repeated: 1) - SHA256: 91d8d424f6e92772cea703a57b74620dfe32d8729ab6edb4fa29171da3ff1827

                                        0,
function(c, Z, b, P, G, O, k, f, H, a, u, J, x) {
    for (f = (P = b = (Z = c.I(), 0), G = function(Z, G) {
            for (; P < Z;) {
                b |= c.I() << P, P += 8;
            }
            return b >>= (G = (P -= Z, b & (1 << Z) - 1), Z), G;
        }, O = G(3) + 1, k = G(5), []), a = H = 0; a < k; a++) {
        u = G(1), f.push(u), H += u ? 0 : 1;
    }
    for (H = (H - 1).toString(2).length, J = [], a = 0; a < k; a++) {
        f[a] || (J[a] = G(H));
    }
    for (a = 0; a < k; a++) {
        f[a] && (J[a] = c.I());
    }
    for (a = O, x = []; a--;) {
        x.push(c.w(c.I()));
    }
    V(c, Z, function(c, Z, b, P, G) {
        for (P = 0, Z = (c.G++, []), b = []; P < k; P++) {
            if (G = J[P], !f[P]) {
                for (; G >= Z.length;) {
                    Z.push(c.I());
                }
                G = Z[G];
            }
            b.push(G);
        }
        c.X = (c.D = c.H(x.slice(), c.I), c).H(b, c.I);
    });
}
                                    

#51 JavaScript::Eval (size: 39, repeated: 1) - SHA256: bb6753823aebc94f3cc0c4b3c3ed5b60753622b1198ec8abd45102911d59e131

                                        0,
function($, _) {
    _._ += !_.$[_[_._] = $[0]]
}
                                    

#52 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 6b23c0d5f35d1b11f9b683f0b0a617355deb11277d91ae091d399c655b87940d

                                        C
                                    

#53 JavaScript::Eval (size: 135, repeated: 1) - SHA256: 98a193456dd308692cd6308451f7d4ebcb48bc84936028bedff602bb45e58057

                                        C = function(c, Z, b) {
    return g(((b = c.w(121), c).A && b < c.A.length ? (V(c, 121, c.A.length), U(c, Z)) : V(c, 121, Z), c), b);
}
                                    

#54 JavaScript::Eval (size: 1, repeated: 1) - SHA256: a9f51566bd6705f7ea6ad54bb9deb449f795582d6529a0e22207b8981233ec58

                                        E
                                    

#55 JavaScript::Eval (size: 435, repeated: 1) - SHA256: 1aaf4b106167216c051e0756f4084fefcf3823f046b37749ef743b867681c6bb

                                        E = function(c, Z, b, P, G) {
    ((b = ((P = ((Z = (G = c.w(11), [Z, G >> 8 & 255, G & 255]), void 0 != P && Z.push(P), 0 == c.w(143).length) &&
                (c.s[143] = void 0, V(c, 143, Z)), ""), b) &&
            (b.message && (P += b.message), b.stack && (P += ":" + b.stack)), c.w(163)), 3 < b) &&
        (P = P.slice(0, b - 3), b -= P.length + 3, P = S(P.replace(/\r\n/g, "\n")), L(c, 27, Q(P.length, 2).concat(P), 12)), V)(c, 163, b);
}
                                    

#56 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 86be9a55762d316a3026c2836d044f5fc76e34da10e1b45feee5f18be7edb177

                                        K
                                    

#57 JavaScript::Eval (size: 85, repeated: 1) - SHA256: 205d2193c8c07c1b54862a6ccd329a2a3f3d802284fb84dd068b9baa3db82593

                                        K = function(c, Z) {
    return Z = c.I(), Z & 128 && (Z = Z & 127 | c.I() << 7), Z;
}
                                    

#58 JavaScript::Eval (size: 1, repeated: 2) - SHA256: 72dfcfb0c470ac255cde83fb8fe38de8a128188e03ea5ba5b2a93adbea1062fa

                                        L
                                    

#59 JavaScript::Eval (size: 402, repeated: 1) - SHA256: e323e8da35a66e04b860b32a40039c99a3c0385742488b2a70a4b6bba6f64afe

                                        L = function(c, Z, b, P, G, F) {
    for (P = ((G = c.w(Z), 27) == Z ? (Z = function(c, Z, b, P) {
            if ((Z = G.length, b = Z - 4 >> 3, G.o) != b) {
                P = [0, 0, 0, (b = (b << 3) - (G.o = b, 4), F)];
                try {
                    G.b = l(Y(G, b), Y(G, b + 4), P);
                } catch (O) {
                    throw O;
                }
            }
            G.push(G.b[Z & 7] ^ c);
        }, F = c.w(246)) : (Z = function(c) {
            G.push(c);
        }), P && Z(P & 255), 0), c = b.length; P < c; P++) {
        Z(b[P]);
    }
}
                                    

#60 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 4ae81572f06e1b88fd5ced7a1a000945432e83e1551e6f721ee9c00b8cc33260

                                        Q
                                    

#61 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 8de0b3c47f112c59745f717a626932264c422a7563954872e237b223af4ad643

                                        S
                                    

#62 JavaScript::Eval (size: 487, repeated: 1) - SHA256: 8cc7a18659ad3aa263fc7a9d5845f4f932f4a6bede624c4c51cbf05cf1d45b9d

                                        S = function(c, Z, b, P, G) {
    for (P = b = (Z = [], 0); P < c.length; P++) {
        G = c.charCodeAt(P), 128 > G ? (Z[b++] = G) : (2048 > G ? (Z[b++] = G >> 6 | 192) : (55296 == (G & 64512) &&
            P + 1 < c.length && 56320 == (c.charCodeAt(P + 1) & 64512) ? (G = 65536 + ((G & 1023) << 10) + (c.charCodeAt(++P) & 1023), Z[b++] = G >> 18 | 240, Z[b++] = G >> 12 & 63 | 128) : (Z[b++] = G >> 12 | 224), Z[b++] = G >> 6 & 63 | 128), Z[b++] = G & 63 | 128);
    }
    return Z;
}
                                    

#63 JavaScript::Eval (size: 1, repeated: 1) - SHA256: e632b7095b0bf32c260fa4c539e9fd7b852d0de454e9be26f24d0d6f91d069d3

                                        T
                                    

#64 JavaScript::Eval (size: 272, repeated: 1) - SHA256: 1b9a4711cad0087b56e6d2d5c700216bbc0aca3a3145c5f1fbdd90a11b4dd5db

                                        T = function(c, Z, b, P, G, F) {
    return function() {
        var I = [6, Z, b, void 0, G, F, arguments],
            q = P & 1;
        if (P & 2) {
            var D = d(c, (B(c, I), true), false, false);
        } else {
            q && c.c.length ? B(c, I) : q ? (B(c, I), d(c, true, false, false)) : (D = n(c, I));
        }
        return D;
    };
}
                                    

#65 JavaScript::Eval (size: 1, repeated: 1) - SHA256: a25513c7e0f6eaa80a3337ee18081b9e2ed09e00af8531c8f7bb2542764027e7

                                        U
                                    

#66 JavaScript::Eval (size: 85, repeated: 1) - SHA256: 0ea05843088ddf2af866591648ce85a9e9c951512cd1ff4e1e88675d1519a6c9

                                        U = function(c, Z) {
    V(((c.O.push(c.s.slice()), c).s[121] = void 0, c), 121, Z);
}
                                    

#67 JavaScript::Eval (size: 1, repeated: 1) - SHA256: de5a6f78116eca62d7fc5ce159d23ae6b889b365a1739ad2cf36f925a140d0cc

                                        V
                                    

#68 JavaScript::Eval (size: 326, repeated: 1) - SHA256: d3c223ad2d51183ddb233b8bcafb199522264d4d77dab6acf2262ae4d0b47c0d

                                        V = function(c, Z, b) {
    if (121 == Z || 11 == Z) {
        if (c.s[Z]) {
            c.s[Z][c.R](b);
        } else {
            c.s[Z] = c.T(b);
        }
    } else if (234 != Z && 27 != Z && 179 != Z && 143 != Z || !c.s[Z]) {
        c.s[Z] = c.H(b, c.w);
    }
    64 == Z && (c.P = void 0, V(c, 121, c.w(121) + 4));
}
                                    

#69 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 4b68ab3847feda7d6c62c1fbcbeebfa35eab7351ed5e78f4ddadea5df64b8015

                                        X
                                    

#70 JavaScript::Eval (size: 267, repeated: 1) - SHA256: 9a17f1cfa207def84cbcb8b4bd5bf59a9c5162d82b288bbf6a615837c7fd3fe3

                                        X = function(c, Z, b, P, G, F) {
    for (F = (G = ((b = (Z = {}, c.I()), Z.m = c.I(), Z).$ = [], P = c.I() - 1, c.I()), 0); F < P; F++) {
        Z.$.push(c.I());
    }
    for ((Z.S = c.w(b), Z).l = c.w(G); P--;) {
        Z.$[P] = c.w(Z.$[P]);
    }
    return Z;
}
                                    

#71 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 18f5384d58bcb1bba0bcd9e6a6781d1a6ac2cc280c330ecbab6cb7931b721552

                                        Y
                                    

#72 JavaScript::Eval (size: 88, repeated: 1) - SHA256: 958e580a8e00b19e7cd2ba76a5d497f7c2db204daa476700ed2757c518801dbe

                                        Y = function(c, Z) {
    return c[Z] << 24 | c[Z + 1] << 16 | c[Z + 2] << 8 | c[Z + 3];
}
                                    

#73 JavaScript::Eval (size: 2, repeated: 23) - SHA256: 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                                        []
                                    

#74 JavaScript::Eval (size: 35, repeated: 1) - SHA256: 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12

                                        document.createElement('div').style
                                    

#75 JavaScript::Eval (size: 29, repeated: 2) - SHA256: 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255

                                        document.createElement('img')
                                    

#76 JavaScript::Eval (size: 35, repeated: 1) - SHA256: f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b

                                        document.createEvent('MouseEvents')
                                    

#77 JavaScript::Eval (size: 3218, repeated: 1) - SHA256: 9f2adedf1dbb0ac99a29d5f2bd2825da48564db3c3033be34b85ea109aa03adb

                                        function RandomPost(a) {
    (function(e) {
        var i = {
            blogURL: "",
            MaxPost: 4,
            RandompostActive: true,
            idcontaint: "#randompost",
            ImageSize: 100,
            loadingClass: "loadingxx",
            pBlank: "http://1.bp.blogspot.com/-htG7vy9vIAA/Tp0KrMUdoWI/AAAAAAAABAU/e7XkFtErqsU/s1600/grey.gif",
            MonthNames: ["Jan", "Feb", "Mar", "Apr", "May", "Jun", "Jul", "Aug", "Sep", "Oct", "Nov", "Dec"],
            tagName: false
        };
        i = e.extend({}, i, a);
        var h = e(i.idcontaint);
        var b = i.blogURL;
        var d = i.MaxPost * 600;
        if (i.blogURL === "") {
            b = window.location.protocol + "//" + window.location.host
        }
        h.html('<div id="buttons"><a href="#" id="prev">prev</a><a href="#" id="next">next</a></div><div id="slides"><ul class="randomnya"></ul></div>').addClass(i.loadingClass);
        var g = function(z) {
            var t, k, r, o, x, A, s, w, y, u, n = "",
                v = z.feed.entry;
            for (var q = 0; q < v.length; q++) {
                for (var p = 0; p < v[q].link.length; p++) {
                    if (v[q].link[p].rel == "alternate") {
                        t = v[q].link[p].href;
                        break
                    }
                }
                for (var m = 0; m < v[q].link.length; m++) {
                    if (v[q].link[m].rel == "replies" && v[q].link[m].type == "text/html") {
                        r = v[q].link[m].title.split(" ")[0];
                        break
                    }
                }
                if ("media$thumbnail" in v[q]) {
                    x = v[q].media$thumbnail.url.replace(/\/s[0-9]+\-c/g, "/s" + i.ImageSize + "-c")
                } else {
                    x = i.pBlank.replace(/\/s[0-9]+(\-c|\/)/, "/s" + i.ImageSize + "$1")
                }
                k = v[q].title.$t;
                u = v[q].published.$t.substring(0, 10);
                o = v[q].author[0].name.$t;
                A = u.substring(0, 4);
                s = u.substring(5, 7);
                w = u.substring(8, 10);
                y = i.MonthNames[parseInt(s, 10) - 1];
                n += '<li><a target="_blank" href="' + t + '"><div class="overlayx"></div><img class="random" src="' + x + '"/><h4>' + k + '</h4></a><div class="label_text"><span class="date"><span class="dd">' + w + '</span><span class="dm">' + y + '</span><span class="dy">' + A + '</span></span><span class="autname">' + o + '</span><span class="cmnum">' + r + "</span></div></li>"
            }
            e("ul", h).append(n)
        };
        var c = function(o) {
            Total_Posts_Number = o.feed.openSearch$totalResults.$t;
            if (Total_Posts_Number <= i.MaxPost) {
                i.MaxPost = Total_Posts_Number
            }
            var j = [];
            while (j.length < i.MaxPost) {
                var q = Math.ceil(Math.random() * Total_Posts_Number);
                var p = false;
                for (var n = 0; n < j.length; n++) {
                    if (j[n] == q) {
                        p = true;
                        break
                    }
                }
                if (!p) {
                    j[j.length] = q
                }
            }
            var m = "/-/" + i.tagName;
            if (i.tagName === false) {
                m = ""
            }
            if (i.RandompostActive === true) {
                for (var l = 0; l < i.MaxPost; l++) {
                    e.ajax({
                        url: b + "/feeds/posts/default" + m + "?start-index=" + j[l] + "&max-results=1&orderby=published&alt=json-in-script",
                        success: g,
                        dataType: "jsonp",
                        cache: true
                    })
                }
            } else {
                e.ajax({
                    url: b + "/feeds/posts/default" + m + "?max-results=" + i.MaxPost + "&orderby=published&alt=json-in-script",
                    success: g,
                    dataType: "jsonp",
                    cache: true
                })
            }
        };
        var f = function() {
            if (i.tagName === false) {
                e.ajax({
                    url: b + "/feeds/posts/default?max-results=0&alt=json-in-script",
                    success: c,
                    dataType: "jsonp",
                    cache: true
                })
            } else {
                e.ajax({
                    url: b + "/feeds/posts/default/-/" + i.tagName + "?max-results=0&alt=json-in-script",
                    success: c,
                    dataType: "jsonp",
                    cache: true
                })
            }
            e(window).bind("load", function() {
                setTimeout(function() {
                    var k = 5000;
                    var l = setInterval("rotate()", k);
                    e("#slides li:first").before(e("#slides li:last"));
                    e("#prev").click(function() {
                        e("#slides li:first").before(e("#slides li:last"));
                        return false
                    });
                    e("#next").click(function() {
                        e("#slides li:last").after(e("#slides li:first"));
                        return false
                    });
                    e("#slides").hover(function() {
                        clearInterval(l)
                    }, function() {
                        l = setInterval("rotate()", k)
                    });

                    function j() {
                        e("#next").click()
                    }
                    h.removeClass(i.loadingClass)
                }, d)
            })
        };
        e(document).ready(f)
    })(jQuery)
};
                                    

#78 JavaScript::Eval (size: 1, repeated: 1) - SHA256: cd0aa9856147b6c5b4ff2b7dfee5da20aa38253099ef1b4a64aced233c9afe29

                                        g
                                    

#79 JavaScript::Eval (size: 636, repeated: 1) - SHA256: 73a6e9b450fab4317bbcc51b947010656c484be4a3e31d589296b768f17c3507

                                        g = function(c, Z, b, P, G, F, I) {
    c.G++;
    try {
        for (b = (F = 0, P = 5001, c.A).length, G = void 0;
            (--P || c.F) && (c.D || (F = c.w(121)) < b);) {
            try {
                c.D ? (G = c.I(true)) : (V(c, 11, F), I = c.I(), G = c.w(I)), G && G.call ? G(c) : E(c, 21, 0, I), c.v = true, M(c, 0, 2);
            } catch (q) {
                q != c.U && (c.w(241) ? E(c, 22, q) : V(c, 241, q));
            }
        }
        P || E(c, 33);
    } catch (q) {
        try {
            E(c, 22, q);
        } catch (D) {
            R(c, D);
        }
    }
    return (b = c.w(101), Z) && V(c, 121, Z), c.G--, b;
}
                                    

#80 JavaScript::Eval (size: 1, repeated: 1) - SHA256: acac86c0e609ca906f632b0e2dacccb2b77d22b0621f20ebece1a4835b93f6f0

                                        l
                                    

#81 JavaScript::Eval (size: 366, repeated: 1) - SHA256: 46eec842228020b5f7d0184e4c59763a0e70727fef8e85a9f8f85a0d8a28bbd8

                                        l = function(c, Z, b, P) {
    try {
        for (P = 0; 79669387488 != P;) {
            c += (Z << 4 ^ Z >>> 5) + Z ^ P + b[P & 3], P += 2489668359, Z += (c << 4 ^ c >>> 5) + c ^ P + b[P >>> 11 & 3];
        }
        return [c >>> 24, c >> 16 & 255, c >> 8 & 255, c & 255, Z >>> 24, Z >> 16 & 255, Z >> 8 & 255, Z & 255];
    } catch (G) {
        throw G;
    }
}
                                    

#82 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 62c66a7a5dd70c3146618063c344e531e6d4b59e379808443ce962b3abd63c5a

                                        m
                                    

#83 JavaScript::Eval (size: 120, repeated: 1) - SHA256: 97849fc0796202df32fa7cb53f8e8b170c5c1958b66023ab1c5a1dda87856b38

                                        m = function(c, Z, b, P) {
    for (P = (b = c.I(), 0); 0 < Z; Z--) {
        P = P << 8 | c.I();
    }
    V(c, b, P);
}
                                    

#84 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 0c2b269ee38126c8dd749e3a3236c34b93e511be8b86f043107cce303f9e442d

                                        typeof flb1468098 != "undefined"
                                    

#85 JavaScript::Eval (size: 31, repeated: 1) - SHA256: cb6e8cd1d1431fc57e771b2214ec88b1773daf295bd810a0ec5583ad6ff8181f

                                        typeof flb1468098 == "undefined"
                                    

#86 JavaScript::Eval (size: 33, repeated: 1) - SHA256: 25d47353d305a7b0b60c878c3038750de25b676127647b7b5e23c48a9613d59b

                                        typeof sndmx1468098 == "undefined"
                                    

#87 JavaScript::Eval (size: 21, repeated: 1) - SHA256: cce2942cb38b583967d535af9e28a8a9419c75549c9e7a3deb3d0b992ec31adb

                                        var sndmx1468098 = 1;
                                    

#88 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 50e721e49c013f00c62cf59f2163542a9d8df02464efeb615d31051b0fddc326

                                        w
                                    

#89 JavaScript::Eval (size: 78, repeated: 1) - SHA256: 78151d3b36ac0700cc08df3e36a586a3401ff9c658b480f73fd940308e949076

                                        w = function(c, Z, b, P) {
    (b = c.I(), P = c.I(), L)(c, P, Q(c.w(b), Z));
}
                                    

#90 JavaScript::Eval (size: 1, repeated: 1) - SHA256: 594e519ae499312b29433b7dd8a97ff068defcba9755b6d5d00e84c524d67b06

                                        z
                                    

Executed Writes (52)

#1 JavaScript::Write (size: 0, repeated: 17) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

#2 JavaScript::Write (size: 481, repeated: 1) - SHA256: dfc70521fc53348d8a1d532673dc5d8f956292343afd4d7de2ffc51c662d46a2

                                        < script >
    var abgp = {
        imi: false,
        hw: 15,
        sw: 75,
        hh: 15,
        sh: 15,
        himg: 'https://pagead2.googlesyndication.com' + '/pagead/images/adchoices/icon.png',
        simg: 'https://pagead2.googlesyndication.com' + '/pagead/images/adchoices/en.png',
        alt: 'AdChoices',
        t: 'AdChoices',
        tw: 53,
        t2: '',
        t2w: 0,
        tbo: 0,
        att: 'adchoices',
        ff: '',
        halign: 'right',
        fe: false,
        iba: false,
        lttp: false,
        ci: '',
        nc: 1,
        ufdj: undefined,
        opi: false,
        opai: false,
        ti: false,
        mob: false,
        eaca: false,
        eda: false,
        fdda: false,
        eisa: true,
        ulf: true,
        swc: true,
        aeol: false
    }; < /script>
                                    

#3 JavaScript::Write (size: 4, repeated: 1) - SHA256: 152e69cf3c8e76c8d8b0aed924ddd1708e4c68624611af33d52c2c2814dd5df9

                                        2018
                                    

#4 JavaScript::Write (size: 623, repeated: 1) - SHA256: e7340cb4bf8e9e42dc42a78c9231f6f23102d2ddbe8b2acda52e2dec99df8ee9

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-3890207601569495"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20180917/r20180604/zrt_lookup.html#" > < /iframe><script>google_iframe_start_time=new Date().getTime();google_async_iframe_id="aswift_0";</script > < script > window.google_process_slots = function() {
    window.google_sa_impl({
        iframeWin: window,
        pubWin: window.parent,
        vars: window.parent['google_sv_map']['aswift_0']
    });
}; < /script><script src="http:/ / pagead2.googlesyndication.com / pagead / js / r20180917 / r20180604 / show_ads_impl.js "></script></body></html>
                                    

#5 JavaScript::Write (size: 419, repeated: 1) - SHA256: 688682ef14aeee1b27957df965ceb07e6069dc0cad37c4097caa1c1efd60b7fb

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_1"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_1']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180917/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#6 JavaScript::Write (size: 419, repeated: 1) - SHA256: d442096038f18fe6e4d728ff2f253ea5e185a926aa14708d8620f570df256964

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_2"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_2']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180917/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#7 JavaScript::Write (size: 419, repeated: 1) - SHA256: b43bec57259d7702554bdb8d7d4c8625b958bdb91f66bfe065aa90f1f5a23ddb

                                        < !doctype html > < html > < body > < script > google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_3"; < /script><script>window.google_process_slots=function(){window.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_3']});};</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20180917/r20180604/show_ads_impl.js" > < /script></body > < /html>
                                    

#8 JavaScript::Write (size: 12373, repeated: 1) - SHA256: c57bba5f24f3c38594379034b786fd0d2bd0ae5ac9e104f43a64c5176111bf03

                                        < !doctype html > < html > < head > < script >
    var google_casm = []; < /script></head > < body leftMargin = "0"
topMargin = "0"
marginwidth = "0"
marginheight = "0" > < DIV STYLE = "position: absolute; left: 0px; top: 0px; visibility: hidden;" > < IMG SRC = "https://pagead2.googlesyndication.com/pagead/gen_204?id=xbid&dbm_b=AKAmf-BovRFlQsv1Z_23JMtjFdycHNORnt0AE9LS80xZR0dgPz0u0keO0vNkfVeQfs4o08vZiAT9S032bZA_Pd_hCI-Vy3OzwNrArf7m9sBNkFSWYMz0zAQ"
BORDER = 0 WIDTH = 1 HEIGHT = 1 ALT = ""
STYLE = "display:none" > < /DIV><iframe src="https:/ / googleads.g.doubleclick.net / xbbe / pixel ? d = CL2qIxCXvCMYooHuNDAB & v = APEucNXi6Ee2OsvHOXcjIVCk7yiWydK - hXLiuR - mFg58fAcW - j4AcALHksmXryFFh_B4 - nfaSMq5zCZWXXvIkVP--rYTk0xu - c4CdMflVhpaYwqGK9qm0pOCzKrElDe49FzeVRvriyfNUB0yAJI08kgUxnUGhy1hbw " style="
display: none "></iframe><div><div style="
position: relative;
display: inline - block;
"><script>(function(){var h=this;var k=Array.prototype.forEach?function(a,c){Array.prototype.forEach.call(a,c,void 0)}:function(a,c){for(var d=a.length,b="
string "==typeof a?a.split("
"):a,e=0;e<d;e++)e in b&&c.call(void 0,b[e],e,a)},l=Array.prototype.map?function(a,c){return Array.prototype.map.call(a,c,void 0)}:function(a,c){for(var d=a.length,b=Array(d),e="
string "==typeof a?a.split("
"):a,f=0;f<d;f++)f in e&&(b[f]=c.call(void 0,e[f],f,a));return b},m=Array.prototype.reduce?function(a,c,d){return Array.prototype.reduce.call(a,c,d)}:function(a,c,d){var b=d;k(a,function(d,f){b=c.call(void 0,b,d,f,a)});return b},p=function(a){for(var c=[],d=0;d<a;d++)c[d]="
";return c};var q=function(a){q["
"](a);return a};q["
"]=function(){};var r=function(a,c){if(a)for(var d in a)Object.prototype.hasOwnProperty.call(a,d)&&c.call(void 0,a[d],d,a)},t=/https?:\/\/[^\/]+/,u=function(a){return(a=t.exec(a))&&a[0]||"
"};var v=/^https?:\/\/(\w|-)+\.cdn\.ampproject\.(net|org)(\?|\/|$)/,z=function(a){a=a||w();for(var c=new x(h.location.href,!1),d=null,b=a.length-1,e=b;0<=e;--e){var f=a[e];!d&&v.test(f.url)&&(d=f);if(f.url&&!f.b){c=f;break}}e=null;f=a.length&&a[b].url;0!=c.depth&&f&&(e=a[b]);return new y(c,e,d)},w=function(){var a=h,c=[],d=null;do{var b=a;try{var e;if(e=!!b&&null!=b.location.href)b:{try{q(b.foo);e=!0;break b}catch(n){}e=!1}var f=e}catch(n){f=!1}if(f){var g=b.location.href;d=b.document&&b.document.referrer||null}else g=d,d=null;c.push(new x(g||"
"));try{a=b.parent}catch(n){a=null}}while(a&&b!=a);b=0;for(a=c.length-1;b<=a;++b)c[b].depth=a-b;b=h;if(b.location&&b.location.ancestorOrigins&&b.location.ancestorOrigins.length==c.length-1)for(a=1;a<c.length;++a)g=c[a],g.url||(g.url=b.location.ancestorOrigins[a-1]||"
",g.b=!0);return c},y=function(a,c,d){this.c=a;this.f=c;this.a=d},x=function(a,c){this.url=a;this.b=!!c;this.depth=null};var B=function(a,c,d,b,e){var f=[];r(a,function(a,n){(a=A(a,c,d,b,e))&&f.push(n+" = "+a)});return f.join(c)},A=function(a,c,d,b,e){if(null==a)return"
";c=c||" & ";d=d||", $ ";"
string "==typeof d&&(d=d.split("
"));if(a instanceof Array){if(b=b||0,b<d.length){for(var f=[],g=0;g<a.length;g++)f.push(A(a[g],c,d,b+1,e));return f.join(d[b])}}else if("
object "==typeof a)return e=e||0,2>e?encodeURIComponent(B(a,c,d,b,e+1)):"...
";return encodeURIComponent(String(a))};var C=function(a,c){this.a=a;this.depth=c},E=function(){var a=w(),c=Math.max(a.length-1,0),d=z(a);a=d.c;var b=d.f,e=d.a,f=[];d=function(a,b){return null==a?b:a};e&&f.push(new C([e.url,e.b?2:0],d(e.depth,1)));b&&b!=e&&f.push(new C([b.url,2],0));a.url&&a!=e&&f.push(new C([a.url,0],d(a.depth,c)));var g=l(f,function(a,b){return f.slice(0,f.length-b)});!a.url||(e||b)&&a!=e||(b=u(a.url))&&g.push([new C([b,1],d(a.depth,c))]);g.push([]);return l(g,function(a){return D(c,a)})};function D(a,c){var d=m(c,function(a,b){return Math.max(a,b.depth)},-1),b=p(d+2);b[0]=a;k(c,function(a){return b[a.depth+1]=a.a});return b}var F=function(){var a=E();return l(a,function(a){return A(a)})};var G=function(a){try{var c=F();c.pop();for(var d=2083-a.length-5,b=0;b<c.length;b++){var e=encodeURIComponent(c[b]);if(e.length<=d)return a+" & rfl = "+e}return a}catch(f){}return a},H=["
rfl "],I=h;H[0]in I||"
undefined "==typeof I.execScript||I.execScript("
var "+H[0]);for(var J;H.length&&(J=H.shift());){var K;if(K=!H.length)K=void 0!==G;K?I[J]=G:I[J]&&I[J]!==Object.prototype[J]?I=I[J]:I=I[J]={}};}).call(this);</script><script>var url = 'https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BZsaMs64ZDSRawnJk71XMR23t_5ORUsjRdQSf2_t2oa-aM-Paic3CnAUhJ5RKPrxkCpN0u&dbm_d=AKAmf-Dq2S-mbBexc3XDMRs4lTCW7UejjFWv1u4AgAx8En6GaT6QYW1nIJZNuFvF1ab4vDNhB4fbb7Ye-MKR_HGeu5zN8bMY_7R7jaXCwoHlyiJuS024L1-ROkDF0mslDkAo4EUaffe939YILKITCynQSeonPaY9MY5kURReNbJv31aMtQdABPaPpGCzOclqmErqOEjcLfGIZAC4mi9eUDz78WrClBJmrPukM--C0flTBZtep9Yu3zaEdbl1Jl9Oh_A1jzzghtHX1TdGAlOh-tEk5e6DL32QTKoc7u0XrJV6LEFPpfAaQaMzcOsn6ZXDsEUHrCNeFliemKaXz6eFw51pBW_dd7hsSBg-8yU29cPr_RSQYg-zHrdqgCc61-rVrt8CpVqytqnNBhsUnmF0ubmYrZQCWKz1c0BN6ryA5PLR5BME8-erBHzXAWSzh3ZxzUjshRqY_ljV194slXNntOy3xpQO_LJxb5WaiFQ2w3Epo8yxeukgocrGsyfkis3Qly5reSQDS7x6YVWNQfiM6iq8-TmgAU_WKe2KZ5KIsg2AWqJ3uJ01_7ugcfTL3hwz30h0xMoT3HrYod-1avUM3E3GS5dB_KwWm-dxiFLrc12TnrZjOIy64MtjkLTxV1lZZ4wa83Dqyoa47yitSn7b_bVDCeTp1K3ekpa5kgICpLwrB7lFg_1XkacMRZYMfEpghATdtp1JLDEUpmhEez1TAAS93TQR0xHt-DWOZoLqeqzRLJw70aSRzddWcEGDNlKq9c2yiKPR_nsvP3ccrwQrK5emipWpdaenoPtI5RrBz_eAoGvMbf_uKSU2T1019i3Nb5ypwQRX978VgvO976UBtx7lsNl8AZR8SOuWFGBwGuwoa690IHCTLmMRGhMI4QPWhzojDkkVMaBHFY1T0XP-c1RLaQdybm-xsQui9mktfXpJwns6KAchrhaRUCUQCBo0OVbTSRTCj5f6cpxg-2XdePnqx9BmnoyA5omLnm0YBqvjcWojC7RVpsjX-zTJmjyvZMu7pEco_DSW2HUmsn54hGZJ3J0i9Lh18i3H8wfErds75pWej9rNB-TD7-JPKvqLgyRbigcFxFAqm1faILD7afKlgvBsVnHsPghTpzhb83OMnwu7-h2gjB9wpTreT66TKE7kTsrNSVL-5oSp2NZqw1hJRrzwShQ9QbKZHyE66jR--gyNSDgV5SA0FhoDnTyJDYLuFWQD0j-7XwqR7P-zzQgErIifCa5Ltp5HXxT7v0W4oU9O3vuPjSmVR-Ou0S-daxIJ0v-EgHPXQKIUffoAS4hxv7I-lQOw-Qey6ozMXsCl9cuUmlkZRZ_X8WvOaQGR_v62D6m9op0KLDvbs8UzzF8Tf7foEPzKrl42acZe-EBj3id6E99SocYphYg2ziiTGNPOovfdw9XICT4TwiJvmewbGN1C4zLgV2NPEOMLHTyb0Eu3ED5TP4fS8xEuprHuXaADsHt15YlDHaGCBqKrw-z0xvX6pXVWvNbWz4SX8ka4-xW2CFyxOfQWiKOHfojWvyEt-eXGkdWcxqn_B-IHfJ-3-hOXQ_6kf8hbc6eygWcoU3cjpVtV4zNyothaV61twz4qv5EQPxYXUtsTdscqludlfXhsf9mCAgb5zd2UigpP52LoEfslGxtz6SMjodGCa9MmSDDVFxYA8W4CHmXISZJi-xo696pVOevWX9Ge6zE8JWm1JFU7KVvG4x0VNm7Oa-29yJqASZhh8BfRMMHcqEXGuhDOjhFrO90jn_4rqvUYQfkv0RMmbA_L5D-dWgmWuLp0kTzjYBOkQQ7m6QDSiDqaLkyDR-B1bEzLPn7MYDeinrhkxaZ2IJqErR4CwTf750Z7FbZ-2y7UDuP_Y7KZx7T9p45GkljpdSEPFOn2_vQvlbijNRGtsZGiHMum1ZkXfu66Tgd7PjHwOcRt5ZGQHJq8tvZPOCGSiMzRRrH5DOfFoXhkEY_Y_mmKt2ICV_oXG4qprHVk14--t7atYljxKgH5NYUmZGXWH--HjuiTLII5pAPUDnsucsDpuvd97-oMltfrXFkHxUWMl30y6QjJFk-HJbRy5xJgwZLttYwHDyFigY_3BPJw8Zy_bNugwzIMH-nku_6hTyFt8a4GEJMj2uq1HJR3vVmuRBqbFO7rlwYCHXX2_z9lqLMsS4vWvh8afPxjyjG7UVMR2gKGxdbIhPgWOr2xOPTpHGteE-7UhLEgT4UBhIXOODc5j-EgXe1b6h0thNVQpTtqJj_zxRqcTCvvU8_hCahkrhjbcqoEs-rOvcPPYk47WXSaYHUrmZF2HNO-Pey1kvMfK-1URXZJKL8tWHtlI3jIONQjIDTzD4HwfaFFwT4X-_ZVlW30wh8v9tlhVFFrmP_QjjYuuTczZljKXrrh_dZCQC80LnA-HvlwMyHU1Wij2kU50Uw_bd8G6-D8mk5NTfreNrm5VqV2GuSFBu-_XY0D36Y7GimUjb-D8Lty2-KDyuEmMwtgDQGvJ93m6vwVUCeUopUja9TY75mswW3uBWoAa0RGWS6H7md4VD_tcchJ6Q3fCoLWIdwWpGKguCBCtQdoAD9KG-tCkDzHoRgVC4pgHMdaMRGRMEVOrC975OGjTvGEt9jgBBezXBN0BrpcS-F87eY024AkPnuQAXL3P26q695WRcayewQRf60l8w0--xLdMYe3_ozNwluE2S3PfkYfD93_48a5CBeUl_hF7gaqbSiHFfYqIjvOxEW8RWgZIVOP2bbOPzsYlqv23iLdVSTX&cid=CAASEuRo19fPhTua6JCra9BkV0dqfQ';document.write('<script src="
' + (window.rfl ? window.rfl(url) : url) + '
"></s' + 'cript>');</script></div></div><script src="
https: //tpc.googlesyndication.com/pagead/js/r20180917/r20110914/client/ext/m_window_focus_non_hydra.js" async></script><script>function initWindowFocus() {window['window_focus_for_click'] =wfocusnhinit("https://googleads.g.doubleclick.net/pagead/conversion/?ai\x3dC_Lzdew6pW6-hL8SRZ_Phu9AF3da_mFO2_pDH9wfwLhABIJWLxiJgw9ykhZgYoAHPk8PHA8gBCakCg80XrUh7gD6oAwHIAwKqBMoBT9CSSQ8D_86K3p8suzvif--_k7b-eJeTC9p9s6hGo3rpikHwVdoqasvIxpn45D1A6JWjLcBCyRuB98DMNZE8viuqLFl25pbqqCvgF-3OOdrbzTqYR_s21NeGBvpPWJOJ13dn2E74YiEKSXMvvRRmMI4H3lue3phHant7XaMy-xoowmUMfP6z8NLpEm-LwO0OVA47bHPguTJRTsQMg-FsS6uai5rYHhv5T5OmqjBOq0dQFnq8D_uvqSh0qCnAOYw9IdI2ffL2N4erMuAEA5AGAaAGTIAHmey8OKgHjs4bqAfVyRuoB6gGqAe6BqgH2csbqAfPzBuoB6a-G6gHmM4b2AcA0ggJCIDhgBAQARgCgAoBsBPu5poF0BMA2BMK\x26sigh\x3dR89dtzBBltg\x26cid\x3dCAASEuRo19fPhTua6JCra9BkV0dqfQ","ew6pW4jMLpeL6gSGwoioCg","CO_KgMqF1N0CFcTIGQod8_AOWg");}if (window.wfocusnhinit) {initWindowFocus();} else {window['google_wf_async'] = initWindowFocus;}</script><iframe title="Blank" scrolling="no" frameborder=0 height=0 width=0 src="https://pagead2.googlesyndication.com/pagead/s/cookie_push.html#aHR0cHM6Ly9waXhlbC5ldmVyZXN0dGVjaC5uZXQvMS9tP3VybD1odHRwcyUzQSUyRiUyRmNtLmcuZG91YmxlY2xpY2submV0JTJGcGl4ZWwlM0Znb29nbGVfbmlkJTNEZXZlcmVzdCUyNmdvb2dsZV9obSUzRF9fRUZHU1VSRkVSX1VTQjY0X18lMjZnb29nbGVfcHVzaCUzREFITkYxM0xaMFVNTHVYWUhzeTdoSzdkd3BiWjRQS09sV1V3bDRDQXpMV1Vqa2NBJmdvb2dsZV9naWQ9Q0FFU0VObjdXcUhSYU9CZGtqRm1zU29VZXlVJmdvb2dsZV9jdmVyPTE=,aHR0cHM6Ly9pZC5ybGNkbi5jb20vNDY2NjA2LmdpZj9jcGFyYW1zPWdvb2dsZV9wdXNoJTNEQUhORjEzTFowVU1MdVhZSHN5N2hLN2R3cGJaNFBLT2xXVXdsNENBekxXVWprY0EmZ29vZ2xlX2dpZD1DQUVTRU52bUM1UXF0UWcwbE8zaHRsVUJzV0kmZ29vZ2xlX2N2ZXI9MQ==,aHR0cHM6Ly9vZHIubW9va2llMS5jb20vdC92Mi9zeW5jP3RhZ2lkPVYyXzQ1MzEmc3JjLnZpc2l0b3JpZD1DQUVTRU1Yb3MzWklESDh3QVhobWllSi0wakUmZ29vZ2xlX3B1c2g9QUhORjEzTFowVU1MdVhZSHN5N2hLN2R3cGJaNFBLT2xXVXdsNENBekxXVWprY0EmZ29vZ2xlX2N2ZXI9MQ==,aHR0cHM6Ly9pbWFnZTYucHVibWF0aWMuY29tL0FkU2VydmVyL1VDb29raWVTZXRQdWc_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,aHR0cHM6Ly9zc3VtLXNlYy5jYXNhbGVtZWRpYS5jb20vdXNlcm1hdGNocmVkaXI_cz0xODQwMjMmY2I9aHR0cHMlM0ElMkYlMkZjbS5nLmRvdWJsZWNsaWNrLm5ldCUyRnBpeGVsJTNGZ29vZ2xlX25pZCUzRGluZGV4JTI2Z29vZ2xlX2htJTNEJmdvb2dsZV9naWQ9Q0FFU0VLWkcybjNxTV81WWJmQzNMaE5Iem13Jmdvb2dsZV9jdmVyPTEmZ29vZ2xlX3B1c2g9QUhORjEzTFowVU1MdVhZSHN5N2hLN2R3cGJaNFBLT2xXVXdsNENBekxXVWprY0E=,aHR0cHM6Ly9hZy5pbm5vdmlkLmNvbS90cms_dGlkPTExNzExJmdvb2dsZV9naWQ9Q0FFU0VJQzZfZ054UFI3ZVpTd0RnNzJxcE5rJmdvb2dsZV9jdmVyPTEmZ29vZ2xlX3B1c2g9QUhORjEzTFowVU1MdVhZSHN5N2hLN2R3cGJaNFBLT2xXVXdsNENBekxXVWprY0E=,aHR0cHM6Ly9jbS5nLmRvdWJsZWNsaWNrLm5ldC9waXhlbC9hdHRyP2Q9QUhORjEzS212R19Cak5LS0VNZjR3MUpjU2xMNzQyUUd1RjcwRjQ4a1czdXhWWU96WlBkdHQ4SmdreDhIMmpkNXhUZ2kwUQ==" style="position:absolute" aria-hidden="true"></iframe><script src="https://tpc.googlesyndication.com/pagead/js/r20180917/r20110914/activeview/osd_listener.js"></script><script type="text/javascript">osdlfm(-1,'','BED3Rew6pW6-hL8SRZ_Phu9AFALb-kMf3BwAAEAE4AcgBCcgDAuAEA6AGTNIIBwiA4YAQEAHCEwYYz5PDxwM','',164548129,true,'ud\x3d1\x26la\x3d0\x26alp\x3dai\x26alh\x3d168851363\x26',3,'CAASEuRo19fPhTua6JCra9BkV0dqfQ','https://pagead2.googlesyndication.com/pcs/activeview?xai\x3dAKAOjss3-tf06InAC8yn5qY98wj6ZBQfFQQaTM4EhxhgfgRKVLI70HDSiVT8rCC6ebYfNIiry1D-o1HHNoJfnQityx4C2kVcjmJHifnsMkMArlK0Xrg\x26sig\x3dCg0ArKJSzN5EubgK0Z0WEAE\x26cid\x3dCAASEuRo19fPhTua6JCra9BkV0dqfQ','');</script><script src="https://tpc.googlesyndication.com/pagead/js/r20180917/r20110914/client/ext/m_qs_click_protection.js"></script><script>googqscp.init([[[[null,500,99,2,8,null,null,null,1]]],null,null,null,null,null,null,null,0]);</script><script>if (window.top && window.top.postMessage) {window.top.postMessage('{"googMsgType":"adpnt"}','*');}</script><div style="display:none" data-google-query-id="CO_KgMqF1N0CFcTIGQod8_AOWg"></div><div style="bottom:0;right:0;width:86px;height:250px;background:initial !important;position:absolute !important;max-width:100% !important;max-height:100% !important;pointer-events:none !important;image-rendering:-moz-crisp-edges !important;z-index:2147483647;background-image:url('data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAACsAAAAWBAMAAACrl3iAAAAABlBMVEUAAAD+AciWmZzWAAAAAnRSTlMAApidrBQAAAB9SURBVBjTbZALDsAwCELxBtz/tJs/cMm6xdT0SSnA/4peyN8dwDp9KwmqSy7BgtXlCZtj7acTvTOisZVHe50sO060mKrXN0TC2m1hrPcEARHzTmnqgwclOFdh3msjDofHacSM+n2nthel0Hcoy5ugMz8JGj2qAvlJcOWLegBUDwWe/EQrrQAAAABJRU5ErkJggg==') !important"></div></body></html>
                                    

#9 JavaScript::Write (size: 6, repeated: 2) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#10 JavaScript::Write (size: 1558, repeated: 1) - SHA256: a85398fd79f32041fa9fcc4455c78d5e68ca1c18615bb11461bf00801fe5b8ee

                                        < a target = "_blank"
href = "https://adclick.g.doubleclick.net/pcs/click?xai=AKAOjst7D_xT-iPVw1JI6eYwbvXSl0u26dQohVLcBG28l8Tx0yqBORotnUMxTyAU4m7M5vtkYLlaoT5rMSOLT8vb5eqso9WFGPuz7dkia9zEfgk33d7zHtEepGv-c3jI6NlQoJWjzcEwFrIWVwCx4AhLHVjiU7U5BGtOhnjvI3u9hBqUSKPfQ1Glx6hXQ7rVtRZeCEhMaPHnzJrlEEIIxkvmssQzUWoWOQJgMBXzg4sYoxHXnDQ80lYICLJOGgTCqvQ-C_2zTndmCfn6EChjbWiXy4hj2sXzO8G6vlgEc9vpU_owfHd3zBfd9eTdJLdvkRHR8x6jAsIsezPou35ojNE31pwz0Tt7JW0z2IoMJDGSySp-brCv2Vk9mfFolV12tvS2VVFwxOj39wu7hF1C02JFBAdnhRSKpyf1FF58-eDLZqVd3BZiEAFI6iYhGlK1uw0y6KrdFB1mV8RcA2o-nqxgDsg3KIFkitT8gsoDEY0005umQL2KpjCqC0d8B4ieaG8zdnqvdX6MpzfiTvU5dm_9q61Xv7QrDZIXWc8RQOzsNwu88Zk2r59Iyc6jtAWoLJtl_aG6QW4rRaQgY_m7BR814ph8nLFRQuIwwodQDHycvR_UdwdZrEPt9IbqdmokQGTap103io12mo3qa-RcQPe37U5jjDWQSM1Aur1JCYiymF17y0lR1HH80PJHLHNGp2IRPfcGLLWe1IONCTLBpE5AhvVzYlCR7D2UhIuTaLCBQsTLM-rtaaI2ZJipSIUM3VaSfUohxeRnmhyNeksawfu3S8XVLmpK_hQ2ejUJ0BQwyFNbmysklKkP7yaJoOMGiK36VTbHSWSS7hhl_C8Co55YxiTefEEEwD4wBmq6eO5fvCiHxldLrHFYuYUj3YiWlxwGVLuLnH-9wcEo9MHsimpHzdteUFPGx92O-Xqcrq54EiBSx_bID8-dvV6tU3V9PLkZMaZKP8tuGwXlDRPoatU&amp;sai=AMfl-YT4ZrgRkeVaZ5iLKMJ3kBmH2VxYdAZTaOkdJ6y9y82vV8LeuIqbUb8Ix57JxdUmERHMPIRPwOxIU5D8YviCiPyKH95MGQqLF-jq_eqYiqaDVgjn1zAtGPaexAzN9ywdMmM4xKJXqiNKzH5ooykZ_4f_Z2-03GaSNFR7WEBE&amp;sig=Cg0ArKJSzOyXHOxxsPIB&amp;urlfix=1&amp;adurl=https://www.komplett.no/kampanje/61279/outlet%3Futm_source%3Ddoubleclick%26utm_medium%3Dbanner%26utm_campaign%3Doutlet%26dclid%3D%25edclid!" > < img src = "https://s0.2mdn.net/4745745/kno_outlet_q218_160x600.jpg"
alt = "Advertisement"
border = "0"
width = "160"
height = "600" > < /a>
                                    

#11 JavaScript::Write (size: 75, repeated: 1) - SHA256: cb6bae3f5b6ef70bac336187e63889b3f0375fa127844615921b656bb6978aa2

                                        < div class = "GoogleActiveViewClass"
id = "DfaVisibilityIdentifier_4002879108" >
                                    

#12 JavaScript::Write (size: 18, repeated: 1) - SHA256: 0304f6f192da1241555759cbd47b6e2f7267f1661188f93500fb12bab9c28a87

                                        < div id = "ad_unit" >
                                    

#13 JavaScript::Write (size: 359, repeated: 1) - SHA256: ea8265590ecc0947ea9d154a570e76068347f639caecef685284eb25b7d0d7cf

                                        < iframe frameborder = "0"
allowtransparency = "true"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
width = "0"
hspace = "0"
vspace = "0"
height = "0"
style = "height:0px;width:0px"
src = "https://ads.pubmatic.com/AdServer/js/showad.js#PIX&kdntuid=1&SPug=true&p=60809&predirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fusersync%3Fpmuservalue%3D&it=0&gdpr=0&np=0" > < /iframe>
                                    

#14 JavaScript::Write (size: 289, repeated: 1) - SHA256: 0e24cd13b3b7f15174e0abd9e7c22cc5d3a730004afe282a2db5d1b3d112dddb

                                        < iframe frameborder = "0"
allowtransparency = "true"
marginheight = "0"
marginwidth = "0"
scrolling = "no"
width = "0"
hspace = "0"
vspace = "0"
height = "0"
style = "height:0px;width:0px;display:none;"
src = "https://router.infolinks.com/dyn/usersync?pmuservalue=758186BB-A0F5-43E9-892F-C64A9EDCBE59" > < /iframe>
                                    

#15 JavaScript::Write (size: 1460, repeated: 1) - SHA256: 9936de0d97f2fe26f9475d03a60c93265ca1149246ff7ebd02dcf1afb3b66ccf

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "680"
height = "60"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&amp;output=html&amp;h=60&amp;slotname=5135608363&amp;adk=2050499449&amp;adf=807048394&amp;w=680&amp;fwrn=4&amp;fwrnh=100&amp;lmt=1537157379&amp;loeid=40993910&amp;rafmt=1&amp;guci=1.2.0.0.2.2.0&amp;format=680x60&amp;url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&amp;ea=0&amp;flash=10.0.45&amp;host=ca-host-pub-1556223355139109&amp;h_ch=L0007&amp;fwr=0&amp;rh=0&amp;rw=680&amp;resp_fmts=3&amp;wgl=0&amp;adsid=NT&amp;dt=1537805943378&amp;bpp=32&amp;fdt=36&amp;idt=301&amp;shv=r20180917&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;correlator=4595379343209&amp;frm=20&amp;pv=2&amp;ga_vid=2029313138.1537805945&amp;ga_sid=1537805945&amp;ga_hid=1452387129&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=98&amp;ady=470&amp;biw=1176&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=40993900%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=528&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=144&amp;bc=1&amp;ifi=1&amp;dtd=1232"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#16 JavaScript::Write (size: 1498, repeated: 1) - SHA256: 85d22090d0ff9c0fd25842271ce1424976280e0e8df4b4f7fb0ced9ea8e3f08e

                                        < iframe id = "google_ads_frame2"
name = "google_ads_frame2"
width = "680"
height = "60"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&amp;output=html&amp;h=60&amp;slotname=5135608363&amp;adk=2050499449&amp;adf=807048394&amp;w=680&amp;fwrn=4&amp;fwrnh=100&amp;lmt=1537157379&amp;loeid=40993910&amp;rafmt=1&amp;guci=1.2.0.0.2.2.0&amp;format=680x60&amp;url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&amp;ea=0&amp;flash=10.0.45&amp;host=ca-host-pub-1556223355139109&amp;h_ch=L0007&amp;fwr=0&amp;rh=0&amp;rw=680&amp;resp_fmts=3&amp;wgl=0&amp;adsid=NT&amp;dt=1537805944771&amp;bpp=47&amp;fdt=53&amp;idt=199&amp;shv=r20180917&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=680x60&amp;correlator=4595379343209&amp;pv_h_ch=L0007&amp;frm=20&amp;pv=1&amp;ga_vid=2029313138.1537805945&amp;ga_sid=1537805945&amp;ga_hid=1452387129&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=98&amp;ady=495&amp;biw=1176&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=40993900%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=528&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=144&amp;bc=1&amp;ifi=2&amp;dtd=225"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#17 JavaScript::Write (size: 1370, repeated: 1) - SHA256: a7c082e691968b407c92073c00dfa0739ba156fd54cc7c5cd16d4421da79c5cb

                                        < iframe id = "google_ads_frame3"
name = "google_ads_frame3"
width = "300"
height = "250"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2049551025914980&amp;output=html&amp;h=250&amp;slotname=2109974555&amp;adk=968151423&amp;adf=807048394&amp;w=300&amp;lmt=1537157379&amp;loeid=40993910&amp;guci=1.2.0.0.2.2.0&amp;format=300x250&amp;url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&amp;ea=0&amp;flash=10.0.45&amp;avail_w=268&amp;wgl=0&amp;adsid=NT&amp;dt=1537805945864&amp;bpp=6&amp;fdt=58&amp;idt=168&amp;shv=r20180917&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=680x60%2C680x60&amp;correlator=4595379343209&amp;frm=20&amp;pv=2&amp;ga_vid=2029313138.1537805945&amp;ga_sid=1537805945&amp;ga_hid=1452387129&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=791&amp;ady=161&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=40993900%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=528&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=3&amp;dtd=187"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#18 JavaScript::Write (size: 1501, repeated: 1) - SHA256: b87716c9c65ee69a0099cdf6116eed88115c9e52ed325513a16c5162ba49e232

                                        < iframe id = "google_ads_frame4"
name = "google_ads_frame4"
width = "268"
height = "600"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&amp;output=html&amp;h=600&amp;slotname=6612341565&amp;adk=164548129&amp;adf=807048394&amp;w=268&amp;fwrn=4&amp;fwrnh=100&amp;lmt=1537157379&amp;loeid=40993910&amp;rafmt=1&amp;guci=1.2.0.0.2.2.0&amp;format=268x600&amp;url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&amp;ea=0&amp;flash=10.0.45&amp;host=ca-host-pub-1556223355139109&amp;h_ch=L0001&amp;fwr=0&amp;rh=0&amp;rw=268&amp;resp_fmts=4&amp;wgl=0&amp;adsid=NT&amp;dt=1537805946059&amp;bpp=8&amp;fdt=61&amp;idt=618&amp;shv=r20180917&amp;cbv=r20180604&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=680x60%2C680x60%2C300x250&amp;correlator=4595379343209&amp;frm=20&amp;pv=1&amp;ga_vid=2029313138.1537805945&amp;ga_sid=1537805945&amp;ga_hid=1452387129&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=791&amp;ady=443&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=40993900%2C21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=528&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=144&amp;bc=1&amp;ifi=4&amp;dtd=704"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#19 JavaScript::Write (size: 359, repeated: 1) - SHA256: 1c50825995bd9d1f26b5b4b91085b1e2828b2acf64f6da14de27e59e5c472478

                                        < iframe src = 'https://a.tribalfusion.com/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzMjYmdGw9MTI5NjAw%26piggybackCookie%3D%24TF_USER_ID_ENC%24&u=${PUBMATIC_UID}'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#20 JavaScript::Write (size: 207, repeated: 1) - SHA256: 64abb324ec7f433d8ea8d9554db8acf3802c1722c40403a292faaf03df684521

                                        < iframe src = 'https://ad.turn.com/r/cs?pid=1&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#21 JavaScript::Write (size: 248, repeated: 1) - SHA256: 3f389b2a67d957b8bc16ed49ca6cc77e9190110c9f1ed690f79dfe170f6742f2

                                        < iframe src = 'https://c1.adform.net/serving/cookie/match?party=14&cid=758186BB-A0F5-43E9-892F-C64A9EDCBE59'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#22 JavaScript::Write (size: 323, repeated: 1) - SHA256: 62d709f9750de58ed524d8e599fdb3ffe060164c89de1f1ed28ea583fa7e1ad3

                                        < iframe src = 'https://d5p.de17a.com/getuid/pubmatic?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI3NDUmdGw9MTI5NjAw&gdpr=0&gdpr_consent=&piggybackCookie=$UID'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#23 JavaScript::Write (size: 344, repeated: 1) - SHA256: 32af06c763e96bdc59eea14feeaf9e2539ac9f54275d840334208687e0c3527b

                                        < iframe src = 'https://match.adsby.bidtheatre.com/pubmaticmatch?redir=https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNjImdGw9MjAxNjA=&piggybackCookie=uid:$UID&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#24 JavaScript::Write (size: 319, repeated: 1) - SHA256: 6293652a293abd4f6f16d11b03e34125de196aaa25e0ae376c8c93a60a79f576

                                        < iframe src = 'https://match.basebanner.com/match?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMxNjAmdGw9MTI5NjAw&piggybackCookie=uid:$UID&excid=23&cijs=0'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#25 JavaScript::Write (size: 229, repeated: 1) - SHA256: 1a7dd2fbeb71f363466cc599a9ff1591bbd2fe5b38feb9377875221a12576dcf

                                        < iframe src = 'https://pixel-sync.sitescout.com/dmp/pixelSync?nid=3&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#26 JavaScript::Write (size: 218, repeated: 1) - SHA256: 08e45e0e4cab9a52d61354a969552f2ba98fe6e2ff9fa97f95b4e6b8ed0b37a2

                                        < iframe src = 'https://pubmatic2waycm-atl.netmng.com/cm/&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#27 JavaScript::Write (size: 188, repeated: 1) - SHA256: 493ccae6e2c53ad9ca0291f5e7ee909a4801621d4fdec3963ceff3308aec5179

                                        < iframe src = 'https://rp.gwallet.com/r1/cm/p41'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#28 JavaScript::Write (size: 350, repeated: 1) - SHA256: 132838834cc683b872c6a0acfbc02f72eebce4a1702b2df8a0ed679b6cfb26e2

                                        < iframe src = 'https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTIxODQmdGw9MTU3NjgwMA==&r=https://pixel.tapad.com/idsync/ex/receive?partner_id=PUBMATIC_RTB&partner_device_id=${PUBMATIC_UID}'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#29 JavaScript::Write (size: 381, repeated: 1) - SHA256: c2c76644bb22c03e03af157190381b175cecd3cdb73121dec41b7e700260f589

                                        < iframe src = 'https://sync-tm.everesttech.net/upi/pid/b9pj45k4?redir=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZqcz0xJmNvZGU9MjE5MSZ0bD0yNTkyMDA%3D%26piggybackCookie%3D%24%7BUSER_ID%7D%26gdpr%3D0%26gdpr_consent%3D'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#30 JavaScript::Write (size: 215, repeated: 1) - SHA256: 1c5db0b93b6b2497f386edb552b2570045d4b08a1dc474556173aeda08dcdc1c

                                        < iframe src = 'https://sync.1rx.io/usersync2/pubmatic&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#31 JavaScript::Write (size: 373, repeated: 1) - SHA256: 64b98d9f2c6a13b923a077f24f1b209191d232e0fe74bfb82178db4c95b8cfbf

                                        < iframe src = 'https://sync.mathtag.com/sync/img?mt_exid=3&gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fsimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%5BMM_UUID%5D'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#32 JavaScript::Write (size: 391, repeated: 1) - SHA256: b9e1da9a2ae0fa71deb101b196d72fb199383d3a748f6a51a9efbeb0092c61e2

                                        < iframe src = 'https://sync.widespace.com/map/ext/api/trackingcallback/v1?accessToken=pubmatic-user-sync&pmUrl=https%3A%2F%2Fsimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZqcz0xJmNvZGU9MzM1NCZ0bD0xMjk2MDA%3D%26piggybackCookie%3D%24UID'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#33 JavaScript::Write (size: 328, repeated: 1) - SHA256: 6b32122766641e96ec9254801da5ce9064cf8146e66c1b59fa3043194807ed08

                                        < iframe src = 'https://um.simpli.fi/pubmatic?https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9ODA2JnRsPTUxODQwMA==&piggybackCookie=uid:$UID&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#34 JavaScript::Write (size: 218, repeated: 1) - SHA256: 98fc3af129675514762bf7f1ece6bf21af5cb6792aa517b4c0b5bec159dd2446

                                        < iframe src = 'https://x.bidswitch.net/sync?ssp=pubmatic&gdpr=0&gdpr_consent='
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#35 JavaScript::Write (size: 265, repeated: 1) - SHA256: 41966853eabbf99acdc55a3b5dc229a99a60aa1ad85c11ab47286858d0e25e00

                                        < iframe src = 'https://x.skimresources.com/?provider_id=758186BB-A0F5-43E9-892F-C64A9EDCBE59&provider=pbin&skim_mapping=true'
width = '0'
height = '0'
frameborder = '0'
vspace = '0'
hspace = '0'
scrolling = 'no'
marginwidth = '0'
marginheight = '0'
allowtransparency = 'true' > < /iframe>
                                    

#36 JavaScript::Write (size: 257, repeated: 1) - SHA256: 3860c5a05a2aacf070bb75981a93314a539eb078d85b357576c7aa3ab0c14408

                                        < img width = '0'
height = '0'
src = 'https://c1.adform.net/serving/cookie/match?party=14&redirect=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTI4NzUmdGw9NDMyMDA=&piggybackCookie=[PLACE YOUR PIGGYBACK COOKIES HERE]&gdpr=0&gdpr_consent=' / >
                                    

#37 JavaScript::Write (size: 136, repeated: 1) - SHA256: 8e0de31989bdc4393846025a3008c34104ef26dd72d2f47fd028fa47b82846f2

                                        < img width = '0'
height = '0'
src = 'https://cm.g.doubleclick.net/pixel?google_nid=pmeb&google_sc=1&google_hm=dYGGu6D1Q-mJL8ZKnty-WQ%3D%3D' / >
                                    

#38 JavaScript::Write (size: 109, repeated: 1) - SHA256: 3e666352f44744bbf9faa7b42fea91dfcd19242e6ee19285f265397bc7762a60

                                        < img width = '0'
height = '0'
src = 'https://cm.g.doubleclick.net/pixel?google_nid=pubmatic&google_cm&google_sc' / >
                                    

#39 JavaScript::Write (size: 192, repeated: 1) - SHA256: 3f73ffac83daeb0525ee025ac65eb00eed382972c31ff9dca3d37547cc52d426

                                        < img width = '0'
height = '0'
src = 'https://ib.adnxs.com/getuid?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTc4JnRsPTE1NzY4MDA=&piggybackCookie=$UID&gdpr=0&gdpr_consent=' / >
                                    

#40 JavaScript::Write (size: 125, repeated: 1) - SHA256: 7759c2340a96c0cb78967af67dba1dde7f389a572201a66abffb0347f8e39219

                                        < img width = '0'
height = '0'
src = 'https://match.adsrvr.org/track/cmf/generic?ttd_pid=pubmatic&ttd_tpi=1&gdpr=0&gdpr_consent=' / >
                                    

#41 JavaScript::Write (size: 229, repeated: 1) - SHA256: 38b7c6c63d91a0c1ac045dd93d0b038f043bdf1796ce3dab6437e9b5ed034e3e

                                        < img width = '0'
height = '0'
src = 'https://p.rfihub.com/cm?in=1&pub=224&getuid=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTI3MzkmdGw9MTI5NjAw%26piggybackCookie%3D%24UID%26gdpr%3D0%26gdpr_consent%3D' / >
                                    

#42 JavaScript::Write (size: 120, repeated: 1) - SHA256: faeac454fedbe6d0a93fab60cf35df927fcf3e4322782f1adea4484692c70577

                                        < img width = '0'
height = '0'
src = 'https://pixel.quantserve.com/pixel/p-5aWVS_roA1dVM.gif?idmatch=0&gdpr=0&gdpr_consent=' / >
                                    

#43 JavaScript::Write (size: 229, repeated: 1) - SHA256: 00889120fb6b42191958677079db1e46f47efb5d4328a93843e3979655876f63

                                        < img width = '0'
height = '0'
src = 'https://pm.w55c.net/ping_match.gif?ei=PUBMATIC&rurl=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMwNzQmdGw9MTI5NjAw&piggybackCookie=uid:_wfivefivec_&gdpr=0&gdpr_consent=' / >
                                    

#44 JavaScript::Write (size: 178, repeated: 1) - SHA256: f7b1d202abbacb89a5966acd2f6ddd88014c2b942fe7173c559e54637a75d4c9

                                        < img width = '0'
height = '0'
src = 'https://pubmatic-match.dotomi.com/match/bounce/current?networkId=17100&version=1&nuid=758186BB-A0F5-43E9-892F-C64A9EDCBE59&gdpr=0&gdpr_consent=' / >
                                    

#45 JavaScript::Write (size: 220, repeated: 1) - SHA256: 27ce81eae7f51b7f294074913ccfdf173bc67762ed754b5f681e42bd6d28d11c

                                        < img width = '0'
height = '0'
src = 'https://rtb.gumgum.com/getuid/d1ba4609?gdpr=0&gdpr_consent=&r=https%3A%2F%2Fsimage2.pubmatic.com%2FAdServer%2FPug%3Fvcode%3Dbz0yJnR5cGU9MSZjb2RlPTMzNDImdGw9MTI5NjAw%26piggybackCookie%3D' / >
                                    

#46 JavaScript::Write (size: 236, repeated: 1) - SHA256: b81fb9a46320c3903b0415848ce13b52701011cd8637e7085913552d755f97a9

                                        < img width = '0'
height = '0'
src = 'https://sync.ipredictive.com/d/sync/cookie/generic?https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJmNvZGU9MzI1MCZ0bD0xMjk2MDA=&piggybackCookie=${ADELPHIC_CUID}&gdpr=0&gdpr_consent=' / >
                                    

#47 JavaScript::Write (size: 182, repeated: 1) - SHA256: a2cab6c3efa3e144161da1824dbed42f5a078c3a9dc64a01e069094e8dd4b48d

                                        < img width = '0'
height = '0'
src = 'https://sync.mathtag.com/sync/img?mt_exid=3&redir=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3FpartnerID%3D27%26partnerUID%3D%5BMM_UUID%5D' / >
                                    

#48 JavaScript::Write (size: 2934, repeated: 1) - SHA256: 12f7b0b1748a722c06f8672b66d0f3ffbfbda0acf5e4ddc452917d0b40343d19

                                        < script src = "https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-Auee_CGY3r7hxwiUXIPH2rPBIH0IR9bEctFFaOM5U0iFG8NC5LWMOMMPK0OKANViaLswqD&dbm_d=AKAmf-DcyFOY7envWnaKCNPhvOMdI-BFS1GAyoBDXjsOmjIOIOczxOUw2llrcmOhQG9Eb1DB5oQCV8YH_RlPy_m-wgG0rXBbUgplAkSFg077gQ4E7OCB8z0uVJtiQsDy5mXLW1x0rQboi6Hk193JdGm6ujNT7gO9hND8MN0hsvV_4TdSfcaqNV80F4MZyfBVgE6j9uwMEDPBgFWCuAiI5gzxj0wmU54b_J4kL2cxq2IUPgF8NkQKvnbl5jP0an_SSTdnOphq7NNosljh7NTdkWARYbb0xVK5Qm8Jkge4wz2zeu9Dsfaowyra5z5lwfAq0Y11uET7Rg0fJey35iiClc0l9dePd9k4nPd2dEyGp2m6WC71hGnXowdyFJ2fePSCvT3AHMv-Bx4GuiGXiYJ-qF_12TdhhSy0vvr0auW2EOJLRHst7kk1rTI9J-381YI9m339Ry_lEvQAUwKcnJPclIHwE_zQ-pJK43gRwYDIeV7a85RtQAOmzcixKfWRzboeQEEbr94foL-UaNWba0_92biqOdCo-MblNmQJAqTzZZ5blmqP1GqdvK0Kcr-JXCPr-fLbSYHcIaWVcIYgc8BRrZsPh65GenqcTbKdJ5F35OenLJOawD_WDhrnm0EBwn82G5wdIQAwVdYVd_7FM7DkW5UsIDsOK1azywPdRUAtgy4Kl95ToC39hKz_W0hBcXtXSW8_Ml-zc6gSoewluBtms4UbBh8JyvftbAI85jcl8ehF4kCX7onQENtVFFJHxHTFqC9HpRLetfLkycqDzao7MCaP7NmF5g7aY6Pz2zoBL9yMW61iaoTr724__noXTqk0NLbWHxxYnToGYRquW6BqQJ-vFCv8QEuJDu6s5anhjWZOZCBiUOco5c78YNLRXTsqIQ_483P-c7i9uvgG14olq9wfd1gnxEHteHn7APdC3t6sxJwnqrzyePVl4hloNd2KGa_UkRcLH7nQushwb--toCGHX-XmHMJiA30awEZv-2vmEsMbWT3QgAxpPo6i17gfDCGvORte8YZUJ29308AAFLPxSRdJ30fGRwfvsQbo_0VS_GM5OoWNq23H84SOu5DdufDb0HXLErWVzCak7oH6HGH0jGfkqUxwv-5g3Fp8pGEmRwRyznnW36c0m2KcqbLBwKTmVZhNhrlp5FQqXocedvNNWVpnsvsn-fRJe_ysGb_04rlfUU_drRLtFTmH6uuerAaga9RFPU50QpEBZxIWPiYyOLiaTULiMnRDKCjuf3cLo7dq_rkhh3rDflUOjNBHRBLGAAASV-v0rfOCf6wNkHPaE5qBaMiF06GXKts6t2UdouOYKKe6nBVo4Tc1i9kf8P7kypT1BBieiVKHO7CNMobr9Mvp2-X1L2M3WgrYKlDzX8LBeJQipzvH7RnVG7VQUFhwuCYvO4DBBWaZ-XtXylVu-4Zw4Wnrnv7M-YPLmchm96tCqgW3iYqgl9QXl6TBAmF_gqb_mlcWgHnpdtEM1u58fGbYzYyoUpQVauaUBPfloZnq1oVzRoWSJZ8A0Fr-maMhxkNugrCmcG7-5HjbK3zLGcENWKwrtPOhT_d9UbmpuqblKwLYBDSLAFuTXDtCHTiGMIBiX9wSuWRQXffS4NIxKebvRCYllHpWqiMBF5qJvMGmUOV7_YkG-0BT_GjcBzKa2B4BsL4rDaYKGscRoSxsKA6S1yixr_39W8PBbstJrxlYKH9iTZcPDSDsG483xi3Pmyu-D6lB8JjHygxCqaFH9rQwEwgXI9c6WzPWfRRgOgVmQFSLCfSeyNtek-rK1k56p0qd6up3xiOXTynCq3myrteFPfLBForEoe62jrO-fehV2gSHgI9nChRCLgGB-Ezczzi1O-v-QofceAhfVW1sb8F2M9Ez076fQlASBS8rMSe8rzgZR_sfJjG-zXmjs4AcGfbCA2oiKOtudev8ZL3Dn02MtFmH40Zzg9gmqKsFLwjCVhLP6j6-EGaz7E3bq6jRD-3BZ4DgebJqRRsgsEVlRj7EAf-JWAuFwZxLahYopfDcEueBZXJILfzt3yielVSu7Y8SwYoHxjpuKDhb_1tnekwfJhfPKRsCixLW0GUswvUHCIY1HwKXIJVhOHJIZ7iMjwNG_yDfQ3LXic05xHExCLyRWM4_fIk8jTFvj49P9hnD-N8644FjtGkJYauRCMah-sVYrMF9lWMc0fQy2gBTsv6vFkz8fLe3gR7zLIMKXML3a6n605OXfH6vfYUvhC129uXjDgLXWG_R_W2mzZ6WOCnduo2UqZqJ0oCF_mVSyBpXTmqCILWsxASZkXSP-kRv2Bk1l_gf7CnGPYYbYNJnOC_LRXpLCdPGxCJwCzNstX0B0tBafKa9xGjZlqvefTwkJheG61VkN6c-yknAcr78wDsQgpcADqgFRTmtyV6riD_tKoHa3a-mwM1KKPro8fdbSqYwWkds_kUPzxs1exguAaCe4CL3M_MrdgitPfd22iomRYWCZpnYnpBMeyNDIfamKgKyoesqQ-oXe4UJk2Rkh0lJSQEKeZTDsuyT4p_keRhumeB00T_xGMmmOtD84dFrEQghkjvqZ2fjoRQTgacEMrinPSK1bJa-jmMXvKfn8hX6DKr2A3CylVKFOowm-viY95Io2gR7sZfoD1AYoz4uVooYZ4mjho9mg_vXipSw9qSKveS1MBv3Bs8lN4mxeDuT5GyXM4xUlAezckB4cDmAAChmDYt0Y7AqkHL0ztBw04O5EIN4yFE&cid=CAASEuRoOXbLnCwA4KzZISiEphDZ9Q" > < /script>
                                    

#49 JavaScript::Write (size: 2955, repeated: 1) - SHA256: 9c8d91a37f3c4c3a1e294d73ed860f628343c18a02333b496f0d8db1137757d9

                                        < script src = "https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BZsaMs64ZDSRawnJk71XMR23t_5ORUsjRdQSf2_t2oa-aM-Paic3CnAUhJ5RKPrxkCpN0u&dbm_d=AKAmf-Dq2S-mbBexc3XDMRs4lTCW7UejjFWv1u4AgAx8En6GaT6QYW1nIJZNuFvF1ab4vDNhB4fbb7Ye-MKR_HGeu5zN8bMY_7R7jaXCwoHlyiJuS024L1-ROkDF0mslDkAo4EUaffe939YILKITCynQSeonPaY9MY5kURReNbJv31aMtQdABPaPpGCzOclqmErqOEjcLfGIZAC4mi9eUDz78WrClBJmrPukM--C0flTBZtep9Yu3zaEdbl1Jl9Oh_A1jzzghtHX1TdGAlOh-tEk5e6DL32QTKoc7u0XrJV6LEFPpfAaQaMzcOsn6ZXDsEUHrCNeFliemKaXz6eFw51pBW_dd7hsSBg-8yU29cPr_RSQYg-zHrdqgCc61-rVrt8CpVqytqnNBhsUnmF0ubmYrZQCWKz1c0BN6ryA5PLR5BME8-erBHzXAWSzh3ZxzUjshRqY_ljV194slXNntOy3xpQO_LJxb5WaiFQ2w3Epo8yxeukgocrGsyfkis3Qly5reSQDS7x6YVWNQfiM6iq8-TmgAU_WKe2KZ5KIsg2AWqJ3uJ01_7ugcfTL3hwz30h0xMoT3HrYod-1avUM3E3GS5dB_KwWm-dxiFLrc12TnrZjOIy64MtjkLTxV1lZZ4wa83Dqyoa47yitSn7b_bVDCeTp1K3ekpa5kgICpLwrB7lFg_1XkacMRZYMfEpghATdtp1JLDEUpmhEez1TAAS93TQR0xHt-DWOZoLqeqzRLJw70aSRzddWcEGDNlKq9c2yiKPR_nsvP3ccrwQrK5emipWpdaenoPtI5RrBz_eAoGvMbf_uKSU2T1019i3Nb5ypwQRX978VgvO976UBtx7lsNl8AZR8SOuWFGBwGuwoa690IHCTLmMRGhMI4QPWhzojDkkVMaBHFY1T0XP-c1RLaQdybm-xsQui9mktfXpJwns6KAchrhaRUCUQCBo0OVbTSRTCj5f6cpxg-2XdePnqx9BmnoyA5omLnm0YBqvjcWojC7RVpsjX-zTJmjyvZMu7pEco_DSW2HUmsn54hGZJ3J0i9Lh18i3H8wfErds75pWej9rNB-TD7-JPKvqLgyRbigcFxFAqm1faILD7afKlgvBsVnHsPghTpzhb83OMnwu7-h2gjB9wpTreT66TKE7kTsrNSVL-5oSp2NZqw1hJRrzwShQ9QbKZHyE66jR--gyNSDgV5SA0FhoDnTyJDYLuFWQD0j-7XwqR7P-zzQgErIifCa5Ltp5HXxT7v0W4oU9O3vuPjSmVR-Ou0S-daxIJ0v-EgHPXQKIUffoAS4hxv7I-lQOw-Qey6ozMXsCl9cuUmlkZRZ_X8WvOaQGR_v62D6m9op0KLDvbs8UzzF8Tf7foEPzKrl42acZe-EBj3id6E99SocYphYg2ziiTGNPOovfdw9XICT4TwiJvmewbGN1C4zLgV2NPEOMLHTyb0Eu3ED5TP4fS8xEuprHuXaADsHt15YlDHaGCBqKrw-z0xvX6pXVWvNbWz4SX8ka4-xW2CFyxOfQWiKOHfojWvyEt-eXGkdWcxqn_B-IHfJ-3-hOXQ_6kf8hbc6eygWcoU3cjpVtV4zNyothaV61twz4qv5EQPxYXUtsTdscqludlfXhsf9mCAgb5zd2UigpP52LoEfslGxtz6SMjodGCa9MmSDDVFxYA8W4CHmXISZJi-xo696pVOevWX9Ge6zE8JWm1JFU7KVvG4x0VNm7Oa-29yJqASZhh8BfRMMHcqEXGuhDOjhFrO90jn_4rqvUYQfkv0RMmbA_L5D-dWgmWuLp0kTzjYBOkQQ7m6QDSiDqaLkyDR-B1bEzLPn7MYDeinrhkxaZ2IJqErR4CwTf750Z7FbZ-2y7UDuP_Y7KZx7T9p45GkljpdSEPFOn2_vQvlbijNRGtsZGiHMum1ZkXfu66Tgd7PjHwOcRt5ZGQHJq8tvZPOCGSiMzRRrH5DOfFoXhkEY_Y_mmKt2ICV_oXG4qprHVk14--t7atYljxKgH5NYUmZGXWH--HjuiTLII5pAPUDnsucsDpuvd97-oMltfrXFkHxUWMl30y6QjJFk-HJbRy5xJgwZLttYwHDyFigY_3BPJw8Zy_bNugwzIMH-nku_6hTyFt8a4GEJMj2uq1HJR3vVmuRBqbFO7rlwYCHXX2_z9lqLMsS4vWvh8afPxjyjG7UVMR2gKGxdbIhPgWOr2xOPTpHGteE-7UhLEgT4UBhIXOODc5j-EgXe1b6h0thNVQpTtqJj_zxRqcTCvvU8_hCahkrhjbcqoEs-rOvcPPYk47WXSaYHUrmZF2HNO-Pey1kvMfK-1URXZJKL8tWHtlI3jIONQjIDTzD4HwfaFFwT4X-_ZVlW30wh8v9tlhVFFrmP_QjjYuuTczZljKXrrh_dZCQC80LnA-HvlwMyHU1Wij2kU50Uw_bd8G6-D8mk5NTfreNrm5VqV2GuSFBu-_XY0D36Y7GimUjb-D8Lty2-KDyuEmMwtgDQGvJ93m6vwVUCeUopUja9TY75mswW3uBWoAa0RGWS6H7md4VD_tcchJ6Q3fCoLWIdwWpGKguCBCtQdoAD9KG-tCkDzHoRgVC4pgHMdaMRGRMEVOrC975OGjTvGEt9jgBBezXBN0BrpcS-F87eY024AkPnuQAXL3P26q695WRcayewQRf60l8w0--xLdMYe3_ozNwluE2S3PfkYfD93_48a5CBeUl_hF7gaqbSiHFfYqIjvOxEW8RWgZIVOP2bbOPzsYlqv23iLdVSTX&cid=CAASEuRo19fPhTua6JCra9BkV0dqfQ" > < /script>
                                    

#50 JavaScript::Write (size: 200, repeated: 1) - SHA256: 4dc483613b96f9e0cdf592465b3c441babbd10f67091efcfd962b69dea8fb0c9

                                        < script type = "text/javascript"
src = "https://image6.pubmatic.com/AdServer/PugMaster?rnd=80514791&p=60809&s=0&a=0&ptask=ALL&np=0&fp=0&mpc=0&spug=1&coppa=0&gdpr=0&gdpr_consent=&sec=1&kdntuid=1" > < /script>
                                    

#51 JavaScript::Write (size: 91, repeated: 1) - SHA256: 08264d20c7124b97b55c83a99016d3e0ff3d3df30f9e31ddddd36a0625ac3c26

                                        < script type = 'text/javascript'
src = 'http://360adshost.com/js/show_ads__360ads.js' > < /script>
                                    

#52 JavaScript::Write (size: 4453, repeated: 1) - SHA256: d058364273db028a219d6dbde72a08cd221af7e522974b358478cd9bd934cb75

                                        < style > div {
        margin: 0;padding: 0;
    }.abgc {
        display: block;height: 15 px;position: absolute;right: 1 px;top: 1 px;text - rendering: geometricPrecision;z - index: 2147483646;
    }.abgb {
        height: 15 px;
    }.abgc, .jar.abgc, .jar.cbb {
        opacity: 1;
    }.abgs {
        display: none;height: 100 % ;
    }.abgl {
        text - decoration: none;
    } < /style><div id="abgc" class="abgc" dir="ltr" aria-hidden="true"><div id="abgb" class="abgb"><a href="https:/ / adssettings.google.com / whythisad ? reasons = AB3afGEAAAFZW1tbW251bGwsWzldXSxbbnVsbCxudWxsLFtudWxsLG51bGwsbnVsbCwiaHR0cHM6Ly9kaXNwbGF5YWRzLWZvcm1hdHMuZ29vZ2xldXNlcmNvbnRlbnQuY29tL2Fkcy9wcmV2aWV3L2NvbnRlbnQuanM_Y2xpZW50PXd0YVx1MDAyNm9iZnVzY2F0ZWRDdXN0b21lcklkPTQxMzc5OTMwODlcdTAwMjZjcmVhdGl2ZUlkPTI2OTM5NTc0OTI0Mlx1MDAyNnZlcnNpb25JZD0wXHUwMDI2YWRHcm91cENyZWF0aXZlSWQ9MjcyNjExMTYzOTU4XHUwMDI2aHRtbFBhcmVudElkPXByZXYtMFx1MDAyNmhlaWdodD0wXHUwMDI2d2lkdGg9MFx1MDAyNnNpZz1BQ2lWQl95Mmp6b0pPeV95M21qZnhETDE0R1VncEhZNXh3Il1dXV1dGg3PuxLIvbcewbJs30kVzjWQ9Xhsn8RvqCId50L6QTZ - Lo6Hz0h63cQKvVK0QTYzHFEZkqtLjegcfYNXbKhG6Xk0IwYevJXE8z6isW1wBMk92yN2f5PQKOrlYgFvOcjzbtxxaACctPEkL6S3KRrxqOBPNE_l4LkO3UXlubyH - 1 xcPsgQJwai5qTv6OqpA - gwAnaiKZ7I245ECJ8Zpq5l9xUxhA8Kpfw_Q4OYTUlmoXtWhMtwzQqkKFjdasGn8RSvhUsIr2Eaw4C1TgyDASftpaCsyVBH8SuuO9Apa1g2cr5r_aM1rEyjZXFBT9luX8reubUtBt8 - FuPyDuWGxkP57w, tb8asurz5HOl__8E8whluA & source = display & cbt = EmUfme1CQwgItv6Qx_cHEO7NxtwFGInVqzciC2tvbXBsZXR0Lm5vMggIBRMYrMYBFEIXY2EtcHViLTM4OTAyMDc2MDE1Njk0OTVIGVgAcAE & cv = https : //googleads.g.doubleclick.net/pagead/conversion/%3Fai%3DC_Lzdew6pW6-hL8SRZ_Phu9AF3da_mFO2_pDH9wfwLhABIJWLxiJgw9ykhZgYoAHPk8PHA8gBCakCg80XrUh7gD6oAwHIAwKqBMoBT9CSSQ8D_86K3p8suzvif--_k7b-eJeTC9p9s6hGo3rpikHwVdoqasvIxpn45D1A6JWjLcBCyRuB98DMNZE8viuqLFl25pbqqCvgF-3OOdrbzTqYR_s21NeGBvpPWJOJ13dn2E74YiEKSXMvvRRmMI4H3lue3phHant7XaMy-xoowmUMfP6z8NLpEm-LwO0OVA47bHPguTJRTsQMg-FsS6uai5rYHhv5T5OmqjBOq0dQFnq8D_uvqSh0qCnAOYw9IdI2ffL2N4erMuAEA5AGAaAGTIAHmey8OKgHjs4bqAfVyRuoB6gGqAe6BqgH2csbqAfPzBuoB6a-G6gHmM4b2AcA0ggJCIDhgBAQARgCgAoBsBPu5poF0BMA2BMK%26sigh%3DR89dtzBBltg%26cid%3DCAASEuRo19fPhTua6JCra9BkV0dqfQ" target="_blank"><img src="/pagead/images/adchoices/icon.png" alt=""></a></div><div id="abgs" class="abgs"><a id="abgl" class="abgl" href="https://adssettings.google.com/whythisad?reasons=AB3afGEAAAFZW1tbW251bGwsWzldXSxbbnVsbCxudWxsLFtudWxsLG51bGwsbnVsbCwiaHR0cHM6Ly9kaXNwbGF5YWRzLWZvcm1hdHMuZ29vZ2xldXNlcmNvbnRlbnQuY29tL2Fkcy9wcmV2aWV3L2NvbnRlbnQuanM_Y2xpZW50PXd0YVx1MDAyNm9iZnVzY2F0ZWRDdXN0b21lcklkPTQxMzc5OTMwODlcdTAwMjZjcmVhdGl2ZUlkPTI2OTM5NTc0OTI0Mlx1MDAyNnZlcnNpb25JZD0wXHUwMDI2YWRHcm91cENyZWF0aXZlSWQ9MjcyNjExMTYzOTU4XHUwMDI2aHRtbFBhcmVudElkPXByZXYtMFx1MDAyNmhlaWdodD0wXHUwMDI2d2lkdGg9MFx1MDAyNnNpZz1BQ2lWQl95Mmp6b0pPeV95M21qZnhETDE0R1VncEhZNXh3Il1dXV1dGg3PuxLIvbcewbJs30kVzjWQ9Xhsn8RvqCId50L6QTZ-Lo6Hz0h63cQKvVK0QTYzHFEZkqtLjegcfYNXbKhG6Xk0IwYevJXE8z6isW1wBMk92yN2f5PQKOrlYgFvOcjzbtxxaACctPEkL6S3KRrxqOBPNE_l4LkO3UXlubyH-1xcPsgQJwai5qTv6OqpA-gwAnaiKZ7I245ECJ8Zpq5l9xUxhA8Kpfw_Q4OYTUlmoXtWhMtwzQqkKFjdasGn8RSvhUsIr2Eaw4C1TgyDASftpaCsyVBH8SuuO9Apa1g2cr5r_aM1rEyjZXFBT9luX8reubUtBt8-FuPyDuWGxkP57w,tb8asurz5HOl__8E8whluA&amp;source=display&amp;cbt=EmUfme1CQwgItv6Qx_cHEO7NxtwFGInVqzciC2tvbXBsZXR0Lm5vMggIBRMYrMYBFEIXY2EtcHViLTM4OTAyMDc2MDE1Njk0OTVIGVgAcAE&amp;cv=https://googleads.g.doubleclick.net/pagead/conversion/%3Fai%3DC_Lzdew6pW6-hL8SRZ_Phu9AF3da_mFO2_pDH9wfwLhABIJWLxiJgw9ykhZgYoAHPk8PHA8gBCakCg80XrUh7gD6oAwHIAwKqBMoBT9CSSQ8D_86K3p8suzvif--_k7b-eJeTC9p9s6hGo3rpikHwVdoqasvIxpn45D1A6JWjLcBCyRuB98DMNZE8viuqLFl25pbqqCvgF-3OOdrbzTqYR_s21NeGBvpPWJOJ13dn2E74YiEKSXMvvRRmMI4H3lue3phHant7XaMy-xoowmUMfP6z8NLpEm-LwO0OVA47bHPguTJRTsQMg-FsS6uai5rYHhv5T5OmqjBOq0dQFnq8D_uvqSh0qCnAOYw9IdI2ffL2N4erMuAEA5AGAaAGTIAHmey8OKgHjs4bqAfVyRuoB6gGqAe6BqgH2csbqAfPzBuoB6a-G6gHmM4b2AcA0ggJCIDhgBAQARgCgAoBsBPu5poF0BMA2BMK%26sigh%3DR89dtzBBltg%26cid%3DCAASEuRo19fPhTua6JCra9BkV0dqfQ" target="_blank"></a></div></div><script>document.write('\n\x3cscript\x3evar abgp={imi:false,hw:15,sw:75,hh:15,sh:15,himg:\'https://pagead2.googlesyndication.com\'+\'/pagead/images/adchoices/icon.png\',simg:\'https://pagead2.googlesyndication.com\'+\'/pagead/images/adchoices/en.png\',alt:\'AdChoices\',t:\'AdChoices\',tw:53,t2:\'\',t2w:0,tbo:0,att:\'adchoices\',ff:\'\',halign:\'right\',fe:false,iba:false,lttp:false,ci:\'\',nc:1,ufdj:undefined,opi:false,opai:false,ti:false,mob:false,eaca:false,eda:false,fdda:false,eisa:true,ulf:true,swc:true,aeol:false};\x3c/script\x3e');</script><script src="https://pagead2.googlesyndication.com/pagead/js/r20180917/r20110914/abg_lite.js"></script>
                                    


HTTP Transactions (192)


Request Response
                                        
                                            GET /2013/07 HTTP/1.1 
Host: wonderarticles.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Mon, 24 Sep 2018 16:19:01 GMT
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 17 Sep 2018 04:09:39 GMT
Etag: W/"82827f6f1d42612d594949527e2fa1d9051c990b1605a2482084285958df1325"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 35183
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   35183
Md5:    8b54a584cfe06ee8a9c697ef83c365f0
Sha1:   df5483046ebd4fa791d5ffdd0da6b7177dd31b14
Sha256: 57d3b6fc096bc4e66c65a5e36e3053afe874bf92740b9d24c310fa4824a4e8fd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Bitter%7CBitter%7CDroid+Sans%7CDroid+Sans%7CPT+Sans+Narrow HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:01 GMT
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   313
Md5:    34bd8ad9e31c378dacd479facf235dde
Sha1:   c9aae8bae5d0629786f7437d812b61aa23de79d4
Sha256: c24b4a869bbbd1ee92f0735e93cf1bf49223c52f63b72616f1c968b52a8ca3e3
                                        
                                            GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30082
Date: Tue, 28 Aug 2018 20:14:56 GMT
Expires: Wed, 28 Aug 2019 20:14:56 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 2318645


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30082
Md5:    527e11b47b91801e56dde6882c43ba0c
Sha1:   b579e2c0a5f0a672ba9ef3d544ee456d82d2fc6c
Sha256: b343d35ff930dbfbe7450e5c9fe88f002dc97eaabd460f6e288e484fce7b7319
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    7cd3dfef1fa1f018804628a4ede861b3
Sha1:   bbc00bee8e7b4ef0ce0e5f450575533825c1b8b5
Sha256: 6c0909363c5b49ba7aeda6ab72e32a474037b38a8df41ca02374921d9b387a6a
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 24 Sep 2018 16:19:01 GMT
Expires: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: private, max-age=3600
Etag: 2510086366390866903
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 27516
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   27516
Md5:    f6f60cf08adf70ccc27c8e78b47ed311
Sha1:   06912e9494c96644bd3eeed4d2bd2f6c3684efbd
Sha256: 3ac74b2446e79d394192888fda6018f52bf45328e7a5196e471f19b693d416b8
                                        
                                            GET /-Na-r5EGG-60/UfS1imhviQI/AAAAAAAAARM/5Y-d4bEP6rA/s72-c/onlypkcan.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v114"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="onlypkcan.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 7924
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   7924
Md5:    d86574fc8cd47e4e1c890fc34b036be2
Sha1:   7449ed8f7332d33cdf465d9fad048bcda18e74a7
Sha256: 8d9be277c0b193547c13ec85ea572cf80e01cc33e7e48a1e20e6d8acb5adb5b5
                                        
                                            GET /-8vW4EUndcDU/Ue4LloS6XGI/AAAAAAAAAP4/ZhNbdM2n7dM/s72-c/how+arab.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vff"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="how arab.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 9251
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   9251
Md5:    3dff2cbf8f5b8105f769ed89d6773c30
Sha1:   a1347d23ea3a899baee03aa1a7e82344c05ae96d
Sha256: 05cbf65dfd12961daae6d7e73ee4c232763e20647bc7d1b427e2b9af7d531248
                                        
                                            GET /-N8aEj9jdKGY/UfY5hs3U7iI/AAAAAAAAASA/PfjGHwEqRlw/s72-c/nexmo1.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v121"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nexmo1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 6053
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   6053
Md5:    a883db6e313e0ddfa40c1dadfde97379
Sha1:   94e37ce1ace7271a36755332fe213cbe551f5939
Sha256: 688b1cd1dbcf7ffa2b46fc4ed66925cb212e2e107de9aa5e72d0513b719d8b02
                                        
                                            GET /-BRQTr55sIOE/UfUn_aWKseI/AAAAAAAAARw/XhO6cI0ZSq4/s72-c/corel+dea.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v11d"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="corel dea.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 4439
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4439
Md5:    6f82aec26398a8aafe91a9163d83d2b3
Sha1:   8e77eb6c67b22d12f125fcc320474d794caf9702
Sha256: 75c245e492123978ffca12b80d716d9de74290aaaf94f564a149d11b93839e29
                                        
                                            GET /-9pzPNoLd4LI/UfUlChQhBKI/AAAAAAAAARg/pMpxpVbsfaQ/s72-c/Adobe_Photoshop-urdu-cores.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v119"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Adobe_Photoshop-urdu-cores.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 3464
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3464
Md5:    f538d7a0f01e5b08b78ef63376e0ed26
Sha1:   4c50fc94c0e9f9ead2307aed22cfd3dacd2c7ed8
Sha256: 5f8f1070287b000b577183f515cb8d44f093f230597d96d0e13573ce5a1d8649
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /-5L0BGSVFJ5I/UfPwtlF1s4I/AAAAAAAAAQo/h2fjxcg2NcA/s72-c/safridi.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v10b"
Expires: Tue, 25 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="safridi.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:01 GMT
Server: fife
Content-Length: 4756
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   4756
Md5:    b4093d4a4a56c4363afa0d972cc34b52
Sha1:   022cf7fd2c0d6a1d4c96b385e9d4f044e2ae55ff
Sha256: eb94392293515e1a26a56df71e8bc04d641a4394283689c72ae88d3803dc7bd6
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: wonderarticles.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Mon, 24 Sep 2018 16:19:01 GMT
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 17 Sep 2018 04:09:39 GMT
Etag: W/"82827f6f1d42612d594949527e2fa1d9051c990b1605a2482084285958df1325"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 702
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   702
Md5:    e8e813e47f28f8ebcaa52a1574efb813
Sha1:   1b03eb1663cc567301993185d23c9f83188375f4
Sha256: 77e5c6627ac020fb04cf7a76bb8bb17926004c93ee73990e1e18c57c8cf376fb
                                        
                                            GET /static/v1/widgets/254310735-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7524
Date: Mon, 10 Sep 2018 01:36:12 GMT
Expires: Tue, 10 Sep 2019 01:36:12 GMT
Last-Modified: Mon, 10 Sep 2018 00:06:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1262569
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7524
Md5:    5edaca0b90aa2022a9f8cdbdc49e6f4a
Sha1:   42fecf342d6ff79b5f8e206eecb6d54a513188af
Sha256: a8232fd6d263c26f195cb04abf7e127dd3829a510070baf64264314bb47da932
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    a17542a291320818b0780f05487edea5
Sha1:   48b93004c8254bcf0629c03a617db2ab2ce037e8
Sha256: 83fa9801f0a516d38767047611821e33a1a0a7280680436689b8bc0fa9bc8018
                                        
                                            GET /img/icon18_edit_allbkg.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Content-Length: 162
Date: Thu, 20 Sep 2018 21:02:51 GMT
Expires: Thu, 27 Sep 2018 21:02:51 GMT
Last-Modified: Wed, 19 Sep 2018 19:46:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 328570
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 18 x 18
Size:   162
Md5:    c991641178ff05adf0d004298b5eafa9
Sha1:   d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
Sha256: ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    f9acad5af37cfc4d7deba22cd7a2a6dc
Sha1:   c0379ccc13393e7a81774fa938fd3c3f55487fad
Sha256: 8015778047c407073ed59077f1309ab7160b2188511e6ccf6c5d2faf6e5cf46f
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Mon, 24 Sep 2018 09:52:38 GMT
Expires: Mon, 01 Oct 2018 09:52:38 GMT
Last-Modified: Sun, 23 Sep 2018 11:15:16 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 23183
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33593
Date: Tue, 28 Aug 2018 18:21:49 GMT
Expires: Wed, 28 Aug 2019 18:21:49 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 2325432
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33593
Md5:    41f096f465c88617317d29c4ee182e8a
Sha1:   f4ec1b143d06a6ce60803b267c4f0a65ecb09ae8
Sha256: b9b28e5ea618b26cf70347e246a4a4a17c21b6ca09ce6ff6637848745595a82d
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=8770128573749991206&zx=7631685f-4de1-472c-8e3b-460a602ca579 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 24 Sep 2018 16:19:01 GMT
Last-Modified: Mon, 24 Sep 2018 16:19:01 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "99c4c8b44692ecdb95b761138d66136c"
Expires: Mon, 24 Sep 2018 16:19:01 GMT
Date: Mon, 24 Sep 2018 16:19:01 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz;Domain=.google.com;Path=/;Expires=Tue, 26-Mar-2019 16:19:01 GMT;HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16815
Md5:    7528230690c5a1591883c1cbbef29a64
Sha1:   92760dc6f93364cc8a17fdad05db66766e1bec4c
Sha256: c937866c7d6387438ec7efd76f017e10c870fb75cfd4dccba1f063540211ebc0
                                        
                                            GET /s/bitter/v12/rax8HiqOu8IVPmn7f4xv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Bitter%7CBitter%7CDroid+Sans%7CDroid+Sans%7CPT+Sans+Narrow
Origin: http://wonderarticles.blogspot.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 35836
Date: Fri, 21 Sep 2018 02:22:57 GMT
Expires: Sat, 21 Sep 2019 02:22:57 GMT
Last-Modified: Wed, 11 Oct 2017 18:22:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 309365


--- Additional Info ---
Magic:  data
Size:   35836
Md5:    773e27d69a844004bd6149f09cc367a4
Sha1:   f1d7b7192b1e501c931b7245879e5cf7b424bb07
Sha256: 299f543a019f68f2c48e080605ee6b71ec8808de9007751a44347803729c0001
                                        
                                            GET /s/droidsans/v8/SlGVmQWMvZQIdix7AFxXkHNSaw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Bitter%7CBitter%7CDroid+Sans%7CDroid+Sans%7CPT+Sans+Narrow
Origin: http://wonderarticles.blogspot.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 24888
Date: Thu, 20 Sep 2018 11:34:07 GMT
Expires: Fri, 20 Sep 2019 11:34:07 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 362695


--- Additional Info ---
Magic:  data
Size:   24888
Md5:    156bcea41968749e1e67dfb42f5d2626
Sha1:   bd466fa979e3fa6389655cc0a6d9ed945d0cf9d6
Sha256: 1a608dae17698385b2db83b639dcdc422aa70a179c2884752e5a8c2609e8894a
                                        
                                            GET /js/show_ads__360ads.js HTTP/1.1 
Host: 360adshost.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         50.31.138.24
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
X-Powered-By: PHP/7.0.29
Server: - Web acceleration by Mocha Cache
X-Cacheable: YES
Content-Length: 2265
Accept-Ranges: bytes
Date: Mon, 24 Sep 2018 16:19:02 GMT
X-Varnish: 888423855
Via: 1.1 varnish
Connection: keep-alive
Age: 0
X-Cache: MISS


--- Additional Info ---
Magic:  ASCII HTML document text, with very long lines
Size:   2265
Md5:    90ef1d422e9b60a90091c9dc285103af
Sha1:   12a0e4718017ccacd068c4e252a5909158166845
Sha256: eff91bf99acca5e9a892b48bfc675dc8699b1686636dccb8d29477d4083eef03
                                        
                                            GET /pagead/js/google_top_exp.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 11 Sep 2018 21:05:11 GMT
Expires: Tue, 25 Sep 2018 21:05:11 GMT
Etag: 13036835877489095579
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 1; mode=block
Age: 1106031
Cache-Control: public, max-age=1209600


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   67
Md5:    9bbc3ca32ec951a484589ce0e6b4db73
Sha1:   753d6f6183b33b2dee5dde2208fca91c17f5bb13
Sha256: b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46713
Date: Fri, 21 Sep 2018 23:34:39 GMT
Expires: Sat, 21 Sep 2019 23:34:39 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 233063
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46713
Md5:    46a50b1701653bf00eeda8f8be2ee4ef
Sha1:   a26b98a8128d17f612f8b57c4a39bf3aade1cf3d
Sha256: 5a584f15bda2883084a7b56e756feeb9247653355d87c8378a9882e6e64376dc
                                        
                                            GET /-DXqYqJBHPZg/UYMbogLfqBI/AAAAAAAAIRk/XvfIqtiDtoc/s000/photo.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v211a"
Expires: Fri, 14 Sep 2018 18:01:03 GMT
Content-Disposition: inline;filename="photo.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:02 GMT
Server: fife
Content-Length: 2686
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400, no-transform
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2686
Md5:    3b3c4889154f9d5a7150e146a2227150
Sha1:   a61ebbb4491fd6932163765c02b0c57a1b9d1172
Sha256: 500e78b4ccfd711fbad912eac143d47820b9ec06f57bfd5ea62bbbabf9d9666c
                                        
                                            GET /-wXOr5UnVAAI/Ue4GNINAHbI/AAAAAAAAAPo/sN1JObGMV1E/s72-c/admin+pass+brk.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vfb"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="admin pass brk.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3483
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3483
Md5:    9d165d687b0751f4769b2f7f3bc3286e
Sha1:   1567dcbaecde2899d4070a56a380ebff0e10c278
Sha256: 81be507169a1514f361fb8ff788c0ca240f8dabdc198415214a5bd15e717d253
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: wonderarticles.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2026
Date: Sat, 22 Sep 2018 10:55:51 GMT
Expires: Sat, 29 Sep 2018 10:55:51 GMT
Last-Modified: Fri, 21 Sep 2018 17:39:41 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 192192


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/cb=gapi.loaded_1 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18579
Date: Sat, 22 Sep 2018 00:54:49 GMT
Expires: Sun, 22 Sep 2019 00:54:49 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 228254
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   18579
Md5:    fea9b3c91ce4654c7799f2e52ea9c089
Sha1:   9236d390a87a49135205a722b577b5f4f5daad9a
Sha256: e99a534de52662e076ed6d6b20fc9c17314df9a2fc51ef3690280fd9f097ec78
                                        
                                            GET /-et0yfUw4hrE/UeupQXXd2xI/AAAAAAAAAMc/UyPwxRk0Ja0/s72-c/DDr+Poster1.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vc8"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DDr Poster1.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3926
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3926
Md5:    48f909922f6bb180bc0b50eb23e23c66
Sha1:   c58a1b561bb0a85adce972c372ef515360ede11f
Sha256: 3c64bc9cb1c252adabe46970358f7e4ed385ada8603370f2d7051b952eeb2093
                                        
                                            GET /-tEUQjxLugLE/Ue3TBgXoJ0I/AAAAAAAAAO0/LGpbpLGc5qQ/s72-c/torrnt1.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vf0"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="torrnt1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 2808
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   2808
Md5:    e4961bc05fbc54c8b3e867d57e9f388c
Sha1:   8bdbb70c215a0e1f416560fab1f73434b4274059
Sha256: f4cb5ca90714dca9ea330bb013d505c1c73fb7a7dfcbaff3dadb1920f90c2cdf
                                        
                                            GET /-VUwvAIktSOE/Ueu2xBaMs5I/AAAAAAAAANM/3hN41hVUS88/s72-c/yunloac.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vd4"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="yunloac.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 4162
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4162
Md5:    b7a48958ec59cfff8e16fa09d35f70bf
Sha1:   a7c8474220d81893c603ab25e8b67d349a872a8d
Sha256: 32a42422a48d0492f1c98bb972c37db67fd4fde7c0a8bb36a88937bc75f346dc
                                        
                                            GET /-YYvAjumhxvY/Ueu0CwiS1DI/AAAAAAAAAM8/kNkRRBzOhis/w72-h72-p-k-no-nu/lockfolder.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vd0"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="lockfolder.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3255
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3255
Md5:    cacf5b310bacc86c5c32b224166f988e
Sha1:   c86eec675aa2183a957416e693b41ddd9fdecd3e
Sha256: a3fd2d1a99662efec88a0dfe27abc640d18c47242b5c601bc1bec8844b0c6013
                                        
                                            GET /-V9zn2-_jyiY/UhVz-lcAqJI/AAAAAAAAAaA/XvefTz5hxGU/w72-h72-p-k-no-nu/1375592068_533829349_1-Pictures-of--Windows-8-Activator-Internet-DownLoad-Manager-Full-Version-IDM-Crack.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v1a1"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1375592068_533829349_1-Pictures-of--Windows-8-Activator-Internet-DownLoad-Manager-Full-Version-IDM-Crack.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3851
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3851
Md5:    78c306bb27c11dbcd086c8efc3671638
Sha1:   d485827285c798d8357cfacbba2a29fefe49f77e
Sha256: 94c84116b789b0b8005eb844baa0f6a89b3d78c2aa97f1f14f8bb5826a5afb63
                                        
                                            GET /-rMfBatDkZec/UgXWI-9QLhI/AAAAAAAAAVA/hrXz_taHil8/w72-h72-p-k-no-nu/bookpkfakesms.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v151"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bookpkfakesms.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3896
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   3896
Md5:    8b00a1d6b35eecdbe8bf1cf29be7531f
Sha1:   ed54092c0c987863d59579d8dc317875707a325e
Sha256: e16c4d6e1a698ede159be447ff8771a7ee95f0bd841c1dbc4cf4bf4ecf4965cf
                                        
                                            GET /-et0yfUw4hrE/UeupQXXd2xI/AAAAAAAAAMc/UyPwxRk0Ja0/w72-h72-p-k-no-nu/DDr+Poster1.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vc8"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DDr Poster1.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3865
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3865
Md5:    62749d73059703b967a9b5b9a1531b5c
Sha1:   4a5dce856a7825df8d408afd5e98df22db962686
Sha256: 5a4542e404f9326788387977b3b4292c593c47c38d4c504332aa02e3d6f16d92
                                        
                                            GET /js/infolinks_main.js HTTP/1.1 
Host: resources.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         104.16.228.152
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 24 Sep 2018 16:19:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943; expires=Tue, 24-Sep-19 16:19:03 GMT; path=/; domain=.infolinks.com; HttpOnly
Last-Modified: Thu, 20 Sep 2018 11:15:45 GMT
Etag: W/"11f5-5764ba4f7eb89"
Cache-Control: max-age=3600
Expires: Mon, 24 Sep 2018 16:17:43 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 45f69209201e42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2502
Md5:    f7c862d705709d1326a57de8c11c6108
Sha1:   0e8df7672e354eb62e43aaedce67f70fb62eafa9
Sha256: bb2e873c5f8bc7a5eed92ca9cabeeeaf0ece5b8bf082b1f94f948d8394edadfd
                                        
                                            GET /-YYvAjumhxvY/Ueu0CwiS1DI/AAAAAAAAAM8/kNkRRBzOhis/s72-c/lockfolder.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vd0"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="lockfolder.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3128
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3128
Md5:    aea1511d8a205be0b278649de58c50e0
Sha1:   b8d31cbf0dd4f1b84a971f3e5d3ce651c83d469d
Sha256: f9e0245720015219c3e827707cf22216d01cb40385080ecd9a49fbd5886574cb
                                        
                                            GET /-lMrABtSrhho/Ueumqy7YD9I/AAAAAAAAAMM/gaGFufahd_U/s72-c/information-technology-offices-services-monterey-institute-of-618x800.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vc4"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="information-technology-offices-services-monterey-institute-of-618x800.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 2594
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2594
Md5:    05b748be1742c6e20a098872dbf9eb40
Sha1:   90a300d3c9d391581c68f98faa15fc6d8b5c2423
Sha256: 9c8333007ed889ec473ab0661252079537184f115d6499c37d2f5891398dda5c
                                        
                                            GET /-Y4AwGYxVfz0/Ugcc55qXUfI/AAAAAAAAAVQ/413vcq1lCnc/w72-h72-p-k-no-nu/4shard.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v155"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4shard.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 6505
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   6505
Md5:    c35ce14e8b0261083e393ea079f9f48b
Sha1:   cdbaed77ab258065e9befe68cd85ff6df528fafa
Sha256: 75f46f6cd79c63dd7c75bd698be24ea2afd6a17b8c4b88915bcc9f254ab2635a
                                        
                                            GET /-cH6PI3T5lNo/Uey0g3nifAI/AAAAAAAAANw/eVRbwfFjmpY/s72-c/voicesmsms.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vdd"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="voicesmsms.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 5015
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   5015
Md5:    512ba5a351715819f80305773e9a84bb
Sha1:   bb4c977b1ac5ee8b2d7aff8c8a7a151719487dc1
Sha256: 5449c8cd23693f44553ba1267304048a110da48143222dee44906470a4365454
                                        
                                            GET /-rDKyEiOY-MU/Ue1dGhz0knI/AAAAAAAAAOg/lTcxdht9gCY/s72-c/wondersmsmm.png HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "ve9"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wondersmsmm.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 8220
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   8220
Md5:    96650d1b5fdaddd21bb31e51f6ad1c31
Sha1:   2773add78cea17e8fe8cf5dc237e8ff81b240225
Sha256: 3e7e2cfa1c6c06cb8b40ee0f9cee9d5d623da28b258708a86f7ce6f92d51de4b
                                        
                                            GET /-FLUf8otzKEc/Uey_Ot5KRCI/AAAAAAAAAOA/c0r4SfcLTI8/s72-c/idm1.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "ve1"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="idm1.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 3373
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  GIF image data, version 87a, 72 x 72
Size:   3373
Md5:    0263b2310823640365d63fda90c54b95
Sha1:   4bc06eba92da54da6a5b70339b480041f6239865
Sha256: be1c432875e646650562d7a10860cad8c0dbbbe000044226527945b2ddbf1bec
                                        
                                            GET /-tWSqlOW0z_k/UgTjLoem3PI/AAAAAAAAAUY/95_gpEOM0AM/w72-h72-p-k-no-nu/pcm1.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v147"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pcm1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 5260
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   5260
Md5:    57b7be836af9c040ecdefc6a4d7b5206
Sha1:   8418781fe053ab71a96858c8047089afc83b7399
Sha256: 54caae3f19f826ab1977720e3335e211f6a2dfe6e15ed690ff1bbc074dca926d
                                        
                                            GET /-VUwvAIktSOE/Ueu2xBaMs5I/AAAAAAAAANM/3hN41hVUS88/w72-h72-p-k-no-nu/yunloac.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vd4"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="yunloac.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 4313
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4313
Md5:    ae9f0963ea397ec85ba9b9753dc7bfc9
Sha1:   2100cce5c1f74d52b237867088964c13ee46b50d
Sha256: aac66294f25561b8616334d60be8b2fdf31d91a18a493bb4e5224a949bd38ebd
                                        
                                            GET /-lMrABtSrhho/Ueumqy7YD9I/AAAAAAAAAMM/gaGFufahd_U/w72-h72-p-k-no-nu/information-technology-offices-services-monterey-institute-of-618x800.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vc4"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="information-technology-offices-services-monterey-institute-of-618x800.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 2256
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2256
Md5:    6aa997db1e2a93022b8ca528ca9c7f72
Sha1:   d397e0dea4bea71550d991f916a54f20c9316ba3
Sha256: 1645c9dfcd04d2a72fe03ef17b49e7a00ab992612b83c73431b0505acc334658
                                        
                                            GET /-YST8RFKW8Tg/Vsq8pW4J6uI/AAAAAAAABiI/B3nilVm6RCk/s1600-r/payoneer%2B25%2524%2Bbonus.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v623"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="payoneer 25$ bonus.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 28934
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   28934
Md5:    6751fe36aa60ab589e8b8cfd08b0a090
Sha1:   978e7790fb6fafe97e2ff9a732785e5fa17e2a4b
Sha256: 65386ed96d84317e498af30e5961884d91458bf7b6cdbce1b8efd217af7bb64b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    09f289721ca685cd7315eac445ab1214
Sha1:   535a3db38409eca991e15f6fbf905da887f8fcc1
Sha256: 77185fd3b3cb6053011ba3956311ccc57b4c1f8257d72ddfc2edd8c7c9e69557
                                        
                                            GET /-9iykVhrQZ1I/Vsq7QSugYvI/AAAAAAAABhw/yFd3s05GrwI/s1600-r/Creative2-320X50.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v61d"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Creative2-320X50.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 7877
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   7877
Md5:    d400efaec46642bb0bed9511fc9bd374
Sha1:   822657d8ddcd16f63bfba381fc943a210396614d
Sha256: 4e60b2fd8c69cc638ecda7bd9e855d015d221ad373d40c582859ce8741ecc595
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         104.122.221.206
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Tue, 18 Sep 2018 15:13:39 GMT
Etag: "5ba11623-57119"
Cache-Tag: client_dist
Surrogate-Key: client_dist
Timing-Allow-Origin: *
Cache-Control: public, max-age=600
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 113617
Date: Mon, 24 Sep 2018 16:19:03 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-Distribution: 99
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   113617
Md5:    9e5d75824cf34cafddb821512b13b6b3
Sha1:   cc10fee61aaef2bafd86d671e6fc48c1b233934d
Sha256: 00fb09c7ab726374f9f2410813ad16ab63c739f426fb72760d4535e8f903a2ec
                                        
                                            GET /-spUEg-Xn8eA/UeutRSIqLmI/AAAAAAAAAMs/vCgV_ViW6ZM/s72-c/idm+broken+link+trick.jpg HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vcc"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="idm broken link trick.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 2465
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2465
Md5:    ba73a274e068bed3038863d907a66608
Sha1:   a47cc7b1c2b4d78a17d6e8373b4a9aa3df004071
Sha256: 795682a4e4289ecb7452482b9b9a86c75fc25c0cbf1c8cb63aacc1cd828519d6
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    5c62351e00477b132770580046415e2a
Sha1:   b9cf002d9be42dba9ef3db5b01e2194302e18306
Sha256: 62dcabaf7d5e7ec55daeb4899c2e8806079b6f0d56ead8d42f0d23f4af54554a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3859f0c5d3313d500651441ea260401b
Sha1:   ce41b7342da2f551b4c8c6a8b75e239f0b19223f
Sha256: 463f2a261f951210c3026509a97e0531eee974537c92313b9ce84368513b81cb
                                        
                                            GET /adsid/integrator.js?domain=wonderarticles.blogspot.com HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /adsid/integrator.js?domain=wonderarticles.blogspot.com HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /-8vW4EUndcDU/Ue4LloS6XGI/AAAAAAAAAP4/ZhNbdM2n7dM/w72-h72-p-k-no-nu/how+arab.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.209.129
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "vff"
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="how arab.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 9179
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit/color RGB, non-interlaced
Size:   9179
Md5:    c418b4cc529509649da5a99cdadbbdca
Sha1:   f6ca3bc30fa8a0fe7885e4b1940ab11ff3f91a7f
Sha256: bebe433b19483fe4c1ff3127155cc71c547394ed30e274c81437b506fa2c15c1
                                        
                                            GET /static/v1/widgets/1859629982-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 52394
Date: Fri, 14 Sep 2018 01:42:43 GMT
Expires: Sat, 14 Sep 2019 01:42:43 GMT
Last-Modified: Thu, 13 Sep 2018 23:58:13 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 916580
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   52394
Md5:    2cc007f5a58b93484c54d188ae0a4fb0
Sha1:   1dfa1aa4d0189c678f45f2ed303265f5b0fc1ec4
Sha256: 02affcc97ab41c4b1ecf1807852ed12ac9388c98b0307dc2c36ea5de3d21a756
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    2e97e2c3f04ebd6cd2b18d7d1d98d1bb
Sha1:   c484b74461901785fd8c585136e2d8e47b6cbef1
Sha256: 249f1ddff7e7e69a695c7c3e3c3abab2afa1c11aa527a66a8004b7cdea6ec5f2
                                        
                                            GET /pagead/js/r20180917/r20180604/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 24 Sep 2018 16:19:03 GMT
Expires: Mon, 24 Sep 2018 16:19:03 GMT
Cache-Control: private, max-age=1209600
Etag: 561137767961209487
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 74155
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   74155
Md5:    c26f7ec7a47dec286ff72cabb3b32d86
Sha1:   51b07b51ad9a6d93cabe254a473b5046271ad21a
Sha256: 5fcacf1b5b4f1622187fef937e09fd4c127d7f4c4fd56b98f4652cc57cfa0e87
                                        
                                            GET /proxy/UHR1P17q5zjdla3OmIM9NAjSbL72BRX7MDpVb4NAU4cD9xiAR1UcvwQ1s-FC25sjh60_PWNhando4gvz7eEO5NvW9FW1Tv7FXVs8GIkqBNZTotmdr_jDZIigzGSlfvznB9kimXl-=w72-h72-p-k-no-nu HTTP/1.1 
Host: lh5.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.193
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Expires: Tue, 25 Sep 2018 16:19:03 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="unnamed.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:03 GMT
Server: fife
Content-Length: 2572
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2572
Md5:    a8f6793e17f8ddf2493405db7ac1df1d
Sha1:   830e6de6d84fcb9d310b1b597cbefb5e750794f7
Sha256: 6cdea54c650fb3ded53b6dc083dead24f63c3c464fbf340d757c19a17b6e7560
                                        
                                            GET /BidVertiser.dbm?pid=520268%26bid=1468098 HTTP/1.1 
Host: bdv.bidvertiser.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.200.199.154
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 10322


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10322
Md5:    5c88867559245039b35f952cabd8172c
Sha1:   baf3620ebeb599ddee0e1484c219f5295abb8751
Sha256: a040e7849ad204fc009abcf199c3f9e732184fbaf22bffd10570f062b098c21b
                                        
                                            GET /navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         216.58.207.233
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 24 Sep 2018 16:19:04 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   2648
Md5:    c9219fa3be6bd641338798772e702007
Sha1:   50dab5050425300f15be4a8aa45a717feb66aec3
Sha256: 09a4415298c780d9a22894b93f0614b6b03a10b2078cd20ce2eddd4d33288809
                                        
                                            GET /pagead/html/r20180917/r20180604/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Tue, 18 Sep 2018 16:21:05 GMT
Expires: Tue, 02 Oct 2018 16:21:05 GMT
Etag: 18162506661661110595
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6931
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 518279
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6931
Md5:    5d7f15972eee141e37e377501d936393
Sha1:   f0fc7f15fa0e22d6cd348549faf7168b0a8bceba
Sha256: 29f743f2bf323c5dacbc183c93332149e8013692e837f019015382d88065f6de
                                        
                                            GET /pub-config/r20160913/ca-pub-3890207601569495.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Mon, 24 Sep 2018 16:19:04 GMT
Expires: Tue, 25 Sep 2018 04:19:04 GMT
Cache-Control: public, max-age=43200
Last-Modified: Sat, 22 Sep 2018 21:57:50 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    f80120281945bc2ccdaebc64cbad921d
Sha1:   b5c7ef140888ede182fcac94921a4eb502f07a5c
Sha256: 4cb4b9970ec5cedababe29f9a4ab00d00194bbebd2063cb117dec008b8c6982a
                                        
                                            GET /pagead/js/r20180917/r20180604/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Wed, 19 Sep 2018 05:15:46 GMT
Expires: Wed, 03 Oct 2018 05:15:46 GMT
Etag: 11408177114345171100
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 26901
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 471799
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   26901
Md5:    fa4375e415eaf8fcbe72d2f82534fc33
Sha1:   8b67784838b67298f55eaa0abc5dfe6be0638eb5
Sha256: dfd65699579d8e692343afb372f93fa700137e8cc79e51860c85b82352ebdaed
                                        
                                            GET /pagead/ads?client=ca-pub-3890207601569495&output=html&h=60&slotname=5135608363&adk=2050499449&adf=807048394&w=680&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=680x60&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0007&fwr=0&rh=0&rw=680&resp_fmts=3&wgl=0&adsid=NT&dt=1537805944771&bpp=47&fdt=53&idt=199&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60&correlator=4595379343209&pv_h_ch=L0007&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=98&ady=495&biw=1176&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=2&dtd=225 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:05 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Mon, 24-Sep-2018 16:34:05 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Mon, 24 Sep 2018 16:19:05 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   387
Md5:    ddb2a4aa251185bd118dba0a8894567d
Sha1:   bb369fea56d81b545e9032de7a0c4248f540a065
Sha256: fa0e6a8a79a05182066619c4954d7e464a500c11eab9c68c0412a2e8816fa1a9
                                        
                                            GET /pagead/ads?client=ca-pub-3890207601569495&output=html&h=60&slotname=5135608363&adk=2050499449&adf=807048394&w=680&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=680x60&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0007&fwr=0&rh=0&rw=680&resp_fmts=3&wgl=0&adsid=NT&dt=1537805943378&bpp=32&fdt=36&idt=301&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&correlator=4595379343209&frm=20&pv=2&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=98&ady=470&biw=1176&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=1&dtd=1232 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:05 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Mon, 24-Sep-2018 16:34:05 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Mon, 24 Sep 2018 16:19:05 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   385
Md5:    6aac12d01452a8a8b96a56c116554deb
Sha1:   50ea5fb73439d423a7f1a53bb1240a52a3f69c81
Sha256: d816a6738fb4815e13672b0c28068dae33ac1c00e2f7c7de419b7f8d30f054b4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:03:12 GMT
Etag: A62622784A90326C8D369850FF58298CD94AA70A
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=239640
Expires: Thu, 27 Sep 2018 10:53:05 GMT
Date: Mon, 24 Sep 2018 16:19:05 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    ab3776bdd82117d1e03608d4d67e8983
Sha1:   a62622784a90326c8d369850ff58298cd94aa70a
Sha256: cf436a9db1dd8297da1ccb3b308ee31b6c3eaa7fba9e972d53f8638df4734553
                                        
                                            GET /js/1626.015-2.021/ice.js HTTP/1.1 
Host: resources.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.228.152
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 24 Sep 2018 16:19:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 06 Aug 2018 15:31:52 GMT
Etag: W/"b121f-572c5fa0aa8d4"
Cache-Control: max-age=2592000
Expires: Wed, 24 Oct 2018 11:41:54 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 45f6921621f842a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   209530
Md5:    1d5df2e2e1abcd71cca049cfead0f47f
Sha1:   1650f56bea17dbab149a7be4d1a8378dc740a8ca
Sha256: 701a144c89f1d668ec0738b905e05e15cb05628229a2e333d867e88a9f778abc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: E6F58D18F846FA7A1B256C7BAD6E173833950B04
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=239474
Expires: Thu, 27 Sep 2018 10:50:20 GMT
Date: Mon, 24 Sep 2018 16:19:06 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    81b767bf43d0883d07888716a9c628d5
Sha1:   e6f58d18f846fa7a1b256c7bad6e173833950b04
Sha256: 52f9f8799d097e1d431dbcc820573a3adff9b32e9eec23d4bc698484893b3dc5
                                        
                                            POST /inputs/c2567968-6d7d-4427-a7bb-eaab4a243135/tag/ice HTTP/1.1 
Host: logs-01.loggly.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/plain; charset=UTF-8
Referer: http://wonderarticles.blogspot.com/2013/07
Content-Length: 232
Origin: http://wonderarticles.blogspot.com
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.236.79.251
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.12.1
Date: Mon, 24 Sep 2018 16:19:06 GMT
Content-Length: 19
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Authorization,Host,Content-Type,X-Forwarded-For,X-LOGGLY-TAG,X-Real-IP


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   19
Md5:    b5efa112ce475f8bf73086a68521ea2e
Sha1:   4c4e7a9e8feb3e4595b4baf2db4466df001afa61
Sha256: cdc7a3d8f9ce204e8853c2f7088b9c3fe488432314d1ea6c17cf8fd4ae179261
                                        
                                            GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fayaanx64s&width=292&height=590&colorscheme=light&show_faces=true&header=true&stream=true&show_border=true HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         31.13.72.36
HTTP/1.1 302 Found
Content-Type: text/html; charset="utf-8"
                                        
Location: https://www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fayaanx64s&width=292&height=590&colorscheme=light&show_faces=true&header=true&stream=true&show_border=true
X-FB-Debug: sHVEsgdr5fULxuOW9CELCEoL3Idl3Sl2hC3F/cPykYm71V+E3KhUs02XUxwyvssYEsqUALZra/mbqkBXRMnRzA==
Date: Mon, 24 Sep 2018 16:19:06 GMT
Connection: keep-alive
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /static/layers.19562ea85278f66bc3c0.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         104.122.221.206
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Wed, 29 Aug 2018 17:31:09 GMT
Timing-Allow-Origin: *
Cache-Control: public, max-age=86313600
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 74991
Date: Mon, 24 Sep 2018 16:19:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   74991
Md5:    450fba9cd7d47fe708e591e843834c1c
Sha1:   73d8ab7ce195b398b1617c6462f5e330848c5301
Sha256: 6070a3c9ddc620bcf9d4ed6509b5e4a101a42e831fe2e2e0db98b8c6e65f7b20
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: D8FF1031A802506B92CF4A6F28D3B0CC5D6E90DF
X-OCSP-Responder-ID: rmdccaocsp26
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=239464
Expires: Thu, 27 Sep 2018 10:50:11 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    3197eebb0e20a395b73dff5cf366b4dc
Sha1:   d8ff1031a802506b92cf4a6f28d3b0cc5d6e90df
Sha256: b238d7ca0babaf95062a9472433ade1c3929277506a6c729d13e6b38a4a725f0
                                        
                                            GET /plugins/like.php?href=www.facebook.com/ayaanx64s&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         31.13.72.36
HTTP/1.1 302 Found
Content-Type: text/html; charset="utf-8"
                                        
Location: https://www.facebook.com/plugins/like.php?href=www.facebook.com%2Fayaanx64s&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
X-FB-Debug: Wbc32S1tfRsjJ+0bIukBXda+ORSana/rBfG7XO3SzGtW4EVmy0V5NepYIhAjx9kj+yMl8OGYERKTkZPaEOBdlg==
Date: Mon, 24 Sep 2018 16:19:07 GMT
Connection: keep-alive
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /js/platform:gapi.iframes.style.common.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "b4e99b06705c47d9817824d07b40665f"
Expires: Mon, 24 Sep 2018 16:19:05 GMT
Date: Mon, 24 Sep 2018 16:19:05 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16830
Md5:    6a2d81e453219f3bbdd4d06bc8d2ff73
Sha1:   19ddf8bb9c4cf2981c04c2daa053deda1cda6b09
Sha256: c973712d3349f2f512da0eb8a22a008297dbcc28350009be394e8305126849c0
                                        
                                            GET /bidvertiser/tags/css/default.css HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdfrm.bidvertiser.com/BidVertiser.dbm?pid=520268&bid=1468098&RD=9874938025932&DIF=1&bd_ref_v=wonderarticles.blogspot.com&tref=1&win_name=null&docref=&jsrand=9874938025932&js1loc=-&loctitle=%20July%202013%20-%20Wonder%20Articles

                                         
                                         104.123.139.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Etag: "70d0ec1947f4d01:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 549
Date: Mon, 24 Sep 2018 16:19:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   549
Md5:    0c3d6bd2f4e096c6f474309017dfa42b
Sha1:   5e14155ad01281e4091cf6ba09594584f25ddf3b
Sha256: b2a7c3369e7a28b7415d7512efe1d057230ec14732c7901d82c04a7610d26528
                                        
                                            GET /bidvertiser/tags/activejs/bdv_fsthd.js HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdfrm.bidvertiser.com/BidVertiser.dbm?pid=520268&bid=1468098&RD=9874938025932&DIF=1&bd_ref_v=wonderarticles.blogspot.com&tref=1&win_name=null&docref=&jsrand=9874938025932&js1loc=-&loctitle=%20July%202013%20-%20Wonder%20Articles

                                         
                                         104.123.139.232
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Tue, 26 Jul 2016 07:39:59 GMT
Accept-Ranges: bytes
Etag: "e05182e910e7d11:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 712
Date: Mon, 24 Sep 2018 16:19:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   712
Md5:    e7ba6359936de26f9289a4bdb2a7b75d
Sha1:   d83ef5e6b4b503975d57cbf6db5d490d27f153b4
Sha256: f689ec8ab401e9ef2eebbd772efac602f98be75f1ff134d524d2736656c0f4f4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=152242
Date: Mon, 24 Sep 2018 16:19:07 GMT
Etag: "5ba8a7a1-1d7"
Expires: Wed, 26 Sep 2018 10:36:29 GMT
Last-Modified: Mon, 24 Sep 2018 09:00:17 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ac6cb5edbc0ab8a0796a38e2ef8efb0d
Sha1:   dad84f5feccdb9a8a9db7494e93286c83f7b7a95
Sha256: 121029da5a4230a630e8fb54b38d42f99f5d8df5a07fb55bd1af8757c1fd41bc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=155848
Date: Mon, 24 Sep 2018 16:19:07 GMT
Etag: "5ba8bcf6-1d7"
Expires: Wed, 26 Sep 2018 11:36:35 GMT
Last-Modified: Mon, 24 Sep 2018 10:31:18 GMT
Server: ECS (arn/469D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f9d4ecc50bf2930e15224e552a4edb5b
Sha1:   73562e6ea0857c72708c4fa031c235a6c1d0e2aa
Sha256: 7bcf311d430dffccf78fcd43550f3510803ad7c2a010e3cd66f3ab7ab3688b75
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fshahid-afridi-photo-copy-must-watch.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3936
Md5:    dcc5ad727f46fe169054e68f5fbf2b07
Sha1:   bd6077fdf43a9f86522e2df6c2fb247e633599be
Sha256: 80aed3eca0df17e3d85b96f216ed60b26361ec54f3591430484fdb2c65e7548f
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fsecure-assets.rubiconproject.com%2Futils%2Fxapi%2Fmulti-sync.html%3Fp%3Danswer_media%26endpoint%3Dus-west HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=answer_media&endpoint=us-west
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692251c1f4273-OSL


--- Additional Info ---
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fhow-arab-teach-their-babies-swimming.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3937
Md5:    e89894103ae01aaf42aca4616bc993be
Sha1:   bb15fe4a6ca308189e8414a80eac7a450f0b0165
Sha256: f36dcd66036ade7ef0c58d9823abf40ffa370a4295b50ddddb80322f7f7ab214
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fib.adnxs.com%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://ib.adnxs.com/getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692257dcf4267-OSL


--- Additional Info ---
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fads.pubmatic.com%2FAdServer%2Fjs%2Fuser_sync.html%3Fp%3D60809%26predirect%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=60809&predirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fusersync%3Fpmuservalue%3D
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f69225795d4255-OSL


--- Additional Info ---
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fmatch.deepintent.com%2Fusersync%2F117 HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://match.deepintent.com/usersync/117
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692257c674273-OSL


--- Additional Info ---
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/m=auth/exm=gapi_iframes,gapi_iframes_style_bubble,plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/cb=gapi.loaded_2 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27271
Date: Sat, 22 Sep 2018 01:04:05 GMT
Expires: Sun, 22 Sep 2019 01:04:05 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 227702
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   27271
Md5:    2a1735f6de50924ab37872b6f0785b1c
Sha1:   697126b4da500dd6daa56d8993acdad225e819e9
Sha256: 7d72f716a7895e986c31085a18826c632c1ad329513e3df9dd0f91e9726077f5
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fhack-admin-password-in.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3927
Md5:    4353636c15f10560b36cfc37319a4802
Sha1:   b53eac57457c9790d3d8332fbb544274532eed3c
Sha256: 2647e05fae9c28fdf0b5fe3e1f52c7ba901732192343e961da859841b5a3f88d
                                        
                                            GET /bidvertiser/tags/css/58x466.css?cbst=2 HTTP/1.1 
Host: bvadtgs.scdn1.secure.raxcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdfrm.bidvertiser.com/BidVertiser.dbm?pid=520268&bid=1468098&RD=9874938025932&DIF=1&bd_ref_v=wonderarticles.blogspot.com&tref=1&win_name=null&docref=&jsrand=9874938025932&js1loc=-&loctitle=%20July%202013%20-%20Wonder%20Articles

                                         
                                         104.123.139.232
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 18 Jan 2018 16:19:13 GMT
Accept-Ranges: bytes
Etag: "ec706f147890d31:0"
Server: Microsoft-IIS/8.5
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 783
Date: Mon, 24 Sep 2018 16:19:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   783
Md5:    630d09ff92a0953a06f8777c61788348
Sha1:   1ad6724d3158ccc4cbc7349a05d98d1473175917
Sha256: 34b200391f9c602c274972d41cf1341583014fb86ab4a2bc73227af6cd60fea5
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fonly-pakistani-can-do-that-must-watch.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3939
Md5:    8dfb228bf4711ff9db2ef2d2c99980e4
Sha1:   931193a82bc4b82ca34b54359a347a42c1fcc3ff
Sha256: 92a8b6ae3cefa976981110ba9aae78319045aa6961bf4c576a587fe564cff229
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fads.pubmatic.com%2FAdServer%2Fjs%2Fuser_sync.html%3Fp%3D156872%26userIdMacro%3DPM_UID%26predirect%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253DPM_UID%0D%0A%0D%0A HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=156872&userIdMacro=PM_UID&predirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fpbm-usync%3Fuid%3DPM_UID
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f6922578e7426d-OSL


--- Additional Info ---
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fb1sync.zemanta.com%2Fusersync%2Finfolinks%2F%3Fcb%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fzmn-usync%253Fuid%253D__ZUID__ HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://b1sync.zemanta.com/usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692258dd14267-OSL


--- Additional Info ---
                                        
                                            GET /pagead/ads?client=ca-pub-2049551025914980&output=html&h=250&slotname=2109974555&adk=968151423&adf=807048394&w=300&lmt=1537157379&loeid=40993910&guci=1.2.0.0.2.2.0&format=300x250&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&avail_w=268&wgl=0&adsid=NT&dt=1537805945864&bpp=6&fdt=58&idt=168&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60&correlator=4595379343209&frm=20&pv=2&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=161&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=3&dtd=187 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: test_cookie=CheckForPermission

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:07 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: IDE=AHWqTUm3YUfxieeP9_9yZg4omA8W0pM3O1pjQb9qwsIPtfypovFagLAJzQNex2nw; expires=Wed, 23-Sep-2020 16:19:07 GMT; path=/; domain=.doubleclick.net; HttpOnly test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7400
Md5:    a49f84fb0e2148d74c8e4fb54390eb79
Sha1:   06023feb4ee78aefa565309f3efd769dfa2a2b89
Sha256: 41e265ff14dbee032ef93edadd6e101d5e1ece6e482fb9f0ac088e198babb66d
                                        
                                            GET /pagead/ads?client=ca-pub-3890207601569495&output=html&h=600&slotname=6612341565&adk=164548129&adf=807048394&w=268&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=268x600&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0001&fwr=0&rh=0&rw=268&resp_fmts=4&wgl=0&adsid=NT&dt=1537805946059&bpp=8&fdt=61&idt=618&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60%2C300x250&correlator=4595379343209&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=443&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=4&dtd=704 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: test_cookie=CheckForPermission

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:08 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: IDE=AHWqTUkSQwqasz4SS3q-xmN_89YiHyU-ZtdNL5fNgBx0bRt78FI_jh3UpeWkJLLe; expires=Wed, 23-Sep-2020 16:19:07 GMT; path=/; domain=.doubleclick.net; HttpOnly test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7631
Md5:    65f14bcc5ad4b6bf3e38763c7c9b8d68
Sha1:   afd61aedd0146b76e3f29a99992cdc0461981526
Sha256: b423e4285e370547746d99c5e84add78cc59f2a465d9f505b38e392d65f0965f
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fadobe-photoshot-book-urdu.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:07 GMT
Date: Mon, 24 Sep 2018 16:19:07 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3929
Md5:    81adc3e8e53223a1e544b02d63d27655
Sha1:   740b5422b1c1367efc053e165dbce613bf6737dd
Sha256: c4dd3b1de53473dd45d979dbf52f4eb706b770053b2960e67a027cb876de1586
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=161207
Date: Mon, 24 Sep 2018 16:19:08 GMT
Etag: "5ba8cd5f-1d7"
Expires: Wed, 26 Sep 2018 13:05:55 GMT
Last-Modified: Mon, 24 Sep 2018 11:41:19 GMT
Server: ECS (arn/46A2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d5f3d12d2c5882b64d99e5403475cbfc
Sha1:   9ddcf88858199b118b7d14d4d99b4c79bcd686b6
Sha256: 5557064d93d5ff490304dfe747b0a5aa05c6aba2bb58d84717457bc7665cd30b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=160700
Date: Mon, 24 Sep 2018 16:19:08 GMT
Etag: "5ba8d6c1-1d7"
Expires: Wed, 26 Sep 2018 12:57:28 GMT
Last-Modified: Mon, 24 Sep 2018 12:21:21 GMT
Server: ECS (arn/46D1)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8bf79efaeb65e01b0020da8af5259ae5
Sha1:   cc89d26daf74640438e4cd01497f02bc71f8812e
Sha256: cde6d6d5a9de63142b7a4eeb117cfbaff1e93df071e7b85be8f2204412b4fa7e
                                        
                                            GET /quant.js HTTP/1.1 
Host: edge.quantserve.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://bdfrm.bidvertiser.com/BidVertiser.dbm?pid=520268&bid=1468098&RD=9874938025932&DIF=1&bd_ref_v=wonderarticles.blogspot.com&tref=1&win_name=null&docref=&jsrand=9874938025932&js1loc=-&loctitle=%20July%202013%20-%20Wonder%20Articles

                                         
                                         18.194.118.154
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private, no-transform, must-revalidate, max-age=604800
Content-Encoding: gzip
Date: Mon, 24 Sep 2018 16:19:08 GMT
Etag: M0-e2b9884a
Expires: Mon, 01 Oct 2018 16:19:08 GMT
Last-Modified: Mon, 24-Sep-2018 16:19:08 GMT
Server: QS
Vary: Accept-Encoding
Content-Length: 5456
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5456
Md5:    ea55b8aade97737bdb3ac34239afe3e9
Sha1:   5bd3746efdffacbe0a0415d8760167834bb181ee
Sha256: d98cf4549e148788618a1ba008dc66d210d0063608b7c0acdfceb11430dd1579
                                        
                                            GET /dyn/gdprfilter?cb=https%3A%2F%2Fib.adnxs.com%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3Dhttp%25253A%25252F%25252Fwonderarticles.blogspot.com%25252F2013%25252F07%26pid%3D12306%26adnxs_uid%3D%24UID HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 302 Found
                                        
Date: Mon, 24 Sep 2018 16:19:08 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://ib.adnxs.com/getuid?https://s.cpx.to/ca.png?ref=http%253A%252F%252Fwonderarticles.blogspot.com%252F2013%252F07&pid=12306&adnxs_uid=$UID
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692263d024273-OSL


--- Additional Info ---
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fidm-speed-up-trick.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3923
Md5:    9407bebd5888fd1f4d6c8f71a6963fe5
Sha1:   21e9687f26d4651a6a18ee2fdec3ca31b5537662
Sha256: 97909869c3a6a0701fce03da195faf7e6f9e2af496fa74df32e227b08dec60f1
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fwonder-zong-sms-bomber-v2.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3925
Md5:    caa82d1049a809cdfa0ec0e90f78ea79
Sha1:   cae17cb260d3795063e5491cddb72f46fb3fe17c
Sha256: 56db9efcda41cbe72c719380297965a02d0fa247bc62eb770f89a617fcc5d285
                                        
                                            GET /AdServer/js/user_sync.html?p=60809&predirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fusersync%3Fpmuservalue%3D HTTP/1.1 
Host: ads.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         88.221.73.109
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Tue, 25 Sep 2018 02:23:59 GMT
Last-Modified: Thu, 31 May 2018 07:27:09 GMT
Etag: "1300708-128c-56d7b652735a4"
Cache-Control: max-age=172800
Server: Apache/2.2.15 (CentOS)
Accept-Ranges: bytes
Content-Encoding: gzip
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Content-Length: 1924
Date: Mon, 24 Sep 2018 16:19:08 GMT
Connection: keep-alive
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1924
Md5:    9b9dd6f061ed7a6da3dd78daf0c6ae71
Sha1:   d7ae034ed1e5b8dbc464095a7f3637e9e3dfb38b
Sha256: cb6d638cd62078f94755d6f16f819d3f5f19d588bc5398f7b06f3cb3537e25c7
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e78e80d9c1d6b9b3b530920152f9935f
Sha1:   fa144fec793eb0cb626356911d7bb1a5c41f3945
Sha256: 0c8daa682e798f201d67b42e03e22953b474c91126ed37858fc355f1817e08c0
                                        
                                            GET /dbm/ad?dbm_c=AKAmf-BZsaMs64ZDSRawnJk71XMR23t_5ORUsjRdQSf2_t2oa-aM-Paic3CnAUhJ5RKPrxkCpN0u&dbm_d=AKAmf-Dq2S-mbBexc3XDMRs4lTCW7UejjFWv1u4AgAx8En6GaT6QYW1nIJZNuFvF1ab4vDNhB4fbb7Ye-MKR_HGeu5zN8bMY_7R7jaXCwoHlyiJuS024L1-ROkDF0mslDkAo4EUaffe939YILKITCynQSeonPaY9MY5kURReNbJv31aMtQdABPaPpGCzOclqmErqOEjcLfGIZAC4mi9eUDz78WrClBJmrPukM--C0flTBZtep9Yu3zaEdbl1Jl9Oh_A1jzzghtHX1TdGAlOh-tEk5e6DL32QTKoc7u0XrJV6LEFPpfAaQaMzcOsn6ZXDsEUHrCNeFliemKaXz6eFw51pBW_dd7hsSBg-8yU29cPr_RSQYg-zHrdqgCc61-rVrt8CpVqytqnNBhsUnmF0ubmYrZQCWKz1c0BN6ryA5PLR5BME8-erBHzXAWSzh3ZxzUjshRqY_ljV194slXNntOy3xpQO_LJxb5WaiFQ2w3Epo8yxeukgocrGsyfkis3Qly5reSQDS7x6YVWNQfiM6iq8-TmgAU_WKe2KZ5KIsg2AWqJ3uJ01_7ugcfTL3hwz30h0xMoT3HrYod-1avUM3E3GS5dB_KwWm-dxiFLrc12TnrZjOIy64MtjkLTxV1lZZ4wa83Dqyoa47yitSn7b_bVDCeTp1K3ekpa5kgICpLwrB7lFg_1XkacMRZYMfEpghATdtp1JLDEUpmhEez1TAAS93TQR0xHt-DWOZoLqeqzRLJw70aSRzddWcEGDNlKq9c2yiKPR_nsvP3ccrwQrK5emipWpdaenoPtI5RrBz_eAoGvMbf_uKSU2T1019i3Nb5ypwQRX978VgvO976UBtx7lsNl8AZR8SOuWFGBwGuwoa690IHCTLmMRGhMI4QPWhzojDkkVMaBHFY1T0XP-c1RLaQdybm-xsQui9mktfXpJwns6KAchrhaRUCUQCBo0OVbTSRTCj5f6cpxg-2XdePnqx9BmnoyA5omLnm0YBqvjcWojC7RVpsjX-zTJmjyvZMu7pEco_DSW2HUmsn54hGZJ3J0i9Lh18i3H8wfErds75pWej9rNB-TD7-JPKvqLgyRbigcFxFAqm1faILD7afKlgvBsVnHsPghTpzhb83OMnwu7-h2gjB9wpTreT66TKE7kTsrNSVL-5oSp2NZqw1hJRrzwShQ9QbKZHyE66jR--gyNSDgV5SA0FhoDnTyJDYLuFWQD0j-7XwqR7P-zzQgErIifCa5Ltp5HXxT7v0W4oU9O3vuPjSmVR-Ou0S-daxIJ0v-EgHPXQKIUffoAS4hxv7I-lQOw-Qey6ozMXsCl9cuUmlkZRZ_X8WvOaQGR_v62D6m9op0KLDvbs8UzzF8Tf7foEPzKrl42acZe-EBj3id6E99SocYphYg2ziiTGNPOovfdw9XICT4TwiJvmewbGN1C4zLgV2NPEOMLHTyb0Eu3ED5TP4fS8xEuprHuXaADsHt15YlDHaGCBqKrw-z0xvX6pXVWvNbWz4SX8ka4-xW2CFyxOfQWiKOHfojWvyEt-eXGkdWcxqn_B-IHfJ-3-hOXQ_6kf8hbc6eygWcoU3cjpVtV4zNyothaV61twz4qv5EQPxYXUtsTdscqludlfXhsf9mCAgb5zd2UigpP52LoEfslGxtz6SMjodGCa9MmSDDVFxYA8W4CHmXISZJi-xo696pVOevWX9Ge6zE8JWm1JFU7KVvG4x0VNm7Oa-29yJqASZhh8BfRMMHcqEXGuhDOjhFrO90jn_4rqvUYQfkv0RMmbA_L5D-dWgmWuLp0kTzjYBOkQQ7m6QDSiDqaLkyDR-B1bEzLPn7MYDeinrhkxaZ2IJqErR4CwTf750Z7FbZ-2y7UDuP_Y7KZx7T9p45GkljpdSEPFOn2_vQvlbijNRGtsZGiHMum1ZkXfu66Tgd7PjHwOcRt5ZGQHJq8tvZPOCGSiMzRRrH5DOfFoXhkEY_Y_mmKt2ICV_oXG4qprHVk14--t7atYljxKgH5NYUmZGXWH--HjuiTLII5pAPUDnsucsDpuvd97-oMltfrXFkHxUWMl30y6QjJFk-HJbRy5xJgwZLttYwHDyFigY_3BPJw8Zy_bNugwzIMH-nku_6hTyFt8a4GEJMj2uq1HJR3vVmuRBqbFO7rlwYCHXX2_z9lqLMsS4vWvh8afPxjyjG7UVMR2gKGxdbIhPgWOr2xOPTpHGteE-7UhLEgT4UBhIXOODc5j-EgXe1b6h0thNVQpTtqJj_zxRqcTCvvU8_hCahkrhjbcqoEs-rOvcPPYk47WXSaYHUrmZF2HNO-Pey1kvMfK-1URXZJKL8tWHtlI3jIONQjIDTzD4HwfaFFwT4X-_ZVlW30wh8v9tlhVFFrmP_QjjYuuTczZljKXrrh_dZCQC80LnA-HvlwMyHU1Wij2kU50Uw_bd8G6-D8mk5NTfreNrm5VqV2GuSFBu-_XY0D36Y7GimUjb-D8Lty2-KDyuEmMwtgDQGvJ93m6vwVUCeUopUja9TY75mswW3uBWoAa0RGWS6H7md4VD_tcchJ6Q3fCoLWIdwWpGKguCBCtQdoAD9KG-tCkDzHoRgVC4pgHMdaMRGRMEVOrC975OGjTvGEt9jgBBezXBN0BrpcS-F87eY024AkPnuQAXL3P26q695WRcayewQRf60l8w0--xLdMYe3_ozNwluE2S3PfkYfD93_48a5CBeUl_hF7gaqbSiHFfYqIjvOxEW8RWgZIVOP2bbOPzsYlqv23iLdVSTX&cid=CAASEuRo19fPhTua6JCra9BkV0dqfQ HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&output=html&h=600&slotname=6612341565&adk=164548129&adf=807048394&w=268&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=268x600&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0001&fwr=0&rh=0&rw=268&resp_fmts=4&wgl=0&adsid=NT&dt=1537805946059&bpp=8&fdt=61&idt=618&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60%2C300x250&correlator=4595379343209&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=443&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=4&dtd=704
Cookie: IDE=AHWqTUkSQwqasz4SS3q-xmN_89YiHyU-ZtdNL5fNgBx0bRt78FI_jh3UpeWkJLLe

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Mon, 24 Sep 2018 16:19:08 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   10614
Md5:    7d61a2b8404523c7529c2bf458d7f5e5
Sha1:   9d3502361e7f4d929d1e64660ce49b11ffa91a07
Sha256: a39e5b6bb441fa837723e4055ccf1a69987fa86ece3a7b62140d3a6b873f80a5
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fplay-youtube-with-out-any-software.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3932
Md5:    43dff117f1fab5581569a3e899f95886
Sha1:   3e468c8a89e011af160fc6960a6309aed3c0fd67
Sha256: a30c64a0a8405e47b7eacbe279251aa47866cf60e6dcab4b9f4dac36d45de00d
                                        
                                            GET /AdServer/js/showad.js HTTP/1.1 
Host: ads.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=60809&predirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fusersync%3Fpmuservalue%3D

                                         
                                         88.221.73.109
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Wed, 26 Sep 2018 13:42:23 GMT
Last-Modified: Mon, 10 Sep 2018 09:45:02 GMT
Etag: "13006c6-8723-57581361e2e3e"
Cache-Control: max-age=172736, public
Server: Apache/2.2.15 (CentOS)
Accept-Ranges: bytes
Content-Encoding: gzip
Set-Cookie: KTPCACOOKIE=YES; domain=.pubmatic.com; path=/; max-age=7776000;
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Content-Length: 13128
Date: Mon, 24 Sep 2018 16:19:08 GMT
Connection: keep-alive
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13128
Md5:    2ec815ecfad1d21c36377d803246f7d7
Sha1:   d7e6895be9cfff8f7f92e621391aba111c8972bd
Sha256: 4a7ae6d72032108b04c17ea25eb1699cba427b736b0bf2efce10e1b7082928f2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 18 Sep 2018 10:37:16 GMT
Etag: 311707813203156F64586D789214B8F6A195A4A5
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=65292
Expires: Tue, 25 Sep 2018 10:27:20 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    0d9685656018a9a788ad25aa93080633
Sha1:   311707813203156f64586d789214b8f6a195a4a5
Sha256: 6e1c6da249b9624776e37cae2cfd489d7a728be6ca201e084dcfe5b06b469aab
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: 9455D0A915F13C9FC4B9E90F1B80065489592F14
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=239459
Expires: Thu, 27 Sep 2018 10:50:07 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    e3a58224ce658ab8c021417af2884828
Sha1:   9455d0a915f13c9fc4b9e90f1b80065489592f14
Sha256: 7996b16fdae2f97f8e9c041facad166c2f6d2eba1468db36ccf203ebc201aab4
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Flock-folder-without-any-software.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3932
Md5:    9feebd54d8cca1cdd795d92cd4b4c252
Sha1:   bb8cacfe845b888d044107a281344b1be334226e
Sha256: 61a9dd2fb633b0f60045a6808f0eeaad9eb768fb94fbb09f9b9874bdbfdff136
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.209.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    5c6bb9a0accef97e76e1e967cea1443e
Sha1:   98e58d2c4449ab40beef3909cda77fea0a33018f
Sha256: c0cb09e76cf701a6d402b9336ff18bd7d7baea45319871cfc9900b01f7638a73
                                        
                                            GET /plugins/like.php?href=www.facebook.com%2Fayaanx64s&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         31.13.72.36
HTTP/1.1 200 OK
Content-Type: text/html; charset="utf-8"
                                        
X-XSS-Protection: 0
Pragma: no-cache
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Cache-Control: private, no-cache, no-store, must-revalidate
Strict-Transport-Security: max-age=15552000; preload
X-Content-Type-Options: nosniff
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-FB-Debug: L9RskoF5jzn/3NqzsNAAYzfuI6xgs/O/UDWTY/wBivrQta+L7RkBiFwPAHOPFuZK8efAN8c+6SXRAstATZPuKg==
Date: Mon, 24 Sep 2018 16:19:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   227358
Md5:    95b10ab1a69266ae7cbbd00335ba1d13
Sha1:   f6922ac7fae06dc09bfa5a4e4bdd13daa961cada
Sha256: 1a6dca1d4abc7f489ee0397a07438810e8c08a7468c8d5cd4c42a8d9f1464e52
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fhow-to-resum-idm-broken-link.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3931
Md5:    0ed31e663787bfb3f4836b5d11a3820c
Sha1:   b28f9aa3b8b3bede5c9e85690a53890ab18ac9fa
Sha256: 7a6302929e3695b37e10658ac7086f188544023f043606f8ab4226cb97ed516e
                                        
                                            GET /sodar/V6zvOIoD.js HTTP/1.1 
Host: tpc.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&output=html&h=600&slotname=6612341565&adk=164548129&adf=807048394&w=268&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=268x600&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0001&fwr=0&rh=0&rw=268&resp_fmts=4&wgl=0&adsid=NT&dt=1537805946059&bpp=8&fdt=61&idt=618&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60%2C300x250&correlator=4595379343209&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=443&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=4&dtd=704

                                         
                                         172.217.22.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15146
Date: Wed, 12 Sep 2018 00:51:15 GMT
Expires: Thu, 12 Sep 2019 00:51:15 GMT
Last-Modified: Tue, 02 Jan 2018 21:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1092473
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   15146
Md5:    6a56e1d1c9c0c105245cbce244c876f3
Sha1:   6613490ab3735f37499d311c6efba3f689ec4abb
Sha256: ad20ef401ac229a0ab07b057ed9350c85816118a662c7cfa240fa5cd86c718f0
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2F1st-post-of-wonderarticles.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3920
Md5:    dff1fbb1839fa1b54ea49ebb1a09f1fa
Sha1:   1ec3a746a6a06825a02ae42d1954fa74eb175d13
Sha256: aa420a6e4809c2a88b21a0b2d7b44a7bff97b38655eefc6971825bb7ab9ea497
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/m=gapi_iframes_style_common,plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 60663
Date: Fri, 21 Sep 2018 23:04:12 GMT
Expires: Sat, 21 Sep 2019 23:04:12 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 234896
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   60663
Md5:    7f6962deae3b068b5ef19cecea54b042
Sha1:   e198e1357b1fd2acbd17eec55117bfe147040e98
Sha256: a0eb02d0c71e3567e99646e81ecbc2428f1f061e4f8435641a73335414ae5225
                                        
                                            GET /usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__ HTTP/1.1 
Host: b1sync.zemanta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         207.244.66.112
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Content-Length: 124
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: /usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__&s=2
P3P: CP="We do not support P3P header."
Pragma: no-cache
Set-Cookie: zuid=ccNI8d1EFIYwHCHpkvBA; Path=/; Domain=zemanta.com; Expires=Tue, 24 Sep 2019 16:19:08 GMT; Max-Age=31536000
Date: Mon, 24 Sep 2018 16:19:08 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   124
Md5:    a3959abab3d085b80fe52fa66dd074b8
Sha1:   1697527c5dcc0148ef9697195c49cb1ea82f3766
Sha256: ac841e80bb765085db14f6e073a67bb98957165843052ce44607a02da3e97e29
                                        
                                            GET /pcs/view?xai=AKAOjss1KtvKYOfl3e1j7vZq53Swn0GlybhKgEqKU6E7f7A5vM6XGYydjU0UcyvZDZ3lT0DpIE02VlLEi06RQyK9ccWdvZhqDw8jT3sOuAm47-1kf6w-Fmk6IynBJaZlPX-_mniWeXK30coN3gHk4RgfNP3Mui_O4Mz7W773jJVgJT4fFX3Kzlm5z6iTEZjDcqhOLnf_0TEuqL344pBGk6M9VjAf3l-PoIHl--ZofdYfGsKeNW2gEAlwyW5Jl5jttyA1Mt5iENzlhrKkB5Gp8k851VxfBLEcoWmCMtHwEgpYhHmEPA1UETkeP0PIrAWkHQEokpBp8RMGiQ8P9sgh3-k3eb4xp62bcOIXauN9SqW-HjsxDoN4xv3hNxZk7CHn0eKKZln-dr0wPw9a5NbFKDcJLpcgHK_06vgS2cr3V-sU6MqLS5BzbwiYqG9Sa6T2-d_z4QPiZ_Eo8SvjGKsw5dfghNpM9GEd06skgVOs8DvglBzpSMfpABRxsryR0EC8zWK7Ip6LwFRwXyKMAcQikLB2Rlf5rhNnOstdSPm7jTnCF4pBspyvYTUba6x2sxg8EDZYkE8hbAkmP93kRSOmG6qOGtkZmuE251WQJxlXKp4Wg-yXxVeRS5BIO2HYHTa-0aeCxBkk29I0X3_0US49--6oqSTP4tK90qBczjdj8FdIzWnH-V883tdPJtMkqugAQvrZy55OsXKPoNjI843KwZIHWZJ-E7isRyHLbLjqaeoMSbX2aH0qLjwHV1mNKFGs0wAaz2W9hX_L0isWNNYrVOOr7nuGDR2gbC4dw5BCg4UsosX_ZsQecdRf1rLI2JtOacYpHc3ersDZJ7jv-NLBzu8AsZVbI24XC9qmiCwqyDVHCJ6zgtVViEeELA517X02FPrYTH2xThOtLYLmkdRSyVcNDgKe5yNSvGH7AYM-519amlXZI87XioRBsGZOoCjVwt4FdmGLECp6U-s1CNDoacs2YRI35Sq1n4SXGO71ZIyTfv3ZduAhpK0pLIUSdcE&sai=AMfl-YTYWKj-r0HfTOO2JtPLOD8PNRt0svW_82a9idOk-VfI8qIKzFyF0h037KgSMdfBPIoiyLpsxU0cGJH1X098OReCnE8aF8MIxYW8OWbBjMoyy3mekcb4FMi8c5dyQ1kjojaIAZH7qG0Rr9QJnmA2-fU20ZijBg&sig=Cg0ArKJSzCn6-EqMDFE5EAE&urlfix=1&adurl= HTTP/1.1 
Host: googleads4.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&output=html&h=600&slotname=6612341565&adk=164548129&adf=807048394&w=268&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=268x600&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0001&fwr=0&rh=0&rw=268&resp_fmts=4&wgl=0&adsid=NT&dt=1537805946059&bpp=8&fdt=61&idt=618&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60%2C300x250&correlator=4595379343209&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=443&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=4&dtd=704
Cookie: IDE=AHWqTUkSQwqasz4SS3q-xmN_89YiHyU-ZtdNL5fNgBx0bRt78FI_jh3UpeWkJLLe

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Cache-Control: private
X-Content-Type-Options: nosniff
Date: Mon, 24 Sep 2018 16:19:08 GMT
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
                                        
                                            GET /sodar/6uQTKQJz.html HTTP/1.1 
Host: tpc.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-3890207601569495&output=html&h=600&slotname=6612341565&adk=164548129&adf=807048394&w=268&fwrn=4&fwrnh=100&lmt=1537157379&loeid=40993910&rafmt=1&guci=1.2.0.0.2.2.0&format=268x600&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07&ea=0&flash=10.0.45&host=ca-host-pub-1556223355139109&h_ch=L0001&fwr=0&rh=0&rw=268&resp_fmts=4&wgl=0&adsid=NT&dt=1537805946059&bpp=8&fdt=61&idt=618&shv=r20180917&cbv=r20180604&saldr=aa&abxe=1&prev_fmts=680x60%2C680x60%2C300x250&correlator=4595379343209&frm=20&pv=1&ga_vid=2029313138.1537805945&ga_sid=1537805945&ga_hid=1452387129&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=791&ady=443&biw=1159&bih=754&scr_x=0&scr_y=0&eid=40993900%2C21060853&oid=3&rx=0&eae=4&fc=528&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=144&bc=1&ifi=4&dtd=704

                                         
                                         172.217.22.161
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7233
Date: Wed, 12 Sep 2018 00:51:16 GMT
Expires: Thu, 12 Sep 2019 00:51:16 GMT
Last-Modified: Tue, 02 Jan 2018 21:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1092473
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   7233
Md5:    30bf1c51eb9c0ba258ea2df31d24bc98
Sha1:   d13abffacc94ee31dfd5a094bfa975cca8e4d292
Sha256: 25a3afe99572ebbe3af74f504252d7fe97ebd580d47f5b734c286cc40a82131e
                                        
                                            GET /rsrc.php/v3/yb/l/0,cross/7OD4H-1YlN5.css HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.facebook.com/plugins/like.php?href=www.facebook.com%2Fayaanx64s&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Cache-Control: public,max-age=31536000,immutable
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' *.atlassolutions.com blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Timing-Allow-Origin: *
Expires: Mon, 23 Sep 2019 16:52:36 GMT
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Content-MD5: ghas9o5aI7YQ6UHqGV+fBg==
X-FB-Debug: xFuXrj8rC3x45Mo8PPl/oX2KQWm9jNzYrRYPHwqCKBUCR4fRZMhp2JaoX32T/8jUlpboKkrVWd6t2FScPStmIw==
Date: Mon, 24 Sep 2018 16:19:09 GMT
Connection: keep-alive
Content-Length: 3053


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3053
Md5:    8216acf68e5a23b610e941ea195f9f06
Sha1:   22ab9d69cbda6987727ef5b5c6dfd8f76a8e5170
Sha256: e90bb89a2d7a6c84b0337428dfe9a652eeb812346c0dae806db3ced548f407ee
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/m=auth/exm=gapi_iframes_style_common,plusone/rt=j/sv=1/d=1/ed=1/am=wQ/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/cb=gapi.loaded_1 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27271
Date: Sat, 22 Sep 2018 01:04:06 GMT
Expires: Sun, 22 Sep 2019 01:04:06 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 227703
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   27271
Md5:    c0ff2cd35576210a3053c9946b2d75d8
Sha1:   2d27adeb7b0e49b93b2cb840d9de5427b7a049ed
Sha256: b002595b7480eb9278362f89be703ae506c2033c08ac9f236c8113d524e40112
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 18 Sep 2018 21:25:14 GMT
Etag: 5985F63251CF94701B83CC064AAB5FACE40A2617
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=104160
Expires: Tue, 25 Sep 2018 21:15:09 GMT
Date: Mon, 24 Sep 2018 16:19:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    f42efce2b48a8e5d45eff4520eb18bc4
Sha1:   5985f63251cf94701b83cc064aab5face40a2617
Sha256: a342be39db18b97e5937401ffda8279f2216f810e8149899d5c5b0d705d6c84f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 20 Sep 2018 11:00:19 GMT
Etag: 172CD2BF75555D4C4247F788FDFED253D82635E3
X-OCSP-Responder-ID: rmdccaocsp25
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=239429
Expires: Thu, 27 Sep 2018 10:49:38 GMT
Date: Mon, 24 Sep 2018 16:19:09 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    c593b437a4b4a23c31f7ae12f6903b44
Sha1:   172cd2bf75555d4c4247f788fdfed253d82635e3
Sha256: a728b9f13d33f828a074e68870a3fe4750dde051c0ab8b2e95499fc9148136de
                                        
                                            GET /usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__&s=2 HTTP/1.1 
Host: b1sync.zemanta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: zuid=ccNI8d1EFIYwHCHpkvBA

                                         
                                         207.244.66.112
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Content-Length: 90
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://router.infolinks.com/dyn/zmn-usync?uid=ccNI8d1EFIYwHCHpkvBA
P3P: CP="We do not support P3P header."
Pragma: no-cache
Set-Cookie: zuid=ccNI8d1EFIYwHCHpkvBA; Path=/; Domain=zemanta.com; Expires=Tue, 24 Sep 2019 16:19:09 GMT; Max-Age=31536000 zuidsync=; Path=/; Domain=zemanta.com; Expires=Sun, 14 Oct 2018 16:19:09 GMT; Max-Age=1728000
Date: Mon, 24 Sep 2018 16:19:09 GMT


--- Additional Info ---
Magic:  ASCII text
Size:   90
Md5:    0462b4067d7e8911677b9c8cf1ef940b
Sha1:   75388c83876da1c8bffc102fd70faee032d8a2b2
Sha256: d73d932c4471a741a777b5f4ed506335aa1d3cf539257ee46f2e07b9978515e9
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&source=blogger%3Anavbar%3Aplusone&size=medium&hl=no&origin=https%3A%2F%2Fwww.blogger.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:09 GMT
Date: Mon, 24 Sep 2018 16:19:09 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3898
Md5:    7beb46024172f3d8256051f0c307e3e0
Sha1:   79ecb3e53374c5c9dd8f8f5aea284d92aea3ba67
Sha256: f0759f34937a491407367e4829f38c7e5f42539d137f25ea1ea1b8727cee99d9
                                        
                                            GET /bg/E9lL8XRvkespvye8Tnk694--i0vlSU9AT6qTL-phHJI.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/6uQTKQJz.html

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5039
Date: Mon, 10 Sep 2018 20:53:50 GMT
Expires: Tue, 10 Sep 2019 20:53:50 GMT
Last-Modified: Mon, 10 Sep 2018 10:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1193119
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   5039
Md5:    f497bc3a9080970d937af16ff246e601
Sha1:   7c069a9368bf2a30b8aa6aa054c5ba613b32b034
Sha256: af9f346d56aca99a38d845135e6cafe6c329db733b1e7eecda9e5f029ec520ad
                                        
                                            GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.blogger.com&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: accounts.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.blogger.com/navbar.g?targetBlogID=8770128573749991206&blogName=Wonder+Articles&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://wonderarticles.blogspot.com/search&blogLocale=en_GB&v=2&homepageUrl=http://wonderarticles.blogspot.com/&vt=-1056331407000260190&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.237
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 24 Sep 2018 16:19:09 GMT
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   363
Md5:    e8afed805d23f12b5082cf6081eb01e2
Sha1:   bcb2c425461480369355ed22d772b52cb58417bd
Sha256: 32c6eea76892ed224600ff9473e087366f7d7ad1572784268b81b49058321cb3
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fwhat-is-main-difference-between-ddr1.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Vary: Accept-Encoding
Timing-Allow-Origin: *
Expires: Mon, 24 Sep 2018 16:19:08 GMT
Date: Mon, 24 Sep 2018 16:19:08 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3936
Md5:    4c70d8e3804b057681293b50dc7c4593
Sha1:   0815851507357cccbb2fa827bca4d16fcd5c0716
Sha256: f6261baa9b9605f32dbf537d801d54acde536515e4827f70b60d8d14a7e0df11
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.nf9gNjhyOiw.O/am=wQ/rt=j/d=1/rs=AGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA/m=googleapis_client,gapi_iframes_style_common,gapi_iframes_iframer HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://apis.google.com/se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fshahid-afridi-photo-copy-must-watch.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         216.58.207.206
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46104
Date: Fri, 21 Sep 2018 23:04:14 GMT
Expires: Sat, 21 Sep 2019 23:04:14 GMT
Last-Modified: Thu, 20 Sep 2018 22:36:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 234895
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46104
Md5:    42d4fe0a0212f4ae422fd23ac677819d
Sha1:   17aced2ac0493be5440378469ce6332f9221fff6
Sha256: 71198c98146b75ce9dc90acb012c1e62cd574c2ada7a3ff36e09d0e8e6ea6bd3
                                        
                                            GET /pagead/gen_204?id=sodar&v=24&t=2&bgai=Bl0MMfA6pW6nbFIG6ygXU-oyQDQAAAAA4AeAEAg&bg=!kJOlk4tE4FFsouek-uICAAAA41IAAAAdCgAFogkg4ECZASSUqZiOclRa0Qh2VFDFTYSmm70N0SoCO55OiC0TjF4V9cpxCCy3QsWA7BC7pKQO-vDT3mI25C03kzQ_oNcKdXiccSiCalFE-8qxBsjR0PYyX-sCqp1glhfLdBNGOYqZ2VQUa6QVyccSX8vkf0OXyXgIv0hxk7vy5PVTA94XGSJJ_zkIdZ9a_ARhaWPyjADNhFNXSWbrto-tzZRCn7iLk7MfU9GBm8ySVGZ7-XKXqScd3NFjD3gPk3RTzYvlsR6WMMJb7vbFvJyaerbQ1SzpgTGtfNq96NQ0968Jv-DFJvT58A9fBezoz6Zwvgj7yIh7pPzIqsatfTAzK9SSTVnXnMYRefpdOWTgvXbUh4ULzu88IvLLwmeMvuHlN3sQpWnxVqa4PcX1 HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/6uQTKQJz.html

                                         
                                         172.217.22.162
HTTP/1.1 204 No Content
Content-Type: image/gif
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Mon, 24 Sep 2018 16:19:09 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="44,43,39,35",quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
                                        
                                            GET /AdServer/PugMaster?rnd=80514791&p=60809&s=0&a=0&ptask=ALL&np=0&fp=0&mpc=0&spug=1&coppa=0&gdpr=0&gdpr_consent=&sec=1&kdntuid=1 HTTP/1.1 
Host: image6.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ads.pubmatic.com/AdServer/js/showad.js
Cookie: KTPCACOOKIE=YES; pi=60809:2

                                         
                                         185.64.189.115
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Set-Cookie: KADUSERCOOKIE=758186BB-A0F5-43E9-892F-C64A9EDCBE59; domain=pubmatic.com; path=/; max-age=7776000; DPSync2=1538956800%3A201_197%7C1537833600%3A174%7C1540339200%3A198; domain=pubmatic.com; path=/; max-age=7776000; SyncRTB2=1538352000%3A2_15%7C1538956800%3A46_22_64_194_78_54_55_104_5_21_7_3_8_92_99_13_52_56_161_81_176_189%7C1538611200%3A63; domain=pubmatic.com; path=/; max-age=7776000;
Date: Mon, 24 Sep 2018 16:19:10 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   7767
Md5:    ee4aec6b7799bdca2083d085492f0838
Sha1:   4f075047e44b4a486b5f663163127e78d45b16ee
Sha256: 7ea8c9ffab9631100e4f157bc9b9cc5ee7b1626ad26fb0e0a056fc3549e697da
                                        
                                            GET /dyn/zmn-usync?uid=ccNI8d1EFIYwHCHpkvBA HTTP/1.1 
Host: router.infolinks.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: __cfduid=d1b552fefbcc26c2c7b79a6d64c760a4d1537805943

                                         
                                         104.16.232.152
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Mon, 24 Sep 2018 16:19:10 GMT
Content-Length: 35
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Set-Cookie: ZMNUSERCOOKIE=ccNI8d1EFIYwHCHpkvBA; Domain=infolinks.com; Expires=Sun, 23-Dec-2018 16:19:10 GMT; Path=/
Pragma: no-cache
Expires: Sun, 24 Sep 2017 16:19:10 GMT
P3P: CP="NON DSP NID OUR COR"
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 45f692334e184279-OSL


--- Additional Info ---
Magic:  GIF image data, version 87a, 1 x 1
Size:   35
Md5:    c0a97b478925284bd94e3271f6197c08
Sha1:   543e1556715b858c654397c62c0894dd6f294703
Sha256: 16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
                                        
                                            GET /accounts/o/25936583-postmessagerelay.js HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.blogger.com&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3874
Date: Thu, 20 Sep 2018 11:23:19 GMT
Expires: Fri, 20 Sep 2019 11:23:19 GMT
Last-Modified: Thu, 13 Sep 2018 04:28:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 363361
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   3874
Md5:    1da1fdc79bdf7ac425840eb38b97e6eb
Sha1:   6f1c9d1127bdcd13258fd37c05a002e964d14e86
Sha256: cdcf8796539c10b14e76c5bbc7765b0e27552ab8c5f2163804876bd93acf2114
                                        
                                            GET /pixel?google_nid=pubmatic&google_cm&google_sc HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ads.pubmatic.com/AdServer/js/showad.js
Cookie: IDE=AHWqTUkSQwqasz4SS3q-xmN_89YiHyU-ZtdNL5fNgBx0bRt78FI_jh3UpeWkJLLe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /serving/cookie/match?party=14&cid=758186BB-A0F5-43E9-892F-C64A9EDCBE59 HTTP/1.1 
Host: c1.adform.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ads.pubmatic.com/AdServer/js/showad.js

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /se/0/_/+1/fastbutton?usegapi=1&annotation=inline&width=300&size=medium&source=blogger%3Ablog%3Aplusone&hl=en_GB&origin=http%3A%2F%2Fwonderarticles.blogspot.com&url=http%3A%2F%2Fwonderarticles.blogspot.com%2F2013%2F07%2Fcorel-draw-book-urdu.html&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.en_US.nf9gNjhyOiw.O%2Fam%3DwQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCPHIx2ovNee4frLD1SBlad1d6uBQA%2Fm%3D__features__ HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07
Cookie: NID=139=ZwveSf2-tnzhcwbYiUJWo_Zzn03ByB-gvwif8_rqFXzcwrromJD7RoaLLkDMhFqoY7UtrFlpSa43YE-cQgJY0wFx4Vi_S0X7KrbDXaal1w-s7_9Me6wORiF81S7_8daz

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /sync/img?mt_exid=3&redir=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3FpartnerID%3D27%26partnerUID%3D%5BMM_UUID%5D HTTP/1.1 
Host: sync.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ads.pubmatic.com/AdServer/js/showad.js

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /utils/xapi/multi-sync.html?p=answer_media&endpoint=us-west HTTP/1.1 
Host: secure-assets.rubiconproject.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /api/v1/seller/victoria290?widget_id=de44fa14-87ef-40ea-b696-35f6b84ab1a7 HTTP/1.1 
Host: widgets.fiverr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://wonderarticles.blogspot.com/2013/07

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         0.0.0.0
                                        


--- Additional Info ---