tmi.maariv.co.il/
104.20.20.195301 Moved Permanently 0 B IP 104.20.20.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 12:57:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 13:57:23 GMT
Location: https://tmi.maariv.co.il/
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793317a04ea9fac4-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5136
Expires: Thu, 02 Feb 2023 14:22:59 GMT
Date: Thu, 02 Feb 2023 12:57:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3479
Expires: Thu, 02 Feb 2023 13:55:22 GMT
Date: Thu, 02 Feb 2023 12:57:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5472
Expires: Thu, 02 Feb 2023 14:28:35 GMT
Date: Thu, 02 Feb 2023 12:57:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 12:43:31 GMT
content-type: application/json
age: 832
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FMIQC9o+4/efx6rFxxMSsEgJrOIWA0SZKVJOPltOPFBl3H/4dO3KVrPxu8ujmRPDO+hnVpfq0Ac=
x-amz-request-id: A6Z79KZ0EXGC2HSY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 12:23:06 GMT
age: 2057
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 12:57:23 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 2bc79ff603eeb6b5f7f5ef3ca00a54c0
352929346bcb0e5307b1c6664ec811f4bb0736cc
7d936b0fda2de383271d5f18ce8e40102a8f491da7403256fe2b41cf76bb9be1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 12:57:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 20:34:23 GMT
Expires: Thu, 02 Feb 2023 20:34:23 GMT
ETag: "352929346bcb0e5307b1c6664ec811f4bb0736cc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 12:49:05 GMT
age: 499
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/tmi-logo.png
104.20.19.195200 OK 11 kB URL HTTP/2 tmi.maariv.co.il/Images/tmi-logo.png
IP 104.20.19.195:0
File type PNG image data, 101 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash dc552d314c5924703583ea42ba05da70
239e0bbeb974b210f9c0a45cf57107e9747945cb
0f31ead595ebd3a367b9a290084ed1ff0a3bfb3233c7abedb4c2acd6a9057ac9
GET /Images/tmi-logo.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 11050
cache-control: max-age=604800
last-modified: Wed, 12 Jun 2019 11:23:31 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
etag: "7125ae431121d51:0"
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
age: 473700
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HtAJBQHaIJHB5ng6bvAKJi7iOV9gjWwNun3R1wbLCb8PL5E0DtvtdA==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a60fe4b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/images/play_desktop.png
104.20.19.195200 OK 5.1 kB URL HTTP/2 tmi.maariv.co.il/images/play_desktop.png
IP 104.20.19.195:0
File type PNG image data, 81 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 21f7b1bdc493882bd68b08f270d44b68
211c5c90d37d1c994016b8e5fde5745f3e084460
9a96444811f34b18d9039ed1dd977b1dcdcbaa66912b1cbdd78587d10f1a1e90
GET /images/play_desktop.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 5066
cache-control: max-age=604800
last-modified: Thu, 27 Jun 2019 12:20:16 GMT
etag: "8283ceade22cd51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WZOHHPWapDQeg3Z4gLlpvUnE5sRrg8PbLRRDo6vfhOf97aj4sKoEbQ==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a61ff5b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/tmi_vod.png
104.20.19.195200 OK 861 B URL HTTP/2 tmi.maariv.co.il/Images/tmi_vod.png
IP 104.20.19.195:0
File type PNG image data, 43 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ac175df6c0124526eb81efcd1e35ec3
86cd3c0dce0cc8391897b2fbfa1aa0eeb92dfc47
5af2e41c1d06f223a28bf9bc722564ad28c45536a3753e718d6c1a3ad6459ef4
GET /Images/tmi_vod.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 861
cache-control: max-age=604800
last-modified: Mon, 17 Aug 2020 07:18:55 GMT
etag: "db1e87aa6674d61:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
age: 395807
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ACYDwKfSEyB12teqbOAei2ymi7bHQU9ELARHnt-bagW8B0n490yrEg==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a6280fb51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/control_vod_gragiant.png
104.20.19.195200 OK 2.2 kB URL HTTP/2 tmi.maariv.co.il/Images/control_vod_gragiant.png
IP 104.20.19.195:0
File type PNG image data, 308 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 868638c6d59bb4c1901126a53fff5afb
2166196e433fde01f6564cc3a51ab6bf54e4c5aa
cfaf892169d5b31e52ec74b7e464bd7f7827b5b56658be431c866fad4d715d6d
GET /Images/control_vod_gragiant.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 2166
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:23 GMT
etag: "9059a1467d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
age: 550277
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3zcCLtptK6QyY1DMx3ibQj9EJaM2CQrGZh4fv2pCkrnJx9PctCyepQ==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a62815b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/tmi_vod_hp.png?ver=4
104.20.19.195200 OK 5.2 kB URL HTTP/2 tmi.maariv.co.il/Images/tmi_vod_hp.png?ver=4
IP 104.20.19.195:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f88d099ba002e7f7ea87b5747d08079
5b00586f8d647d5b1ef71cf963479177e69ff8ff
c1b319bcd4bd3e8d91a908f24828432222cc0a42ff4aa225a963131814184899
GET /Images/tmi_vod_hp.png?ver=4 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 5207
last-modified: Tue, 13 Apr 2021 06:17:17 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
cache-control: max-age=604800
etag: "581288a72c30d71:0"
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sr6mxjacAnUNT42A4i_LVZu3Vj8HaEe2a-KFpNi1WBxy8gwpU9VvLA==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a63828b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/tmi-logo-footer-yellow.png
104.20.19.195200 OK 2.7 kB URL HTTP/2 tmi.maariv.co.il/Images/tmi-logo-footer-yellow.png
IP 104.20.19.195:0
File type PNG image data, 40 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 24bc4c2dd78eac56d7a694183193eb37
4d39ac1ea4c52cd6a488c8d9679f9f9c171f7c8b
1bbe25b0530001c1a829d2014d3784724bebaabd86a16b04768cc18cad76fc1d
GET /Images/tmi-logo-footer-yellow.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 2699
cache-control: max-age=604800
last-modified: Mon, 28 Nov 2022 12:09:13 GMT
etag: "1d8cbb3a223d91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
age: 242358
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R5Hd3jqsKHXUe0t8Ar7Q0aXBfc96e1ybP0OndLy749i2_W2_br02uw==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a6887eb51e-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash bfb15b7d5e5f53e3d815e7a5b388fe49
241fb94b39429a655a1b3bb5074a63591acf0d7d
8a1231ee3734c926ade715baea0ad80c6f017d741a5b299a39e99b53ae28fa13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3513
Cache-Control: max-age=152430
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63db55e9-118"
Expires: Sat, 04 Feb 2023 07:17:54 GMT
Last-Modified: Thu, 02 Feb 2023 06:19:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
tmi.maariv.co.il/Images/search.svg
104.20.19.195200 OK 612 B URL HTTP/2 tmi.maariv.co.il/Images/search.svg
IP 104.20.19.195:0
Hash 15e3cfbcdd9c753b61146b0f9ce7f333
336eb9831fee78ff9d1fbc2e3be13998026640b7
7a4b7bea943c635ca4f33c1eab15b7087ed19f5a87331c696fd911bf4d2f0546
GET /Images/search.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
last-modified: Wed, 12 Jun 2019 11:23:21 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
cache-control: max-age=604800
etag: W/"895aac3d1121d51:0"
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tcGDn2R8iSVSgj5ETfZU_vUqD6D_rC2HW1RINnG3MDS52-e8MjGovQ==
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a60ff0b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tmi.maariv.co.il/images/top_biz.png
104.20.19.195200 OK 11 kB URL HTTP/2 tmi.maariv.co.il/images/top_biz.png
IP 104.20.19.195:0
File type PNG image data, 157 x 154, 8-bit/color RGBA, non-interlaced\012- data
Hash a09d3f0d58e247e0945484a5e3a9f6db
40566e2da55bfb111ff0c77fa6e1df86b2088cb6
2e7c6ce78ae8014851320c6e0dfd1f58a2eae2afc96511d7bb46e1fbb341a379
GET /images/top_biz.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 10906
cache-control: max-age=604800
last-modified: Thu, 27 Jun 2019 07:13:21 GMT
etag: "83823acdb72cd51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V17btZU4Ume3I6wMbenJuSbIeckQXWwwM9CJZ8jit5wcco3IEGokVw==
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a68879b51e-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Tue, 31 Jan 2023 02:45:54 GMT
etag: 0x8DB033545CD6338
x-ms-request-id: bec856a9-201e-0167-71d1-352d14000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 65935
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317a6eb65b4f4-OSL
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/7/9/3479475-46.jpg
54.230.111.34200 OK 38 kB URL HTTP/2 img.wcdn.co.il/3/4/7/9/3479475-46.jpg
IP 54.230.111.34:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 1024x768, components 3\012- data
Hash 7e7fe1af075c36c147970e16c338d453
36c215eb424551e9bf3f79d8165bbbfee84c080a
cc39e403e91b0e548320deb3eecd51537931cf8888f9fc6524ccd61ae2ef5cfc
GET /3/4/7/9/3479475-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 37536
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 337761127514792485030262266867170979120,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 337761127514792485030262266867170979120,d2bce9e04f88d43dd8350e859c701704
etag: "7e7fe1af075c36c147970e16c338d453"
last-modified: Wed, 04 Jan 2023 16:31:31 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21937-LGA
x-cache-hits: 1
x-timer: S1674652091.328122,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OdlXgnDdwOP4ZRSZFt-OP-TYenrh6YkqAT3M_Ion87oqrhj65SDhTA==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/5/3485964-46.jpg
54.230.111.34200 OK 56 kB URL HTTP/2 img.wcdn.co.il/3/4/8/5/3485964-46.jpg
IP 54.230.111.34:0
File type JPEG image data, baseline, precision 8, 1024x768, components 3\012- data
Hash ad87b42fd55402a86ebc598f8e1afbee
a0f38c9a98619c6a268c13744a5af4aa5208f526
9e712a53c5e4fec411c47e48ce2fba713f14e0bfb336b49409ee26b4fd03832f
GET /3/4/8/5/3485964-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 55692
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 399977080804764985040933474251688646103,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 399977080804764985040933474251688646103,d2bce9e04f88d43dd8350e859c701704
etag: "ad87b42fd55402a86ebc598f8e1afbee"
last-modified: Thu, 19 Jan 2023 15:09:21 GMT
server: cloudinary
status: 200 OK
timing-allow-origin: *
x-request-id: c68df5a9b528be3e2865fa9fe5ae8564
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21961-LGA
x-cache-hits: 1
x-timer: S1674652091.310276,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1U9YCF4whTeBC0hrfPkDJnkwoqEFYOXxEdusoZk8D-yDvMFgS-Uftg==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/7/8/3478680-46.jpg
54.230.111.34200 OK 54 kB URL HTTP/2 img.wcdn.co.il/3/4/7/8/3478680-46.jpg
IP 54.230.111.34:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 1024x768, components 3\012- data
Hash 08024e65cc94017928316afe1dba67d0
8afbb441b27f454d28d361f99f50994047799b9e
06426acb5a0664f503562315c7294c9ade06c3ca6c82e80769f2d32b73996f8c
GET /3/4/7/8/3478680-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 54346
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 309256497155931850674779429160629006762,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 309256497155931850674779429160629006762,d2bce9e04f88d43dd8350e859c701704
etag: "08024e65cc94017928316afe1dba67d0"
last-modified: Tue, 03 Jan 2023 11:01:25 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-iad-kjyo7100056-IAD
x-cache-hits: 1
x-timer: S1674652091.133722,VS0,VE4
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kT2bSMjgargkq0lCvj7QRpaKs6nuR3Cq5MvitHtEGzx9aM5xvS6P0w==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/7/7/3477737-46.jpg
54.230.111.34200 OK 35 kB URL HTTP/2 img.wcdn.co.il/3/4/7/7/3477737-46.jpg
IP 54.230.111.34:0
File type JPEG image data, baseline, precision 8, 1024x768, components 3\012- data
Hash e79d33ee25684168c20e1045dbedae6c
2e329141a3d786059c5db2048cf03dd4dad630b8
d3bad48d456c011a43f4774db57bb400e39252c8cf04b38423bcc76a659497a6
GET /3/4/7/7/3477737-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 35106
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 242518576877835324260284159861831749791,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 242518576877835324260284159861831749791,d2bce9e04f88d43dd8350e859c701704
etag: "e79d33ee25684168c20e1045dbedae6c"
last-modified: Sun, 01 Jan 2023 13:15:32 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21930-LGA
x-cache-hits: 0
x-timer: S1674652091.129874,VS0,VE94
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3uvu_TAJvh9ZVg0O7sy9IQGpUmvFCxoc7MLgy_BzFXVdddIAdNyIig==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/7/1/3471357-46.jpg
54.230.111.34200 OK 48 kB URL HTTP/2 img.wcdn.co.il/3/4/7/1/3471357-46.jpg
IP 54.230.111.34:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 1024x768, components 3\012- data
Hash b68866941ecc55963f824d723f2429a6
b19683d69ae5da03567a3effd467e45e348368d0
0cf17d5bc6b04765650c163eb7753dc85b35f0feb3a6dc516994003bc5556724
GET /3/4/7/1/3471357-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47885
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 241570450460323631688949186926143770260,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 241570450460323631688949186926143770260,d2bce9e04f88d43dd8350e859c701704
etag: "b68866941ecc55963f824d723f2429a6"
last-modified: Fri, 16 Dec 2022 14:01:52 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-iad-kjyo7100107-IAD
x-cache-hits: 1
x-timer: S1674652091.325767,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5RKCVsYrUsnhqPgDiS-IwIXYxCIePJw4_0TtdedOfIMfVPyodsqbrg==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/6/3486690-46.jpg
54.230.111.34200 OK 61 kB URL HTTP/2 img.wcdn.co.il/3/4/8/6/3486690-46.jpg
IP 54.230.111.34:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 1024x768, components 3\012- data
Hash 58f3ae6bc2af67fb279623acd345c149
3561bc0759249e9f5309cf20b12aabe20c742f9f
098503fb87cd00caa73f3bed93ad7a859e0c8e5fd6e6ae73d7627d7cac868e43
GET /3/4/8/6/3486690-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 60650
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 112953894079743919189724494296267923147,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 112953894079743919189724494296267923147,d2bce9e04f88d43dd8350e859c701704
etag: "58f3ae6bc2af67fb279623acd345c149"
last-modified: Sat, 21 Jan 2023 21:28:06 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21944-LGA
x-cache-hits: 1
x-timer: S1674652091.306437,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 685gr3QySgWiWvU96fnF5QWq6kz1w1paaz33yY8g3dPVFS5inDnTNQ==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/7/3487149-46.jpg
54.230.111.34200 OK 35 kB URL HTTP/2 img.wcdn.co.il/3/4/8/7/3487149-46.jpg
IP 54.230.111.34:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.91.100", baseline, precision 8, 1024x768, components 3\012- data
Hash 1f4571eeaf7c351034910022335e403a
0f151b55f349f640981d7d45c3fd975c900bcb14
e399dfdc3c2214ad5824df535ada676ccaa9e55ebf425c6d9e724076d32f5dbf
GET /3/4/8/7/3487149-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34895
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 362489274099012330836514838232780071292,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 362489274099012330836514838232780071292,d2bce9e04f88d43dd8350e859c701704
etag: "1f4571eeaf7c351034910022335e403a"
last-modified: Sun, 22 Jan 2023 17:55:16 GMT
server: cloudinary
status: 200 OK
timing-allow-origin: *
x-request-id: db7c9c9fff49aade4710b911b188f531
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-iad-kjyo7100052-IAD
x-cache-hits: 1
x-timer: S1674652091.136058,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uuHuAiIWaOPmo3FLrl1dwZIp_IDxDHUizVRRsOYtxnpuduPwGL18YQ==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/8/3488111-46.jpg
54.230.111.34200 OK 35 kB URL HTTP/2 img.wcdn.co.il/3/4/8/8/3488111-46.jpg
IP 54.230.111.34:0
File type JPEG image data, baseline, precision 8, 1024x768, components 3\012- data
Hash eebf98c615f33ff5e0d555c7b97442e2
8a4a55cd13475ce86e2f9959cc4204cec9882de6
c5f209e66a73d306832eec4b450a3de2edefa5d1f7a4a1039b28a33efcf3eefa
GET /3/4/8/8/3488111-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34645
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 306957440702104355376422467349323760513,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 306957440702104355376422467349323760513,d2bce9e04f88d43dd8350e859c701704
etag: "eebf98c615f33ff5e0d555c7b97442e2"
last-modified: Tue, 24 Jan 2023 09:10:00 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21933-LGA
x-cache-hits: 1
x-timer: S1674652091.131651,VS0,VE2
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9R1Arx1tMggUo5Xk0Km_h8L7b0yqwrtThJQbGVkyA1FJFZbGpAMhPw==
age: 690553
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/5/3485284-46.jpg
54.230.111.34200 OK 63 kB URL HTTP/2 img.wcdn.co.il/3/4/8/5/3485284-46.jpg
IP 54.230.111.34:0
File type JPEG image data, baseline, precision 8, 1024x768, components 3\012- data
Hash dfbde73ece6f42e4c87aad555cc8640a
88fc3da30115a1b4e878edd9627567b8bdfbdac6
ee9f73023c7a210216a709d346c4ac25b8021c5be3157c9ba838ed1b68b4207d
GET /3/4/8/5/3485284-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 63129
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 255409470733125537413108421820957194348,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 255409470733125537413108421820957194348,d2bce9e04f88d43dd8350e859c701704
etag: "dfbde73ece6f42e4c87aad555cc8640a"
last-modified: Wed, 18 Jan 2023 13:01:32 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-iad-kiad7000100-IAD
x-cache-hits: 1
x-timer: S1674652091.137879,VS0,VE2
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1s4mbHG-4cvpl1Rxe4AUVW6eh68Cl7CZe_guCFwvO8bds334aucfkQ==
age: 690553
X-Firefox-Spdy: h2
tmi.maariv.co.il/fonts/NarkissBlock-Regular.woff
104.20.19.195200 OK 30 kB URL HTTP/2 tmi.maariv.co.il/fonts/NarkissBlock-Regular.woff
IP 104.20.19.195:0
File type Web Open Font Format, CFF, length 30128, version 0.0\012- data
Hash 810faaf47e8ef7f617d8d880968179f0
ad4d5a4798d61dcc89f6bc79630e9362cb14d565
f4bf033d0d56e2b302ac6621ffe4cbb2aa5a8a1207548c996c93204654eae710
GET /fonts/NarkissBlock-Regular.woff HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tmi.maariv.co.il/Content/fonts.css?ver=2020_08_18_1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: font/x-woff
content-length: 30128
cache-control: max-age=604800
last-modified: Tue, 25 Jun 2019 08:48:01 GMT
etag: "374dfeb1322bd51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
age: 602011
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zEbs83y04MvH7runOvropNND7KQBnvVJTjfVUibNaaRczTMCglTygQ==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a779edb51e-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10802
Expires: Thu, 02 Feb 2023 15:57:26 GMT
Date: Thu, 02 Feb 2023 12:57:24 GMT
Connection: keep-alive
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/672347
54.230.111.36200 OK 6.5 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/672347
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9bf338e526c0b85be4d7fe10741731f2
1053057399ff75109b26ad92f1c86826fc333ae3
6fb3aaf9b23de0a570487ba463fcc0d2f2a713595cd715427da2642e1848a2a0
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/672347 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6514
content-disposition: inline; filename="672347.webp"
etag: "9bf338e526c0b85be4d7fe10741731f2"
last-modified: Wed, 01 Feb 2023 17:18:35 GMT
date: Wed, 01 Feb 2023 17:19:48 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p8-UZbXcqzqoXGUWBApErdRmtAFrPEx9xe9C8KVPL7F8Yig0Zh-Ilg==
age: 70656
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/704660
54.230.111.36200 OK 4.3 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/704660
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 440x254, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bfa308519cbf139f92a30a8f4e6b8dd2
a7d7a67fbee47195758ac76d56efa7478cd35614
e6d30b0be7dac9ff4bd9f111911e8588b87ca78ad24742ba31110069492171d0
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/704660 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4300
content-disposition: inline; filename="704660.webp"
etag: "bfa308519cbf139f92a30a8f4e6b8dd2"
last-modified: Tue, 24 Jan 2023 19:34:46 GMT
date: Sun, 29 Jan 2023 11:23:38 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wwQ3aQA1766X_ceeR1xRE4zCLF_eyTNE8nyBvvGk_cVFsn_Nsxs2LA==
age: 351226
X-Firefox-Spdy: h2
tmi.maariv.co.il/fonts/NarkissBlock-Bold.woff
104.20.19.195200 OK 31 kB URL HTTP/2 tmi.maariv.co.il/fonts/NarkissBlock-Bold.woff
IP 104.20.19.195:0
File type Web Open Font Format, CFF, length 31088, version 0.0\012- data
Hash 09ea62b2f1568e6ee9b5555199e9a83e
3b8e3562a553f5eba62da2e2a687ce3ecdfc094e
47faa689fff1ee1cf20ab8ea06ae6e55fc0c9dda84d167b4423a2e5216616258
GET /fonts/NarkissBlock-Bold.woff HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tmi.maariv.co.il/Content/fonts.css?ver=2020_08_18_1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: font/x-woff
content-length: 31088
last-modified: Tue, 25 Jun 2019 08:48:01 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=604800
etag: "f89dedb1322bd51:0"
vary: Accept-Encoding
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
age: 238947
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WUZicrUzCIr5Xx6PigfObYh4CUaTMm4CtK148bAnzr4biDf3KlKy4Q==
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 793317a79a2ab51e-OSL
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805102
54.230.111.36200 OK 4.4 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805102
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d2d12e29e321517e9d4a9833800ed3ef
11e85b378b2b371e2390c6015706228baa1f5010
902d9017ab7ce2a7150f5e0b36e23e45b9ad573a92c017a71eb5ae24714a2c68
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805102 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4384
content-disposition: inline; filename="805102.webp"
etag: "d2d12e29e321517e9d4a9833800ed3ef"
last-modified: Thu, 02 Feb 2023 09:12:16 GMT
date: Thu, 02 Feb 2023 09:42:38 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hONO4shZZqFEb3bh7J4sWSWth9yary9wAG4DVX4WlWBjr0JvVvzNUg==
age: 11686
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/728620
54.230.111.36200 OK 9.9 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/728620
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2366eee8f0f0430dcbde2c08f3123a2f
237c95decfde657d7ae1fe739843380bdb47586f
b89ad6b5e9bdfc47a11731e2c1d22be24de00e988429177e503764ff7dcf08ef
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/728620 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 9862
content-disposition: inline; filename="728620.webp"
etag: "2366eee8f0f0430dcbde2c08f3123a2f"
last-modified: Thu, 02 Feb 2023 12:11:50 GMT
x-request-id: f66108b5b1a641eca4a8dccabe2d5a77
date: Thu, 02 Feb 2023 12:40:49 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: czP1THbvCO91AqGb4lyxxMly031sTxhxfaxGE_VRuOAJtXKPGKnNWg==
age: 995
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/798445
54.230.111.36200 OK 9.1 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/798445
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash fb90ca8a08a882ccbf2c4ae3279a124f
ee84d3bb16d6c83ee49b3c6699ca83741dedb195
7aba0825dd123d7e88356a2a248fc045c8d901a184532adf803283208598bbd4
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/798445 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 9104
content-disposition: inline; filename="798445.webp"
etag: "fb90ca8a08a882ccbf2c4ae3279a124f"
last-modified: Thu, 02 Feb 2023 08:03:40 GMT
date: Thu, 02 Feb 2023 08:36:20 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SmnJJRINK6MABgRhm68JRFkx1baEMyg7JA6pD0TkW-Dr_VPEEVXEMQ==
age: 15664
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/764811
54.230.111.36200 OK 6.0 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/764811
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7152e5fd100ef52073e47b28e1e451fd
19e88fe9ebac8bd70383bc19781973a0d78b3bba
92aa94fd4f7470b07e96de9589b2e70fb741a9baa3192c46be3d0b7d2c92a61c
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/764811 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 5984
content-disposition: inline; filename="764811.webp"
etag: "7152e5fd100ef52073e47b28e1e451fd"
last-modified: Thu, 02 Feb 2023 11:01:11 GMT
x-request-id: 2d8dd4966448e74acf923bdd9b59c2c0
date: Thu, 02 Feb 2023 11:04:32 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6sXJQP2pcMTT_WhVWzHUAw9dqhU15oh5-Qc4rbwm-hs4upLnZbxLdw==
age: 6772
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6a10b5ba6b86844e1fb3327a92a968a0
54631507ada0757feae9d4c87f7e588b1e7237ba
fc27a25138f03869a42235acb0c6d756eb6e74c8f21b7b4836689598a6d5ba84
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5944
Cache-Control: max-age=119538
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63dacbee-117"
Expires: Fri, 03 Feb 2023 22:09:42 GMT
Last-Modified: Wed, 01 Feb 2023 20:30:38 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_983/799494
54.230.111.36200 OK 32 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_983/799494
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0c1700cf57b21e3c68e196c4986edca0
c7fb9931729fcfc836acc172a35aecaa5c339cbc
ff0afafcac3d7677a39f2b16aea020321fd32fbd9005002a202ca30ff96552af
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_983/799494 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 31958
content-disposition: inline; filename="799494.webp"
etag: "0c1700cf57b21e3c68e196c4986edca0"
last-modified: Mon, 16 Jan 2023 09:38:32 GMT
date: Thu, 02 Feb 2023 12:40:49 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kWCTCduZAU9uF32PG-N0BQIoPOZVOb9bF82X_Z0dE2fWX_Rs7NaL9g==
age: 995
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/793009
54.230.111.36200 OK 13 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/793009
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d3dffd63b66a8a96c5f280a7f6a07a0e
d76943a7006c0f3d7b2cd6347ed15330e244bfff
3dd24d08ba4b214ef76f7a5d30d92bd3b4a1b8c23d78c98f93049455910dd9fd
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/793009 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 12790
content-disposition: inline; filename="793009.webp"
etag: "d3dffd63b66a8a96c5f280a7f6a07a0e"
last-modified: Wed, 28 Dec 2022 14:39:06 GMT
date: Thu, 02 Feb 2023 10:19:12 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oognifknN8YshA4RKZBeF-CmCEAj0kXCCGzY0C-YQP4bK25JsThmlQ==
age: 9492
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/802451
54.230.111.36200 OK 39 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/802451
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2bc0c9615cbbfd454a43b2234cfaa7cf
554b60b980a03993e0e35552462942f8e034a71c
c5a3d5466242bcd08ab9af361251df6454d618074c84d407c94477693f30b0a4
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/802451 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39136
content-disposition: inline; filename="802451.webp"
etag: "2bc0c9615cbbfd454a43b2234cfaa7cf"
last-modified: Tue, 24 Jan 2023 19:37:38 GMT
date: Thu, 02 Feb 2023 10:53:40 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QqrtU5vXIczGmf0fPNonM_I6yAvcbNxpvMqYVwJlhhK1VxbhFa0GAQ==
age: 7424
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/802927
54.230.111.36200 OK 12 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/802927
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 872cfb2567bcde2233d91e9a3a5bd37b
ac2e587fec984f658d7af789fb2b9e4e6a672f39
8c2d12c4aac1027e38a88f5bdedd3bd44b48592c090f7476d58d25220d617035
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/802927 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11762
content-disposition: inline; filename="802927.webp"
etag: "872cfb2567bcde2233d91e9a3a5bd37b"
last-modified: Wed, 01 Feb 2023 16:26:57 GMT
date: Wed, 01 Feb 2023 16:28:09 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JxPIjGpHr4MgDquktOonpav36hF80yNKjBXGxtz7K3OP5fBI2-5BHQ==
age: 73755
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801977
54.230.111.36200 OK 6.1 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801977
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 323x217, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57b44a12942f5577e2c1e84efac1d528
6c902cb53d4c29e3cec46d10b2ad48f5292b020b
cbc402d60d983f76c1f6472a7ab98512b613c7f1797cb80e550c882f9cf6ed4d
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801977 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6076
content-disposition: inline; filename="801977.webp"
etag: "57b44a12942f5577e2c1e84efac1d528"
last-modified: Tue, 24 Jan 2023 19:37:42 GMT
x-request-id: bdac90944826b85dc2cf9b467b1bd678
date: Sun, 29 Jan 2023 11:23:38 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vu_QrHSYJBxF_71BaCi23yX2QyWUexk4NROSBYemzqOr_Hx6v5ytOQ==
age: 351226
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801446
54.230.111.36200 OK 13 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801446
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 323x217, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0539f9f616e08ed0e5569c5b055fdb42
b3853b703c2f2c84457d7d016429943ef578a15f
c4fecdf28dd5d1776711dea10e11ce67dfa486043ec481af47c43341eeac91e3
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/801446 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 13022
content-disposition: inline; filename="801446.webp"
etag: "0539f9f616e08ed0e5569c5b055fdb42"
last-modified: Tue, 24 Jan 2023 19:37:46 GMT
date: Sun, 29 Jan 2023 11:23:38 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LiICr1m86kI-ioOtjBLoHWW3SDYqmYilZ4mI9kARb3Ubvb8FwzKb4w==
age: 351226
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/514271
54.230.111.36200 OK 13 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/514271
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 478x302, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5b3260380a9537c1725c542a02026222
d8e515793ae50a09ca8d92c6f66b1602578dc5ab
c131517673ebc0426fa91e2da23b76939f9122ae0847032a7bf54444f023470b
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/514271 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 13248
content-disposition: inline; filename="514271.webp"
etag: "5b3260380a9537c1725c542a02026222"
last-modified: Mon, 20 Jan 2020 08:32:10 GMT
date: Thu, 02 Feb 2023 12:40:49 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=31557600
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EcEuv2pA1BryIM21enG4198kYMA8VJZ-BpGjakW49rf-S5nm9ZoxjA==
age: 995
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/800393
54.230.111.36200 OK 6.0 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/800393
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 323x217, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 73cc04c43ce78bce446dcd2e114867ea
52da47128a26d86b44fbdbae6d17130856233656
9959f46a6c21445447fd1f25222e48fc7358caa21ecaa1c3bc61762e366984f9
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_217,w_323/800393 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 5970
content-disposition: inline; filename="800393.webp"
etag: "73cc04c43ce78bce446dcd2e114867ea"
last-modified: Tue, 24 Jan 2023 19:37:51 GMT
date: Sun, 29 Jan 2023 11:23:38 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NrJs1g3zxMzbb3TijMea_6_5mOM-JWl-1EtdolktzNH-elSAxKtFlw==
age: 351226
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/jQuery.Marquee-master/jquery.marquee.min.js
104.20.19.195200 OK 2.9 kB URL HTTP/2 tmi.maariv.co.il/Scripts/jQuery.Marquee-master/jquery.marquee.min.js
IP 104.20.19.195:0
Hash eb579cb26015920ab32edba29577c1ce
b631297057a854c176ccb8a9a98ce68b0958f23b
9bc2dd96928f421bec6de47d0b8099a002554393918bee57856c0bf37ce5b31c
GET /Scripts/jQuery.Marquee-master/jquery.marquee.min.js HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 15 May 2019 07:53:49 GMT
etag: W/"4eeeb54f3ad51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NR8bORCmvbNjvqLE4G2LDy2P4Iy1Bq2xlR4rbqHlUJ6e6vVyroI1Jg==
cf-cache-status: MISS
server: cloudflare
cf-ray: 793317a68893b51e-OSL
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_457/805553
54.230.111.36200 OK 11 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_457/805553
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e04bae3f23c2ee07d72aa9c14abb3636
82c4da4256d614a1e69f933d97c8ae0dd5688e1f
5f2694f7acfbe3c5713eb771dae10e47fe30da0e4012d2fe54e9c718779cb9a8
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_413,w_457/805553 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 11236
content-disposition: inline; filename="805553.webp"
etag: "e04bae3f23c2ee07d72aa9c14abb3636"
last-modified: Thu, 02 Feb 2023 12:56:14 GMT
date: Thu, 02 Feb 2023 12:56:44 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Mn-UM_5MxlnGvs-r8LH4gYBmAsZzMkA6e4otYl7JV15OnDgc4vLmOg==
age: 40
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/710075
54.230.111.36200 OK 23 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/710075
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 478x302, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b79e750282a07e0385ed1f5bfc0f152
d4cbd5ad771d59c0bab74d43e3e1415c3892a7bc
315a7d89f291e1b36896d9f4a3a6ce7c7d4265db752349a38629782015018693
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/710075 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 22744
content-disposition: inline; filename="710075.webp"
etag: "4b79e750282a07e0385ed1f5bfc0f152"
last-modified: Sun, 20 Mar 2022 10:54:08 GMT
date: Thu, 02 Feb 2023 11:04:32 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V-A_XilIQwweaS0tX-YEe6B2_AB8NLSapmNyhzmlDKrhXQVA_wakMA==
age: 6772
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-38275187-8
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-38275187-8
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 0725b52d97f905da1b73d4c1bf002d01
0a1529a8b6a2ab707e68bfaeaa8522d2616cd015
88db9a92c0c5b34fdf5d2612b7414f660d0d7791f571d1821c783efee5dec102
GET /gtag/js?id=UA-38275187-8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 12:57:24 GMT
expires: Thu, 02 Feb 2023 12:57:24 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43935
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tmi.maariv.co.il/images/tmi_vod_right_icon.png
104.20.19.195200 OK 5.2 kB URL HTTP/2 tmi.maariv.co.il/images/tmi_vod_right_icon.png
IP 104.20.19.195:0
File type PNG image data, 89 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 38ef068b1d69aab1985433f1cc017393
09d34330a8c64059b1c71048a33390bf63eaaec1
eb61de2f9664db0932e156667c87d41f6f9b0f638c8fbab2ef0fb354c64809d9
GET /images/tmi_vod_right_icon.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 5238
last-modified: Wed, 10 Mar 2021 07:16:23 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
cache-control: max-age=604800
etag: "47e3aa467d15d71:0"
age: 264308
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xf6Yd23hHpqQXF-BueuRFhAD_y6p-auea8kxodyx-gWfyLAw6WPiuw==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a85b1db51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/images/tmi_vod_left_icon.png
104.20.19.195200 OK 5.1 kB URL HTTP/2 tmi.maariv.co.il/images/tmi_vod_left_icon.png
IP 104.20.19.195:0
File type PNG image data, 88 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 123a1f372be22b1e57e151c649c61972
f82b2042e625ce45bdd9701f8909bd98acecdbe1
5aacefc6178c7256b88868e7af51d68542512087d3a86abddf80bfd8eb17d9a8
GET /images/tmi_vod_left_icon.png HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/png
content-length: 5131
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:23 GMT
etag: "afbba3467d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3WpVq0f_6yuHEXedEPlyR5rHjk6xONIlxyj3WfVA8YWUx3Dp9UnhDQ==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a85b1bb51e-OSL
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/801907
54.230.111.36200 OK 7.8 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/801907
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 440x254, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffce7da33d851659023a6530fc846399
6ae07b5cef297ba6790dabd32ef21bb1db20abb0
eb4524722bf792fef57911a4e7e495ad3ca0c0bf02dff6d6e2a6180a36203f49
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/801907 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 7788
content-disposition: inline; filename="801907.webp"
etag: "ffce7da33d851659023a6530fc846399"
last-modified: Tue, 24 Jan 2023 19:35:20 GMT
x-request-id: 5a77fb6427402345b78e0548981d0bbb
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T12:57:24.486Z;desc=hit,rtt;dur=87
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bdO553Pa4FbrbWFco4mmR-aeZUBjG3MP2kstVFuOJigyItb7eEI-Vw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d0f85211e595fb8cb41d47abd34c0548
fa25e3271b4511a7577d26ed03f6e987b7fa0592
a9db5e5d535c9695cfe2e6fa2e23cba168ecfce18b09ad284c803fd557192988
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4503
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63da9ef8-117"
Last-Modified: Thu, 02 Feb 2023 11:42:21 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=AW-808038599
172.217.21.168200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-808038599
IP 172.217.21.168:0
File type ASCII text, with very long lines (2917)
Hash 1fe8e4d8ea9881a767e1d5abbfc6dbd5
05728feacff9a3e40505c89efac477875d01b9fa
0b1d382bc991f2f58266f22b69346bf331eb3bf24701171685f553260aaea12c
GET /gtag/js?id=AW-808038599 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 12:57:24 GMT
expires: Thu, 02 Feb 2023 12:57:24 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64469
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WHXD5JH
172.217.21.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WHXD5JH
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash b868d237f4084663c05f26c77fa7d9f1
1e67b3ea51794e4361959b2f0d4b549ed3fdef42
56f24567f81b0f4d478d880ce54641a201911404cdda0e3bc6bd57656d9e410f
GET /gtm.js?id=GTM-WHXD5JH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 12:57:24 GMT
expires: Thu, 02 Feb 2023 12:57:24 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46284
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2031034b88e6a21afb7ea0e207b31d2d
6eceba32411cbf001d0498846ee009de6b4bcbb5
78f04f6b51c8cd8dcf2a367dc5f5aca3bc7d0ed27b8bc4cc4dedbe5375b57063
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Last-Modified: Thu, 02 Feb 2023 12:52:09 GMT
Server: ECS (amb/6BB1)
X-Cache: HIT
Content-Length: 280
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/717669
54.230.111.36200 OK 20 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/717669
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x295, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 13a43d65ef3bf20ae722c73df251e773
5797155e4a01482dcc4055b9033c11dda7b03158
2663ef6aa24b09bd0fd6bf84c85fb5432fff9c8648051f339c9b6b4e2b4df8e0
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/717669 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 20220
content-disposition: inline; filename="717669.webp"
etag: "13a43d65ef3bf20ae722c73df251e773"
last-modified: Fri, 19 Aug 2022 12:45:43 GMT
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=0;start=2023-02-02T12:57:24.496Z;desc=hit,rtt;dur=92
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BdRd7aeJVJDBokIt2ES-sglVVjsUMkrjrYPlcZXEna2Nk6JTLfS1fA==
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/slick-1.6.0/slick/ajax-loader.gif
104.20.19.195200 OK 4.2 kB URL HTTP/2 tmi.maariv.co.il/Scripts/slick-1.6.0/slick/ajax-loader.gif
IP 104.20.19.195:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /Scripts/slick-1.6.0/slick/ajax-loader.gif HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick-theme.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/gif
content-length: 4178
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:24 GMT
etag: "fc7681477d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tMeE89GZoLbGW_34UW51VXXS4WH3CTYVKif-7Phi3Y1nHNrWBQfMHg==
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a86b32b51e-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Fac4SK3Z0sueRWu80PL5+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GFnTqI6oGMsGaHlrtA2bPuVDd3M=
cdn.valuad.cloud/hb/tmi_maariv-prod.js?ver=1×tamp=1675296000000
205.185.216.10200 OK 250 kB URL HTTP/2 cdn.valuad.cloud/hb/tmi_maariv-prod.js?ver=1×tamp=1675296000000
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size 250 kB (249747 bytes)
Hash 74ea8d71e2e5bf62fa1d8ff2a3657387
573d9c6ffb9392b7c73db3d68939a5d8c9bf3693
611b67794c7e13074c95eb1952fa67c4d845cb2148efd446b9b7de7e64c611b7
GET /hb/tmi_maariv-prod.js?ver=1×tamp=1675296000000 HTTP/1.1
Host: cdn.valuad.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-encoding: gzip
content-length: 249747
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 11:41:57 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "74ea8d71e2e5bf62fa1d8ff2a3657387"
cache-control: public, max-age=86400
x-amz-request-id: tx00000000000006ad8005e-0063db90b7-2b9df863-fra1a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1675342644.dop065.sk1.t,1675342644.cds256.sk1.hn,1675342644.cds255.sk1.c
X-Firefox-Spdy: h2
s.ytimg.com/yts/jsbin/www-widgetapi-vflqvh1vf.js
142.250.74.78200 OK 8.6 kB URL HTTP/2 s.ytimg.com/yts/jsbin/www-widgetapi-vflqvh1vf.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (2880)
Hash 3481481dea9474830f96dd779c4df047
364635dcb3bb96af803d79421484a07f3c0ce360
ce429c4178675b192069e6ff8b620871c8f971e3d42b75050c50efc9c5cf9284
GET /yts/jsbin/www-widgetapi-vflqvh1vf.js HTTP/1.1
Host: s.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: https://www.youtube.com
content-length: 8564
date: Thu, 02 Feb 2023 12:57:24 GMT
expires: Fri, 10 Feb 2023 12:57:24 GMT
cache-control: public, max-age=691200
last-modified: Wed, 14 May 2014 07:55:04 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/4805cfe7-a5cc-44ad-8bf2-d88ba2087970.json
104.16.148.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/4805cfe7-a5cc-44ad-8bf2-d88ba2087970.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (3986), with no line terminators
Hash 90b913431e790fcfac9a786dd7a62b85
b9608168454dc0c318fd087c765b9657fe7fbf23
64645c991a1cd92b90fdeb906463cf416dfe575c907d2c81e1a896e3ea6e5648
GET /consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/4805cfe7-a5cc-44ad-8bf2-d88ba2087970.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/x-javascript
content-length: 1540
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: kLkTQx55D8+smnht16YrhQ==
last-modified: Mon, 25 Jul 2022 11:35:59 GMT
etag: 0x8DA6E31D8757913
x-ms-request-id: 6d737f9b-301e-0038-4a31-a099bf000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59351
expires: Fri, 03 Feb 2023 12:57:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317a93cf9b517-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 64ca7d430e68705ba789f6ffaa0b31d3
ffe1edb72e098d58602f3111b29b4ff2efbb3adc
be50f8d3b8a7e25a05ed645ea8930db73282026263e9e819c23eea9b810667a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6144
Cache-Control: max-age=104633
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63da90ed-117"
Expires: Fri, 03 Feb 2023 18:01:17 GMT
Last-Modified: Wed, 01 Feb 2023 16:18:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/759056
54.230.111.36200 OK 16 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/759056
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a87569b85f797b05e33e3a5df827b3d
4169ca013156e9c1d458b86d8219ed3c5b7b92bb
6f833d6f657d81586bea2031b9b01e7a2d215f7f561b1701c7fbf3d21d939f79
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_254,w_440/759056 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 16488
content-disposition: inline; filename="759056.webp"
etag: "9a87569b85f797b05e33e3a5df827b3d"
last-modified: Tue, 24 Jan 2023 19:34:54 GMT
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T12:57:24.644Z;desc=hit,rtt;dur=86
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vYdrZ-vdIC6hrjmS3FU9nqvnfapHtqnfEFTEvzWoKjFiqxJMiiJjIg==
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/801709
54.230.111.36200 OK 8.6 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/801709
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x295, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3cd022cffffbf80faf92a6362723e20f
0e8517ab39931cd75d84c82664aa5f4e8736336c
47e28d5481df2a0fb0f71cf26a7a73bdfbaf2523b8b2ce19420771993778c152
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_295,w_360/801709 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 8558
content-disposition: inline; filename="801709.webp"
etag: "3cd022cffffbf80faf92a6362723e20f"
last-modified: Tue, 24 Jan 2023 19:34:32 GMT
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T12:57:24.657Z;desc=hit,rtt;dur=91
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 50SnFc1RDkSHjrScu7cLCSAuCvuV-c0fYQLVjVRo2-fEhkrM2lW5fA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2031034b88e6a21afb7ea0e207b31d2d
6eceba32411cbf001d0498846ee009de6b4bcbb5
78f04f6b51c8cd8dcf2a367dc5f5aca3bc7d0ed27b8bc4cc4dedbe5375b57063
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1845
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Last-Modified: Thu, 02 Feb 2023 12:26:39 GMT
Server: ECS (amb/6B73)
X-Cache: HIT
Content-Length: 280
zdwidget3-bs.sphereup.com/zoomd/SearchUi/Script?clientId=16664167
104.40.187.26200 OK 16 kB URL HTTP/1.1 zdwidget3-bs.sphereup.com/zoomd/SearchUi/Script?clientId=16664167
IP 104.40.187.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (36860), with no line terminators
Hash 9e811b8bf6a6822024de780ac0634cb3
4374e7f745113c34aad74bbe99650a9931916cf6
74da9a1c31c4bfb1ef219f29055d024bed0d90a24f7b8f8e0210f86bd3109646
GET /zoomd/SearchUi/Script?clientId=16664167 HTTP/1.1
Host: zdwidget3-bs.sphereup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 15531
Content-Type: application/x-javascript; charset=utf-8
Date: Thu, 02 Feb 2023 12:57:23 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Expires: Thu, 02 Feb 2023 13:57:24 GMT
Last-Modified: Thu, 02 Feb 2023 12:57:24 GMT
Set-Cookie: userid=20aa9e71-ea29-4c84-a4bc-68a1a2b3e916; domain=.sphereup.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
ab_16664167=0; expires=Thu, 09-Feb-2023 12:57:24 GMT; path=/; HttpOnly
Vary: Accept-Encoding
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
js.nagich.co.il/core/4.4.0/accessibility.js
104.26.3.20200 OK 15 kB URL HTTP/2 js.nagich.co.il/core/4.4.0/accessibility.js
IP 104.26.3.20:0
File type Unicode text, UTF-8 text, with very long lines (44439), with no line terminators
Hash dfc1e21b423e64dba1a1fa4c83c42e5d
a5ad11c728b9df46e40f3acdd8b7310efebbaae0
befd47fcc5ef3b533970dad72ca39bd171fc720c408269183d759d4c13f61332
GET /core/4.4.0/accessibility.js HTTP/1.1
Host: js.nagich.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: public, max-age=2604800
last-modified: Mon, 19 Sep 2022 08:43:39 GMT
etag: W/"80effbe93ccd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
cf-cache-status: HIT
age: 1995412
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e7AWsKbJN102K2TH%2BcjPN9l81ib5X1d6JsxJTpaRZ3hvyJZnkiuX68nKjVYH%2BGAo%2FcHCADMsqLr%2FwgXWgkhEhsI%2BmrSn7T%2FXNHEZHXPZ5tBwGYbj258szmnOVcrPgF777Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317a91a200b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/gplay-svg-footer.svg
104.20.19.195200 OK 3.1 kB URL HTTP/2 tmi.maariv.co.il/Images/gplay-svg-footer.svg
IP 104.20.19.195:0
Hash 6fb31b6f71973e64d8214a85f947e5a1
f2851df9ae3a2bd61cadcb48ca592428e18189b8
795e44b86c598fb090dfb0cf630c9556ceeb7d89a5132a6255213477f6ec6058
GET /Images/gplay-svg-footer.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Mon, 28 Nov 2022 12:09:13 GMT
etag: W/"1d8cbb3a223d91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 242358
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RHpn0pCG1FfRSWTXu6KZOPhNg6fjgVqBi9ZveUMr5eO4t6it8X_6Rw==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a6888cb51e-OSL
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805417
54.230.111.36200 OK 9.6 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805417
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 358x228, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5659ce0c06e03ed9efd043077927406a
039b72218b5cd5641792868dff8d21dbb0912e8a
930a1e80978fd3b728e3275a1a0fa48c4efce334112b118322a3505c412dae5d
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_228,w_358/805417 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 9570
content-disposition: inline; filename="805417.webp"
etag: "5659ce0c06e03ed9efd043077927406a"
last-modified: Thu, 02 Feb 2023 12:57:06 GMT
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=27;cpu=1;start=2023-02-02T12:57:24.713Z;desc=miss,rtt;dur=80,cloudinary;dur=17;start=2023-02-02T12:57:24.718Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ltXEFzPDTehKxEHMPX7vSE_9DFbT9K9avmHMjQohQ1UDvVLgYbDtQQ==
X-Firefox-Spdy: h2
images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/805447
54.230.111.36200 OK 7.4 kB URL HTTP/2 images.maariv.co.il/image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/805447
IP 54.230.111.36:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 478x302, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7ef61ce0685d9c4144fcc5315b68f438
ac4e1bbbd43d177d88f4cd1af710b9726fc47d5e
c48065c854b133f6bf96a1fda0105f688015483c406672c245028b8bd236476c
GET /image/upload/f_auto,fl_lossy/c_fill,g_faces:center,h_302,w_478/805447 HTTP/1.1
Host: images.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/webp
content-length: 7356
content-disposition: inline; filename="805447.webp"
etag: "7ef61ce0685d9c4144fcc5315b68f438"
last-modified: Thu, 02 Feb 2023 12:56:45 GMT
x-request-id: bdbde2cb9cd698464b7f4be90c896f9b
date: Thu, 02 Feb 2023 12:57:24 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-02T12:57:24.790Z;desc=hit,rtt;dur=88
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,X-Content-Type-Options
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dpsWn8FPf1pYXiyfYl5lKWpySzJMgtBQehp-BjBJcm-rmF8tkwnS4Q==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 879da27c4009941a4f18308a7b921711
1533a9c1dfa8999e463535538be8e9457b9d46e4
4f2e4d6dd03eb2dbc631c42b0236ddc55d457cc8ed73b16dbc57d91a82cb52a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3629
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Last-Modified: Thu, 02 Feb 2023 11:56:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
cdn.optmn.cloud/hb/walla-adapter.js
172.67.173.126200 OK 94 kB URL HTTP/2 cdn.optmn.cloud/hb/walla-adapter.js
IP 172.67.173.126:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 82fd3e06c099f99ce9ce684b2760f305
f6163d1b293581ce5b122cbe3ef682dbab6a1a2d
8352ceb6def556a05e3e849bb2335c4fa7830bbd9562e8c1fa0616fa0d5da5dd
GET /hb/walla-adapter.js HTTP/1.1
Host: cdn.optmn.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/javascript
x-guploader-uploadid: ADPycdtvnDyrac2Kffh8pC1Ulq4o-BeJRg0qNQXN4z50Ok-nOP5Dg-zBnfYc55IxmJaMPkizA0c6l7Wh_wRqhOm0e03PDidNj6bH
x-goog-generation: 1671098975222377
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 121495
x-goog-hash: crc32c=fFlBLg==, md5=C9Jqo2cf9xoBcnlTwULQQQ==
x-goog-storage-class: STANDARD
last-modified: Thu, 15 Dec 2022 10:09:35 GMT
etag: W/"0bd26aa3671ff71a01727953c142d041"
age: 2981
cache-control: public, max-age=14400
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p0wdc7xZQ%2F6%2Bg%2BsKY3zO4f%2BFTIoZSkIUzq9EcbaDHuQXqBeKfmv4NLvCdgNfvZ4i0XLnNjwTQVqqdTEK2mqFvzqVra%2FXg4RMAphXb85rR7ud3fKUKLEXHHcS3FzER7u%2FONU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a6fa83b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6475
Cache-Control: max-age=108905
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 19:12:29 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tmi.maariv.co.il/Images/facebook_fff.svg
104.20.19.195200 OK 20 kB URL HTTP/2 tmi.maariv.co.il/Images/facebook_fff.svg
IP 104.20.19.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1490)
Hash 589c330ad271ce1670a7bc5f29f35426
79ecbe73a8b1dda0a6b94d9e256e6e425a3c067e
4e7430f663cde8c568725c287313a5f6eac25fcc24f4f1cb4b3dd2bc47b24cba
GET /Images/facebook_fff.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Thu, 04 Jul 2019 06:42:37 GMT
etag: W/"6fd15ab3332d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
age: 574315
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oQpD9Mil_CJO4yB65xu9rOjCA-fe7Rk-VgVKAkdEbzFIXKiQh8M6JQ==
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a60fe6b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/achoice.svg
23.38.201.81200 OK 990 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/achoice.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (990), with no line terminators
Hash 5ab8e16b5f46213840bcd403e349419c
f03f6dc8e2206a94119af76f9a3b3c835390cae7
9ba56f5ffa579747efde1d2a429b325a9fb7220d30f4268e4a44ecbe4a9bf034
GET /images/widgetIcons/achoice.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "5ab8e16b5f46213840bcd403e349419c:1673369393.880194"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 990
cache-control: max-age=2592000
expires: Sat, 04 Mar 2023 12:57:24 GMT
date: Thu, 02 Feb 2023 12:57:24 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6475
Cache-Control: max-age=108905
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 19:12:29 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39302)
Hash 8e5fc02df1eb10753ff44ebbb791c4c2
19574106a2739718a4fa6095d9abae1e832453ee
877f47bcd7d5940697efd00ea4650cb4cf7d59d9f1d9884c0618e2b2efbf8d72
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27364
date: Thu, 02 Feb 2023 12:57:24 GMT
expires: Thu, 02 Feb 2023 12:57:24 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1470 / 249 of 1000 / last-modified: 1675339726"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f0476dd9715ce81c7b59951d20cb2ccb
4efa6e99eb9d70e1c4c69d51f9aded261b7912f1
8ae89097057aeb14cae5d8e68709085c2b8422365de10ed4b276e9c4e1478ea6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AE89097057AEB14CAE5D8E68709085C2B8422365DE10ED4B276E9C4E1478EA6"
Last-Modified: Tue, 31 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10294
Expires: Thu, 02 Feb 2023 15:48:58 GMT
Date: Thu, 02 Feb 2023 12:57:24 GMT
Connection: keep-alive
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: yqKyOn4v19fEfVFxXVo8CMl7Sl6HGDO06bOmnILUaieRM1K1ftDMLKgtb33snqspm9X6SxGcP3l2if6vI1NQIQ==
content-length: 27843
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 12:57:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash ddbcbc63ba5a6383e3431c19bbe20b7b
92945a2a7c76ad352fbc5738b7109c843b7db066
f3db844630e46659c3ec5d8de3e015b5262b69bfc874211e187416a9d152cf9e
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ae80b8e9834c610f4b4a21c45f5e92a1
etag: "2af6844107904267d9baefb843e00e61"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 02 Feb 2023 13:00:43 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 3by8Y7paY4PjQxwZu+ILew==
x-fb-debug: o3sr9+MbcOIofv8+LTGThYIjNphT9EDPinZ6F8v0OQspiZQcGijF5+ONW1zs2s3RBuU9oVdWvcbuwNXx2dlJXg==
content-length: 1687
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 12:57:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
142.250.74.70200 OK 104 B URL HTTP/2 ad.doubleclick.net/favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250
IP 142.250.74.70:0
File type MS Windows icon resource - 2 icons, 16x16, 16 colors, 32x32, 16 colors\012- data
Hash 32ac8a9b81788b981a3a7e13c14082d4
fbfd48a2bfe8d4247a975176f88d18c3c2ad1952
00cc7617e054596ff0aaabd8a93a9214dc5304bfe317316022dbf4fb3ea073d2
GET /favicon.ico?ad=300x250&ad_box_=1&adnet=1&showad=1&size=250x250 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 104
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:55:01 GMT
expires: Thu, 02 Feb 2023 15:55:01 GMT
cache-control: public, max-age=86400
age: 75744
last-modified: Tue, 08 May 2012 13:08:06 GMT
content-type: image/x-icon
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 54339e11d83d66640ef81855d1bc784b
745a60f6bfa5ff659ee684b2421da9b8492aafe9
85ef30e3b447742587370b4883eb625554b018636fed92820fda74b7a48eb65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 54339e11d83d66640ef81855d1bc784b
745a60f6bfa5ff659ee684b2421da9b8492aafe9
85ef30e3b447742587370b4883eb625554b018636fed92820fda74b7a48eb65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6476
Cache-Control: max-age=108905
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 19:12:30 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d99666469a0d.bitsngo.net/widget-scripts/zoomd.widget.loader.min.js?ver=4.0.v20230126102323.104714
95.140.228.46200 OK 13 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/zoomd.widget.loader.min.js?ver=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (37457), with no line terminators
Hash f606faea44ae1f64ce100e761f1cb1a2
95b1c17fae5f6a29faf040fc1a94b56d8c8bd433
6982bc09039e3aba739f4d73478da4bd1dc8a587d8174b9b8b75ad846a2c5e5c
GET /widget-scripts/zoomd.widget.loader.min.js?ver=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: e68ffc866a48f22f0f5355b438020bf6
age: 612598
date: Thu, 02 Feb 2023 12:57:25 GMT
last-modified: Thu, 26 Jan 2023 10:23:44 GMT
expires: Sun, 05 Feb 2023 10:47:27 GMT
content-length: 13050
X-Firefox-Spdy: h2
d99666469a0d.bitsngo.net/content/zd_w_s_loading.css?ver=4.0.v20230126102323.104714
95.140.228.46200 OK 470 B URL HTTP/2 d99666469a0d.bitsngo.net/content/zd_w_s_loading.css?ver=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b4c9bd977d5d16ec976cf9dbcc159a04
26fa1ceddece34ef077830cdaeecc9b2f93608f3
94a7497221b9b3aed2e2c9eda2c87bc506fee38b1d6a71f90ff357cf902f7b2a
GET /content/zd_w_s_loading.css?ver=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: b741a1d3162d1d4f1ff203ec664ba0a4
age: 612598
date: Thu, 02 Feb 2023 12:57:25 GMT
last-modified: Thu, 02 Jun 2022 09:56:56 GMT
expires: Sun, 05 Feb 2023 10:47:27 GMT
content-length: 470
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick-theme.css
104.20.19.195200 OK 2.0 kB URL HTTP/2 tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick-theme.css
IP 104.20.19.195:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1881)
Hash f67bb6c75bfbf9d647400a6691a62ac4
d090bfafefb8ff6fed1e06f2913b4d9a2b84c82f
7bd12a71e92153a51a2eac35672d1f712f60cc6ee563c395cc60778389ab0d9b
GET /Scripts/slick-1.6.0/slick/slick-theme.css HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:25 GMT
etag: W/"82afd9477d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uPeAyBu9GswHlSRVOuHOC2tPbThxSQVvm-lbJZnXjWSaRuwBeSfayQ==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfb2b51e-OSL
X-Firefox-Spdy: h2
js.nagich.co.il/assets/locale/he.json
104.26.3.20200 OK 1.1 kB URL HTTP/2 js.nagich.co.il/assets/locale/he.json
IP 104.26.3.20:0
File type JSON data\012- , Unicode text, UTF-8 text
Hash d406b1a9b3a56a7094b303fdfedc8971
8c588baf2b006afe0c3f4834d07c2de12c253b66
08eb9f536572f81688851b8c93c851912fc26713bd7a1ec45872813dc9fbdfa8
GET /assets/locale/he.json HTTP/1.1
Host: js.nagich.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/json
cache-control: public, max-age=2604800
last-modified: Tue, 03 Jan 2023 08:06:37 GMT
etag: W/"3516904d4a1fd91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAH74G%2Bitdk7BHDN0MI4oqkBmZD%2F2StYlbgB%2FFBEIjQRySOy2szWKq0DBp6COIdyyGGEW6S0gj1qnMuHGVnDJla23ftWurbrxxFE2ngOSkCRqlWDMV4d5hW%2F7bYlr0b%2FWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317aa8c170b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/node-uuid/1.4.8/uuid.min.js
104.17.25.14200 OK 1.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/node-uuid/1.4.8/uuid.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2369)
Hash 70028e00b1371ad8f1659705c8c2ecbf
2f33d8a070cf7c8063572de7724a81c74659ff23
c959ba7044de4dc48926c9f61d0bc00c4eaf08dcd2c6970cb157040064b03e9d
GET /ajax/libs/node-uuid/1.4.8/uuid.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 1095
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-966"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1157608
expires: Tue, 23 Jan 2024 12:57:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g90nevr5H0%2BCW2xzzv2LSTuJ2kpxgJ2VVYDifNJcAFfbuxWP0T6AxQSHI6VG%2FmhHo6c8RDiRciQLjNmY2XHV5oq9tWZwIOmN%2FQ0wI%2FVVcWScBh6AScqRrg3u7WRCm3wSl6wWd7CB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793317ac3888b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f0476dd9715ce81c7b59951d20cb2ccb
4efa6e99eb9d70e1c4c69d51f9aded261b7912f1
8ae89097057aeb14cae5d8e68709085c2b8422365de10ed4b276e9c4e1478ea6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AE89097057AEB14CAE5D8E68709085C2B8422365DE10ED4B276E9C4E1478EA6"
Last-Modified: Tue, 31 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10293
Expires: Thu, 02 Feb 2023 15:48:58 GMT
Date: Thu, 02 Feb 2023 12:57:25 GMT
Connection: keep-alive
d99666469a0d.bitsngo.net/widget-scripts/zoomd.fingerprint.min.js?ver=4.0.v20230126102323.104714
95.140.228.46200 OK 11 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/zoomd.fingerprint.min.js?ver=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (22959), with no line terminators
Hash eb087fa30d19d25116b4e19465798fef
f74a4518803cc94e769a0163b6f4d4c5185ea2fb
9e7ebc2ddda9aae25b17acb58a7460c201c384daa15b86f10053da4638c6d6a6
GET /widget-scripts/zoomd.fingerprint.min.js?ver=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 2189051484ce605fd3a6c966346825e1
age: 612598
date: Thu, 02 Feb 2023 12:57:25 GMT
last-modified: Thu, 26 Jan 2023 10:23:46 GMT
expires: Sun, 05 Feb 2023 10:47:27 GMT
content-length: 10689
X-Firefox-Spdy: h2
cdn.permutive.com/fe68d1f7-c9f4-45b3-8905-7cda73d3fd74-web.js
104.19.150.54403 Forbidden 2.4 kB URL HTTP/2 cdn.permutive.com/fe68d1f7-c9f4-45b3-8905-7cda73d3fd74-web.js
IP 104.19.150.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1001)
Hash da958e66978955ae0e2a0a8e2b20bc72
273032c7db0d544ea5379a0cd06305a43e475e7b
1cdb8040abe3c7561ff8ac401a357298d1ea962956b33cf5ed50fcb67ab521ae
GET /fe68d1f7-c9f4-45b3-8905-7cda73d3fd74-web.js HTTP/1.1
Host: cdn.permutive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
timing-allow-origin: *
server: cloudflare
cf-ray: 793317aaffe0b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
get.geojs.io/v1/ip/country.json
172.67.70.233200 OK 3.9 kB URL HTTP/2 get.geojs.io/v1/ip/country.json
IP 172.67.70.233:0
File type JSON data\012- , ASCII text
Hash 15928ee0849b06f0769395e166aa3bf0
584ce49f072d5e3da3e5818a83aac79cd45b9853
36a99cd733c1af1a9ef3814459066a5a839190e17ec02ca5490c53ba0ded99ec
GET /v1/ip/country.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/json
x-request-id: 05ec36935c67189e886103ec7f76b4cf-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9b3W4tah4p6doYlPXcwlSKg0PMmKD1c8zaaKnJfHhuRPhvVLhQ%2FbKS9riL73jSXhAtD03ZGMYjL0aSWQ5LCF7NJtYVd%2BVy7X02B0q6mgalN%2F55yrVyRgIKsBg1UfAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317ac6bcd1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.adoric.com/adoric.v6.2.min.css
172.67.25.142200 OK 12 kB URL HTTP/2 static.adoric.com/adoric.v6.2.min.css
IP 172.67.25.142:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ef8f48e3710e0ceabd87fa782892579d
cddd5131a0fc81b219026d259d81f1b5c3ae951b
53a06a2e8d6ae7b2e8ebf6b99393a3bfbc72931e0f27c6795ca1dacb94e6a65a
GET /adoric.v6.2.min.css HTTP/1.1
Host: static.adoric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: text/css
content-length: 12505
x-guploader-uploadid: ADPycdv3R4h7kKt_75QNKXGHjD1ooaqSqDpkbKM5G6SSCPFU2WzCT2Qr_0HT8mk7-wXquwJH-1zdcMAgUp2oZKRv-NVWft2-jnYq
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1654172373822157
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12505
content-encoding: gzip
x-goog-hash: crc32c=GKw9OQ==, md5=749I43EODOq9h/p4KJJXnQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
expires: Thu, 02 Feb 2023 13:21:02 GMT
cache-control: public, max-age=43200
last-modified: Thu, 02 Jun 2022 12:19:34 GMT
etag: "ef8f48e3710e0ceabd87fa782892579d"
age: 2148
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 793317acad8e0b61-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 598eb70d6b34732949ee19d0b8850d98
cdefe5751f10fcd5bb660a4cb00a48a2334377b1
6c8d4997faef4295e92995ed9043dd990a954096f06947a42b84bf4ad5399c50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4524
Cache-Control: max-age=104795
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Etag: "63da97e5-116"
Expires: Fri, 03 Feb 2023 18:04:00 GMT
Last-Modified: Wed, 01 Feb 2023 16:48:37 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3dfb21297445ba3ae01e0ca7670db955
bde75dd81ef467103b1b8331687624e86d1d322c
cfd0271b2c0cc46d2c05018a9a434429fc8e4573d862af06994fae43a86d0a5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 783
Cache-Control: max-age=143913
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Etag: "63db3f4f-117"
Expires: Sat, 04 Feb 2023 04:55:58 GMT
Last-Modified: Thu, 02 Feb 2023 04:42:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
cdn.firstimpression.io/delivery/spc_fi.php?id=5802&url=%2F&charset=UTF-8&ch=12&ref=tmi.maariv.co.il&viewerId=null&referer=&_firid=56363281
54.230.111.99200 OK 4.3 kB URL HTTP/2 cdn.firstimpression.io/delivery/spc_fi.php?id=5802&url=%2F&charset=UTF-8&ch=12&ref=tmi.maariv.co.il&viewerId=null&referer=&_firid=56363281
IP 54.230.111.99:0
File type JSON data\012- , ASCII text, with very long lines (19968), with no line terminators
Hash 82a541fe41809ad10c62beb55af0ddef
fdc34577238abbda1d61c00d3da9720d7d87319b
a014d607abfced40e53476390b2450012bfd7d913e6bca23d4fed6568f2c89ff
GET /delivery/spc_fi.php?id=5802&url=%2F&charset=UTF-8&ch=12&ref=tmi.maariv.co.il&viewerId=null&referer=&_firid=56363281 HTTP/1.1
Host: cdn.firstimpression.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
content-length: 4265
date: Thu, 02 Feb 2023 12:57:25 GMT
server: Apache/2.4.38 (Debian)
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
p3p: CP="CUR ADM OUR NOR STA NID"
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jT6tHhNNuXSw2fjNd4iNtEa3rdtCxs7dBxc0LjipEJTpMYBmtMUdIA==
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.17.0/otBannerSdk.js
104.16.148.64200 OK 86 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.17.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash eba67c6d8e455d70008a4212dfbb6960
8656175274fed81b5ce72b2b2583e6ec61400a0e
ffa7b35e0a3a8bb8841a2801f3cb78a5bbf47b5e04804112f5b2fe79f581e5f2
GET /scripttemplates/6.17.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/javascript
content-length: 85833
content-encoding: gzip
content-md5: 66Z8bY5FXXAAikIS37tpYA==
last-modified: Thu, 29 Apr 2021 01:57:14 GMT
etag: 0x8D90AB21C520644
x-ms-request-id: ff95972b-001e-0116-496c-c45f2d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 29434
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317aebf4db4f4-OSL
X-Firefox-Spdy: h2
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
23.38.201.81200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 23.38.201.81:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Sat, 04 Mar 2023 12:57:25 GMT
date: Thu, 02 Feb 2023 12:57:25 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
hb-dot-valuad.appspot.com/init?d=pubsub
142.250.74.148200 OK 0 B URL HTTP/2 hb-dot-valuad.appspot.com/init?d=pubsub
IP 142.250.74.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /init?d=pubsub HTTP/1.1
Host: hb-dot-valuad.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-request-id,x-vad-version
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: content-type,x-request-id,x-vad-version
x-request-id: undefined
x-cloud-trace-context: 8a75b5090d2a1a0eaf4a457fd6181f7f
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010130/module/notOutbrain.js
23.38.201.81200 OK 21 B URL HTTP/2 widgets.outbrain.com/nanoWidget/2010130/module/notOutbrain.js
IP 23.38.201.81:0
File type very short file (no magic)
Hash b9afc501fc43fbea335a2dc5d43263a1
7290a2dd6afbf39ecfc35b52dfb32a38fc222994
d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
GET /nanoWidget/2010130/module/notOutbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "68b329da9893e34099c7d8ad5cb9c940:1675260300.524279"
last-modified: Wed, 01 Feb 2023 13:35:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 21
cache-control: max-age=604800
expires: Thu, 09 Feb 2023 12:57:25 GMT
date: Thu, 02 Feb 2023 12:57:25 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
app.adoric-om.com/v1/campaigns/?u=8ff4d85732025941c7ba00520eb150f2&l=en&cc=0&b=firefox&os=unix&h=https%3A%2F%2Ftmi.maariv.co.il%2F&d=desktop&lsps=0&pd=A&nv=true&tz=0&cIds=%5B%5D
34.120.218.58200 OK 1.3 kB URL HTTP/2 app.adoric-om.com/v1/campaigns/?u=8ff4d85732025941c7ba00520eb150f2&l=en&cc=0&b=firefox&os=unix&h=https%3A%2F%2Ftmi.maariv.co.il%2F&d=desktop&lsps=0&pd=A&nv=true&tz=0&cIds=%5B%5D
IP 34.120.218.58:0
Hash 4d75a95ca60fd0b75f6db0fd83ce2f37
353b9a811ee13f8b12001c591543e191306111be
05d19714d29d51f24faa8eed91b9ad741ff8a076bbddbc1023f27f602ef0f443
GET /v1/campaigns/?u=8ff4d85732025941c7ba00520eb150f2&l=en&cc=0&b=firefox&os=unix&h=https%3A%2F%2Ftmi.maariv.co.il%2F&d=desktop&lsps=0&pd=A&nv=true&tz=0&cIds=%5B%5D HTTP/1.1
Host: app.adoric-om.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-credentials: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Credentials
content-type: application/json; charset=utf-8
etag: W/"b39-0vI8fGf8wHptsaLagytOfW74ZBc"
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 12:57:25 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ecdn.analysis.fi/static/js/fab.js
54.230.111.15200 OK 1.7 kB URL HTTP/2 ecdn.analysis.fi/static/js/fab.js
IP 54.230.111.15:0
Hash e139bc32b51588853144b86d24a66937
aa2e0e6a55da6921f062584ae09d8cb350d8439b
e9e9c98b845158908ada46dafd50fa477f83476d6c54fe8af06e1453e53a7b4b
GET /static/js/fab.js HTTP/1.1
Host: ecdn.analysis.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx/1.20.0
last-modified: Tue, 14 Dec 2021 15:30:51 GMT
access-control-allow-origin: *
content-encoding: gzip
date: Thu, 02 Feb 2023 12:33:39 GMT
expires: Thu, 02 Feb 2023 13:33:39 GMT
cache-control: max-age=3600
etag: W/"61b8b8ab-1090"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UG3B4Vnqd5-d_8zLtlHPUzkrtnO0BO1LhKoekvWuG7Dku4Canruv3A==
age: 1425
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/8153ab1e-6c69-43f2-b865-5b8525b419bd/en.json
104.16.148.64200 OK 29 kB URL HTTP/2 cdn.cookielaw.org/consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/8153ab1e-6c69-43f2-b865-5b8525b419bd/en.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash b46e43c4d1e000d092dd614acc03730e
e10a8a953093c7215ae874a2e6917f858d3997a3
a41a3263b0477f1c28c9fc6ba2500469876ab0436333a28d0346bc84bd190e19
GET /consent/4805cfe7-a5cc-44ad-8bf2-d88ba2087970/8153ab1e-6c69-43f2-b865-5b8525b419bd/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/x-javascript
content-length: 28579
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: tG5DxNHgANCS3WFKzANzDg==
last-modified: Mon, 25 Jul 2022 11:36:00 GMT
etag: 0x8DA6E31D9786BAF
x-ms-request-id: b027ffc8-601e-004d-0c23-a01e04000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59352
expires: Fri, 03 Feb 2023 12:57:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317af9dafb517-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 54339e11d83d66640ef81855d1bc784b
745a60f6bfa5ff659ee684b2421da9b8492aafe9
85ef30e3b447742587370b4883eb625554b018636fed92820fda74b7a48eb65d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/808038599/?random=1675342671440&cv=11&fst=1675342671440&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&auid=1740757942.1675342671&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.98200 OK 938 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/808038599/?random=1675342671440&cv=11&fst=1675342671440&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&auid=1740757942.1675342671&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2215), with no line terminators
Hash 211a4d3eed5ee8e2b77b64616818d9b6
ba695c8bc800feaaa36228ba310e5489352b365d
61421779ee1190d8c02943f4a9a8b54ba2620cf928fe381a72708d8fde95fada
GET /pagead/viewthroughconversion/808038599/?random=1675342671440&cv=11&fst=1675342671440&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&auid=1740757942.1675342671&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 12:57:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 938
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 13:12:25 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&ct_cookie_present=1
142.250.74.98200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&ct_cookie_present=1
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&fmt=3&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 12:57:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 13:12:25 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.2200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 12:57:25 GMT
expires: Thu, 02 Feb 2023 12:57:25 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3269462393761214207
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49789
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=845e1c56297bd02aed644811a9a8fd76
157.240.205.11200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=845e1c56297bd02aed644811a9a8fd76
IP 157.240.205.11:0
File type ASCII text, with very long lines (17777)
Hash 47883176b9f6d2300dadb2aa52adaeeb
b0d1be98cc2aed87459ed8fb8d47987e6668526e
14ce95d62e62be567c9832054b5895f87d9edb030a4c1c019ce2efae843ee946
GET /en_US/sdk.js?hash=845e1c56297bd02aed644811a9a8fd76 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 81c90d814b611dcf26d6207345fe81d5
etag: "30104487b492af60ffe2c873465ffecf"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Feb 2024 11:35:19 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: R4gxdrn20jANrbKqUq2u6w==
x-fb-debug: /gBDGMs2ICjaFrGKIhASNMGoV4UElwAOH3+FU3r08jkL5gfZ0y8yndIzBrety8Nn5Sq1mwIhNPut1QSjvGj3ew==
priority: u=3,i
content-length: 88414
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 12:57:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 12:57:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.17.0/assets/otFlat.json
104.16.148.64200 OK 2.9 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.17.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10791)
Hash 8811ead0f4c77c6df45195261171c69f
6e8353114587cf94dd72b7ac2c0c67af222e6e06
5a7c627187a41b40c3c148974b1c0c517a92e8f36f32519b7531ba5dace04a42
GET /scripttemplates/6.17.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/json
content-length: 2938
content-encoding: gzip
content-md5: iBHq0PTHfG30UZUmEXHGnw==
last-modified: Thu, 29 Apr 2021 01:57:06 GMT
etag: 0x8D90AB2173E15E6
x-ms-request-id: db80afbc-c01e-016d-503a-2a349d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59352
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317b05e9fb517-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.17.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.17.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37065)
Hash 416a5b4f55a0dbd681463436afbfa70d
3804f9f7e7a32827b205a5468e3790bb962c5588
04aba7e0c72678e33fdc3a878ae8706fe79f9281b5c4af65ed1bf496113e7ce1
GET /scripttemplates/6.17.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/json
content-length: 11495
content-encoding: gzip
content-md5: QWpbT1Wg29aBRjQ2r7+nDQ==
last-modified: Thu, 29 Apr 2021 01:57:08 GMT
etag: 0x8D90AB218BD0ED7
x-ms-request-id: 052ef513-501e-0089-5442-ca61c2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 59352
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317b05ea4b517-OSL
X-Firefox-Spdy: h2
mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=maariv.co.il&domain=tmi.maariv.co.il&path=%2F
151.101.2.202200 OK 127 B URL HTTP/2 mab.chartbeat.com/mab_strategy/headline_testing/get_strategy/?host=maariv.co.il&domain=tmi.maariv.co.il&path=%2F
IP 151.101.2.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 942baf6918f9ef9aee6f74551bb1db92
56ee3f1ac9a419a0f00b2690e2f282a51bf40829
077fac4d189f6935eb40e1bb273dc6946d7548e06732d99839afb38b3158ba0c
GET /mab_strategy/headline_testing/get_strategy/?host=maariv.co.il&domain=tmi.maariv.co.il&path=%2F HTTP/1.1
Host: mab.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
expires: Tue, 31 Jan 2023 12:57:25 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, s-maxage=0
content-encoding: gzip
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
accept-ranges: bytes
date: Thu, 02 Feb 2023 12:57:25 GMT
age: 0
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675342646.790031,VS0,VE96
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
content-length: 127
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e2992eb37829478173b6df3acc0bc1f4
223e16fadc8868966bf413f8332b90eb4b39baa1
1cade0b48c0a26cb3c285abdff06036fd8a36b9d116eb8b23610000a336576fd
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3430
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Last-Modified: Thu, 02 Feb 2023 12:00:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
odb.outbrain.com/utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=0&rand=91563&key=NANOWDGT01&widgetJSId=REELD_1&va=true&et=true&format=html&adblck=false&abwl=false&px=58&py=2410&vpd=1586&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F
151.101.246.132200 OK 24 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=0&rand=91563&key=NANOWDGT01&widgetJSId=REELD_1&va=true&et=true&format=html&adblck=false&abwl=false&px=58&py=2410&vpd=1586&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F
IP 151.101.246.132:0
File type Unicode text, UTF-8 text, with very long lines (63080), with no line terminators
Hash 83863db8881cbab6c331c21ee07e2066
8863ea95dea2f18f095d8097e55c32e810314114
09b3e84bc4c4bbdc0dfb15cb7b5c81423c505e4c5a61385ce284b2961c1d835c
GET /utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=0&rand=91563&key=NANOWDGT01&widgetJSId=REELD_1&va=true&et=true&format=html&adblck=false&abwl=false&px=58&py=2410&vpd=1586&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: d65be515d3fba0b813d4462eafff1d67
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 02 Feb 2023 12:57:25 GMT
x-served-by: cache-lga21964-LGA, cache-hel1410024-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675342646.760573,VS0,VE231
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 23654
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-4780630-1&cid=2054081724.1675342671&jid=255134605&gjid=691822429&_gid=489947710.1675342671&_u=aGDAAEABAAAAACAUI~&z=600974503
173.194.73.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-4780630-1&cid=2054081724.1675342671&jid=255134605&gjid=691822429&_gid=489947710.1675342671&_u=aGDAAEABAAAAACAUI~&z=600974503
IP 173.194.73.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-4780630-1&cid=2054081724.1675342671&jid=255134605&gjid=691822429&_gid=489947710.1675342671&_u=aGDAAEABAAAAACAUI~&z=600974503 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-VXHJZ1HTCM>m=2oe1u0&_p=2124541525&cid=2054081724.1675342671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675342671&sct=1&seg=0&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&dt=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VXHJZ1HTCM>m=2oe1u0&_p=2124541525&cid=2054081724.1675342671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675342671&sct=1&seg=0&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&dt=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VXHJZ1HTCM>m=2oe1u0&_p=2124541525&cid=2054081724.1675342671&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675342671&sct=1&seg=0&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&dt=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://tmi.maariv.co.il
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-38275187-1&cid=2054081724.1675342671&jid=1231849222&gjid=1960241658&_gid=489947710.1675342671&_u=IEBAAEAAAAAAACAAI~&z=777827649
173.194.73.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-38275187-1&cid=2054081724.1675342671&jid=1231849222&gjid=1960241658&_gid=489947710.1675342671&_u=IEBAAEAAAAAAACAAI~&z=777827649
IP 173.194.73.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-38275187-1&cid=2054081724.1675342671&jid=1231849222&gjid=1960241658&_gid=489947710.1675342671&_u=IEBAAEAAAAAAACAAI~&z=777827649 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-119342840-2&cid=2054081724.1675342671&jid=682029483&gjid=90260734&_gid=489947710.1675342671&_u=IEDAAEABAAAAACAAI~&z=847337410
173.194.73.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-119342840-2&cid=2054081724.1675342671&jid=682029483&gjid=90260734&_gid=489947710.1675342671&_u=IEDAAEABAAAAACAAI~&z=847337410
IP 173.194.73.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-119342840-2&cid=2054081724.1675342671&jid=682029483&gjid=90260734&_gid=489947710.1675342671&_u=IEDAAEABAAAAACAAI~&z=847337410 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/808038599/?random=1675342671440&cv=11&fst=1675339200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1792137206&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/808038599/?random=1675342671440&cv=11&fst=1675339200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1792137206&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/808038599/?random=1675342671440&cv=11&fst=1675339200000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1792137206&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.26.85200 OK 117 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.26.85:0
Hash 83deffb3e597a354f0f552e82260db96
d076727f3b1b55fd88c3a4ef4f8f19d10ffe2192
61166045ca4a0482e9b7a15732587834fd06be9179ec757a60e441869c727bd9
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793317addcf11c0a-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.163200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.163:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/808038599/?random=1675342671447&cv=11&fst=1675342671447&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&label=sXzUCMj8qtQBEMfhpoED&hn=www.google.com&frm=0&url=https%3A%2F%2Ftmi.maariv.co.il%2F&tiba=TMI%20%7C%20%D7%9B%D7%9C%20%D7%9E%D7%94%20%D7%A9%D7%97%D7%9D%3A%20%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%20%D7%A1%D7%9C%D7%91%D7%A1%2C%20%D7%A4%D7%A4%D7%90%D7%A8%D7%A6%D7%99%20%D7%95%D7%92%D7%9C%D7%90%D7%9D>m_ee=1&auid=1740757942.1675342671&data=event%3Dconversion&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 12:57:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f8f48de864235d5d8b3d5be17a4e1ad3
62d79f5b3d9dd4d95876f2561c4a669bf8eac4a0
f587dbb5c019311f277e23e5fc6557d66cafd355fea2b9993f9f011e63ef3402
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4956
Cache-Control: max-age=107754
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63daa1c4-117"
Expires: Fri, 03 Feb 2023 18:53:20 GMT
Last-Modified: Wed, 01 Feb 2023 17:30:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7980
Expires: Thu, 02 Feb 2023 15:10:26 GMT
Date: Thu, 02 Feb 2023 12:57:26 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 52548
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604c573da6f79effa2a81e711c14ad9e
322a3a510ca73e124d78e31b49d676ec891a6762
8d2b897fe4251106be9183fa2a6a3b0918cd1f4dcc5f814aa88a630a77b4045c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: 774cebdf-b2bf-4a98-9d2b-e2abd4bd1a2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BG-hoAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-234163873ca67e934d684a1d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uBOoIV3qLgPgjOas4bG9LnzvJyW5AmcxMm7xqxI2keBg3er2G3MldA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:31 GMT
etag: "322a3a510ca73e124d78e31b49d676ec891a6762"
content-type: image/jpeg
age: 53755
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 20478
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
104.26.9.169200 OK 268 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 104.26.9.169:0
File type ASCII text, with very long lines (482)
Hash 58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1798108
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sQ522u0G9C68jHUdlep9YJJYgCh2l3H4xmXFqItOrG8G2Zny9zBOSgk6CJ1vMAh%2Fc5M%2F03KADk9vkacZhD766tFrmKn6fY2%2F0Fao7NUYcsUwMgvyxNB1PqiRkcbDIr30"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793317b2c974b500-OSL
Content-Encoding: br
d99666469a0d.bitsngo.net/widget-scripts/masonry.pkgd.min.js?v=4.0.v201807040945
95.140.228.46200 OK 10 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/masonry.pkgd.min.js?v=4.0.v201807040945
IP 95.140.228.46:0
File type ASCII text, with very long lines (10374), with CRLF line terminators
Hash f2bb3d4fe731e7573c38f9a3afef91e8
fa50f3a42748e81ef050cee948c4e13e0ca02583
a92d961d4c1679a592aab5e16675c7f912f8b8b6d4b7a6d76e91be0b8235b556
GET /widget-scripts/masonry.pkgd.min.js?v=4.0.v201807040945 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 6ecf08499c3a80b7c737cd3c7220b60d
age: 858423
date: Thu, 02 Feb 2023 12:57:26 GMT
last-modified: Tue, 23 Aug 2022 07:28:28 GMT
expires: Thu, 02 Feb 2023 14:30:23 GMT
content-length: 10202
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=tmi.maariv.co.il
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=tmi.maariv.co.il
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=tmi.maariv.co.il HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 12:57:26 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f8f48de864235d5d8b3d5be17a4e1ad3
62d79f5b3d9dd4d95876f2561c4a669bf8eac4a0
f587dbb5c019311f277e23e5fc6557d66cafd355fea2b9993f9f011e63ef3402
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4956
Cache-Control: max-age=107754
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63daa1c4-117"
Expires: Fri, 03 Feb 2023 18:53:20 GMT
Last-Modified: Wed, 01 Feb 2023 17:30:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7980
Expires: Thu, 02 Feb 2023 15:10:26 GMT
Date: Thu, 02 Feb 2023 12:57:26 GMT
Connection: keep-alive
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1643
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 12:30:03 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7980
Expires: Thu, 02 Feb 2023 15:10:26 GMT
Date: Thu, 02 Feb 2023 12:57:26 GMT
Connection: keep-alive
hb-dot-valuad.appspot.com/init?d=pubsub
142.250.74.148200 OK 64 B URL HTTP/2 hb-dot-valuad.appspot.com/init?d=pubsub
IP 142.250.74.148:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b77db7f18485e40e70c62570d506299c
9e6100007ecaf95a340d095b22494c203b216db0
bcb2d4492fd9473b6aab5b131a7d86c278d968e2b35c88f0322fdcda42aaf4f7
POST /init?d=pubsub HTTP/1.1
Host: hb-dot-valuad.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Content-Type: application/json
x-vad-version: 0.9.18
x-request-id: 1531b0c1-5603-410a-b201-fe50987de7d4
Origin: https://tmi.maariv.co.il
Content-Length: 148
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: undefined
etag: W/"26-R7Id9PbxcvgxUco+IbnAz2bmjz8"
content-encoding: gzip
x-cloud-trace-context: 3a8f3ae949e5b8222aaa160c8d8e94b0
date: Thu, 02 Feb 2023 12:57:26 GMT
server: Google Frontend
cache-control: private
content-length: 64
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41c44051cc3b4c69924df66048e7566b
5c6a12595c3f6005fec4baa84b16575951e72178
72dff70bcb417c088aba013a486e1dbabe099b40fb718a283f1ba220b142b848
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: 1b3ef150-9b12-4b8b-94e6-0d6debbd24ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTDFmPoAMF-UQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-0fea883b0ce1a1b933dc2be8;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qON7fRZ1XPCkl7ldiGagd0UcPynLKMzysXr8LZSRvS1ily9cN5w_wA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:22:55 GMT
age: 52471
etag: "5c6a12595c3f6005fec4baa84b16575951e72178"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=tmi.maariv.co.il
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=tmi.maariv.co.il
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=tmi.maariv.co.il HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 12:57:26 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7980
Expires: Thu, 02 Feb 2023 15:10:26 GMT
Date: Thu, 02 Feb 2023 12:57:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 53975
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6464
Cache-Control: max-age=121851
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 22:48:17 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5191
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:30:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6783
x-amzn-requestid: 5ab60169-ec65-483a-828b-3312c74ee4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BGjqoAMFV6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-73a465244f89adaa27626246;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EnMwKHnlZQbvGDjPKuFqW9G8CBaRAV6QKzJ2VFOtRPDm3EIgVUpmYQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:29 GMT
age: 53997
etag: "6c0cb65a477d6bc7d013529411d5735bd39e3d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
u.openx.net/w/1.0/arj?ju=https%3A%2F%2Ftmi.maariv.co.il%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1152x836&be=1&bc=hb_pb_3.0.3&dddid=527aa63a-5a87-4f05-b44e-d551014a4150%2C7ded9af8-1364-4842-b8fe-0d0688606ba8%2C2801ecd2-13f0-4e07-86d4-f94e8c65b2a7%2C8d5c508f-14e7-4172-a748-d6eaf1daa2a9%2C5ad7973f-313e-4f76-b8ae-34dd7ac23906&nocache=1675342672247&ph=699eab9c-3b10-4094-afdb-80584fcca830&schain=1.0%2C1!valuad.io%2C15104%2C1%2C%2C%2C&aus=160x600%2C120x600%7C728x90%2C970x180%2C728x180%2C970x250%2C970x90%2C970x350%7C728x90%2C970x90%7C728x90%2C970x90%7C970x250%2C970x90%2C728x90%2C970x180%2C728x180&divids=div-gpt-ad-1517142519578-4%2Cdiv-gpt-ad-1517142100515-15%2Cdiv-gpt-ad-1517142100515-16%2Cdiv-gpt-ad-1517142100515-17%2Cdiv-gpt-ad-1517142100515-18&aucs=%252F43010785%252Ftmi%252Fdesktop%252Fspecial_only%252Fhomepage_160x600_sticky_right%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x350_1st_top%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_1st%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_2nd%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x250_1st&auid=541185362%2C541185362%2C541185362%2C541185362%2C541185362
35.244.159.8200 OK 79 B URL HTTP/2 u.openx.net/w/1.0/arj?ju=https%3A%2F%2Ftmi.maariv.co.il%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1152x836&be=1&bc=hb_pb_3.0.3&dddid=527aa63a-5a87-4f05-b44e-d551014a4150%2C7ded9af8-1364-4842-b8fe-0d0688606ba8%2C2801ecd2-13f0-4e07-86d4-f94e8c65b2a7%2C8d5c508f-14e7-4172-a748-d6eaf1daa2a9%2C5ad7973f-313e-4f76-b8ae-34dd7ac23906&nocache=1675342672247&ph=699eab9c-3b10-4094-afdb-80584fcca830&schain=1.0%2C1!valuad.io%2C15104%2C1%2C%2C%2C&aus=160x600%2C120x600%7C728x90%2C970x180%2C728x180%2C970x250%2C970x90%2C970x350%7C728x90%2C970x90%7C728x90%2C970x90%7C970x250%2C970x90%2C728x90%2C970x180%2C728x180&divids=div-gpt-ad-1517142519578-4%2Cdiv-gpt-ad-1517142100515-15%2Cdiv-gpt-ad-1517142100515-16%2Cdiv-gpt-ad-1517142100515-17%2Cdiv-gpt-ad-1517142100515-18&aucs=%252F43010785%252Ftmi%252Fdesktop%252Fspecial_only%252Fhomepage_160x600_sticky_right%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x350_1st_top%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_1st%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_2nd%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x250_1st&auid=541185362%2C541185362%2C541185362%2C541185362%2C541185362
IP 35.244.159.8:0
File type JSON data\012- , ASCII text
Hash e17ecd7a14ddba814277b607abd09dad
765d49b163406ed21065d7e143ba73a79522d259
fd890c19fa13472fa2170ccf272567d612f1d52e7bd2e8b3dd3d91bb7ddae6ed
GET /w/1.0/arj?ju=https%3A%2F%2Ftmi.maariv.co.il%2F&ch=UTF-8&res=1280x1024x24&ifr=false&tz=0&tws=1152x836&be=1&bc=hb_pb_3.0.3&dddid=527aa63a-5a87-4f05-b44e-d551014a4150%2C7ded9af8-1364-4842-b8fe-0d0688606ba8%2C2801ecd2-13f0-4e07-86d4-f94e8c65b2a7%2C8d5c508f-14e7-4172-a748-d6eaf1daa2a9%2C5ad7973f-313e-4f76-b8ae-34dd7ac23906&nocache=1675342672247&ph=699eab9c-3b10-4094-afdb-80584fcca830&schain=1.0%2C1!valuad.io%2C15104%2C1%2C%2C%2C&aus=160x600%2C120x600%7C728x90%2C970x180%2C728x180%2C970x250%2C970x90%2C970x350%7C728x90%2C970x90%7C728x90%2C970x90%7C970x250%2C970x90%2C728x90%2C970x180%2C728x180&divids=div-gpt-ad-1517142519578-4%2Cdiv-gpt-ad-1517142100515-15%2Cdiv-gpt-ad-1517142100515-16%2Cdiv-gpt-ad-1517142100515-17%2Cdiv-gpt-ad-1517142100515-18&aucs=%252F43010785%252Ftmi%252Fdesktop%252Fspecial_only%252Fhomepage_160x600_sticky_right%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x350_1st_top%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_1st%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x90_2nd%2C%252F43010785%252Ftmi%252Fdesktop%252Fall_regular_ad_units%252Fhomepage_970x250_1st&auid=541185362%2C541185362%2C541185362%2C541185362%2C541185362 HTTP/1.1
Host: u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3451
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:59:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5191
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:30:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6464
Cache-Control: max-age=121851
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 22:48:17 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 860096d4e43d3d45747e851291fdf939
5654136647f8cf30984649123c4712a2bb32dbd2
c79a887f4e2ce9e98c33e09ff5493bec477602ecb12d9a33d8265e3a1efb55e8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4865
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:36:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 317
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: no-cache, private
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b409f42d7b-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 369
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: no-cache, private
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b409f82d7b-ARN
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aeea9e144cc0f54034a171c595f109db
10492fe44c12c2ac14e85aabab86ce062c2fbb2a
32d7b2564e83e3e9b695af9b7237949dbbaf5b0012b5f2a5ad314483ea02b3af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5988
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:17:39 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
185.89.210.212200 OK 241 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.210.212:0
File type JSON data\012- , ASCII text, with very long lines (591), with no line terminators
Hash cb11c75ac263fcce2e6dc0314937516d
f387812356005931e065d85f592d90b877c56f1e
13ac4d13137ba260b9923d5acc3f61e063c51590cb77b3796374234740df449a
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2198
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 12:57:26 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://tmi.maariv.co.il
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: a22633fd-f4dc-4f7c-adf4-392d9cc72a63
Set-Cookie: icu=ChgIx-FgEAoYASABKAEwtubungY4AUABSAEQtubungYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 12:57:26 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=7338109003244396242; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 12:57:26 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip
zdwidget3-bs.sphereup.com/zoomd/SearchUi/GetToken
104.40.187.26200 OK 323 B URL HTTP/1.1 zdwidget3-bs.sphereup.com/zoomd/SearchUi/GetToken
IP 104.40.187.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash d05dd8c696132e9a997d8361a0b1b5d4
3960a054ca85c0e149976e4045cc419e16d25ebb
6e9f571f761bf7e0e33a4ee2400d446482d67723218c5b7f2baa0c10b6f9f3db
POST /zoomd/SearchUi/GetToken HTTP/1.1
Host: zdwidget3-bs.sphereup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 17
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 323
Content-Type: application/json; charset=utf-8
Date: Thu, 02 Feb 2023 12:57:26 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: userid=80da18f4-bacd-4249-a3bf-30ab35be4d8a; domain=.sphereup.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
ab_16664167=0; expires=Thu, 09-Feb-2023 12:57:26 GMT; path=/; HttpOnly
Vary: Accept-Encoding
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2863
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cdb8f2e73b2706b5164ef81f95a5b5ac
891d673fa478aec8d55974920a5b1daa2e0c7a65
1c65a2f713285420801de52f871897093004f35cacf22f983edca57eb3e9c46b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6574
Cache-Control: max-age=99312
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63da7a78-116"
Expires: Fri, 03 Feb 2023 16:32:38 GMT
Last-Modified: Wed, 01 Feb 2023 14:43:04 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 389
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: no-cache, private
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b43a162d7b-ARN
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 316
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: no-cache, private
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b43a202d7b-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 23692097ca31908592060984aae6cc6e
3e06e4c092a9d9dd647d76ee58291528934df221
d7c4a696b9dd736862a5065352d3c9b37ae045a08452e40df7edf46c249983b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:24:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 318
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: no-cache, private
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b44a2c2d7b-ARN
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 23692097ca31908592060984aae6cc6e
3e06e4c092a9d9dd647d76ee58291528934df221
d7c4a696b9dd736862a5065352d3c9b37ae045a08452e40df7edf46c249983b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:24:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3a24f73634f4c175fcf8afe66522d4c5
b6be0ef8b424d88db88206728b3edfb6e2af45f4
0b3ac603508f11a804d8b65f369965f3f2685378a8e498c7148b541391966736
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89315
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63da629b-1d7"
Expires: Fri, 03 Feb 2023 13:46:01 GMT
Last-Modified: Wed, 01 Feb 2023 13:01:15 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YUon8fWOGDFFXBxq21uMwxOJResFPSla0-HaeAtrAzdkk1CythWkMw==
Age: 2686
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 81945998cc863146cdaa812efd0766d8
16c338ad84a8ebe39b79ef85ba2a138f34c3455f
3c9c6fc83329799ff0fbfd3744e93849c32bba4414fef5ee40ea0073e8a1263a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5384
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:27:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 23692097ca31908592060984aae6cc6e
3e06e4c092a9d9dd647d76ee58291528934df221
d7c4a696b9dd736862a5065352d3c9b37ae045a08452e40df7edf46c249983b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5582
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:24:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
b1h-euc1.zemanta.com/api/bidder/prebid/bid/
213.227.153.221204 No Content 0 B URL HTTP/1.1 b1h-euc1.zemanta.com/api/bidder/prebid/bid/
IP 213.227.153.221:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h-euc1.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 927
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://tmi.maariv.co.il
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5239
Cache-Control: max-age=98678
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 16:22:04 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4564
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:41:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4525
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:42:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
prg.smartadserver.com/prebid/v1
185.86.138.16200 OK 486 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.16:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (911), with no line terminators
Hash 8f882a1159aeac25955379ee349d07d1
55fd8340cd2b1517ba3e65537d2258420e495cce
7795403079d4c747e32041f6171914f33c2c804a7edc98f11bfe97070a7c4e71
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 432
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Thu, 02 Feb 2023 12:57:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
vs=521168=5305737; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
pid=2875974358823340439; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638109394465354229&o=1; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 257
Cache-Control: max-age=130428
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63db0cb1-1d7"
Expires: Sat, 04 Feb 2023 01:11:14 GMT
Last-Modified: Thu, 02 Feb 2023 01:06:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Thu, 02 Feb 2023 12:57:26 GMT
expires: Fri, 02 Feb 2024 12:57:26 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.16200 OK 473 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.16:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (705), with no line terminators
Hash 9f5c9e51e6e0664adef1d9f43765bfb4
d7c22790f7fba41f3dcb2ae3c6250f1957b7756e
c87ccab5b5eed50d05c4bb2edfd191144fcedce64339118a8252e8b92b4d6b0a
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 378
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Thu, 02 Feb 2023 12:57:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
vs=521168=5305737; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
pid=3039967299790178614; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638109394465527674&o=1; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4525
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:26 GMT
Last-Modified: Thu, 02 Feb 2023 11:42:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
script.4dex.io/adagio.js
104.26.9.169200 OK 23 kB IP 104.26.9.169:0
File type ASCII text, with very long lines (65354)
Hash 532a99fc0eb7b2c50a6bb0e5238b8dbb
d84157eb7e55c39d52ba5dde6e5bd4666f596e71
e6fa5d38f82f6bebf5dba12f2e84db1383827936fe077374593c6285f94e784c
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: P+mEqxfY48Z4fyHm2cB3hqX5miEPIaUlniX7w7NvtZpYYhRzivPtdviOowt52a/An8SJCWtlhU0=
x-amz-request-id: XV8R6SY7FAR9NWV8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
Last-Modified: Tue, 22 Nov 2022 09:44:15 GMT
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Cache-Control: public, max-age=1800
CF-Cache-Status: HIT
Age: 865688
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BDX2ZWCgOLHt6vKfe5WDnhTKki8O8P6gOa7CeGAcdwP0W7tB%2FzJ%2BE8yVI5Ze8ZP6TnFv%2F2oxKZCNXoZp%2BSrGQC2tZal5AxyJFwHcP7gCRqIpSkqTdq%2F1kRKgo%2FuSqMya"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793317b56bf3b509-OSL
Content-Encoding: br
prg.smartadserver.com/prebid/v1
185.86.138.16200 OK 518 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.16:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (960), with no line terminators
Hash bc50cc2fd18fce15b05cd24d2c6f6a0b
30f381c18be72b202508c99e00931195023348f4
5ffc9a1b51818367d1db0a06baf7233e2fed06e1057c480021d76983e03d79ba
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 377
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Thu, 02 Feb 2023 12:57:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
vs=521168=5305737; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
pid=1118824468329531889; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638109394465638445&o=1; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash bfdb942ac78b5a93b20053a4506c2b2a
9e0bfaade3410bd782d7b26d31641feba55c0ae1
9cfc4f9b38a77cb6bc513ebab5604888e2b12c07d14aa3913865ef163c47e381
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129897
Date: Thu, 02 Feb 2023 12:57:26 GMT
Etag: "63dafbb4-1d7"
Expires: Sat, 04 Feb 2023 01:02:23 GMT
Last-Modified: Wed, 01 Feb 2023 23:54:28 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u7gd16410Nwj-tBg6WTnqMkmKjpTVAJemkiRd_UbY4SzksS3fRQrpw==
Age: 4075
fonts.googleapis.com/icon?family=Material+Icons
142.250.74.106200 OK 812 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons
IP 142.250.74.106:0
Hash f4a4d330ec0b010a4c2a5a3b36f2b4ef
b72901294894c0606458335b695b09c7f16507e3
7cd5effeabe924180870e07b1f5fa18b407fb8435edd792408cd9583de159d44
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 12:57:26 GMT
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.16200 OK 512 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.16:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1069), with no line terminators
Hash 27cb39e47bb4c92c9544d141cabfa494
7fe590b132d3a2795d6cb7c44314251547858314
562203882e46ecd56a8876ba90afec07d4f3279d7461c4ddd0c39e90c0f1182e
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 449
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Thu, 02 Feb 2023 12:57:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
vs=521168=5305737; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
pid=7196993307238205945; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638109394465796939&o=1; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 7322
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache, no-store, must-revalidate
date: Thu, 02 Feb 2023 12:57:25 GMT
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=9&alt_size_ids=8&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&tk_flint=pbjs_lite_v6.29.3&x_source.tid=527aa63a-5a87-4f05-b44e-d551014a4150&l_pb_bid_id=48a22da25b85993&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&slots=1&rand=0.13806782797578698
213.19.162.31200 OK 449 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=9&alt_size_ids=8&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&tk_flint=pbjs_lite_v6.29.3&x_source.tid=527aa63a-5a87-4f05-b44e-d551014a4150&l_pb_bid_id=48a22da25b85993&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&slots=1&rand=0.13806782797578698
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (449), with no line terminators
Hash 84883793e6b29ada6a3e34c2c6710b68
9c8ac6a31c6325afd1f541956b89cc481e5198fe
c858b1c2bc585087ab8619e460517be8280dc3b2845852130fa8635cb398676b
GET /a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=9&alt_size_ids=8&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&tk_flint=pbjs_lite_v6.29.3&x_source.tid=527aa63a-5a87-4f05-b44e-d551014a4150&l_pb_bid_id=48a22da25b85993&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fspecial_only%2Fhomepage_160x600_sticky_right&slots=1&rand=0.13806782797578698 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDN3R7F4-3-EVZ8; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqLy5QUu7v+ve9DtVM30fCgIyPImRVqHACFwaovXoK9sj5KD5i/K6RNJBy9QPhSFAoi+YQF72mVaaNgOlP9J+ZY; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 449
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=2801ecd2-13f0-4e07-86d4-f94e8c65b2a7&l_pb_bid_id=502ff0b9a38da0a8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&slots=1&rand=0.241558126007538
213.19.162.31200 OK 448 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=2801ecd2-13f0-4e07-86d4-f94e8c65b2a7&l_pb_bid_id=502ff0b9a38da0a8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&slots=1&rand=0.241558126007538
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (448), with no line terminators
Hash e45b1416d9e1f3f14dfcb19165faebfc
6bce62471e6c236ede737c0b46c93e817b2925e8
53e15dc0daf65aceeecc77926d0c5f07127a43bc13d022aa0b7fa5bd530a9c3f
GET /a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=2801ecd2-13f0-4e07-86d4-f94e8c65b2a7&l_pb_bid_id=502ff0b9a38da0a8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_1st&slots=1&rand=0.241558126007538 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDN3R7F9-1-D4I5; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqgHb1FE4TIjO9DtVM30fCgIyPImRVqHACFwaovXoK9sj5KD5i/K6RNJBy9QPhSFAoi+YQF72mVaaNgOlP9J+ZY; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 448
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
185.86.138.16200 OK 574 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 185.86.138.16:0
ASN #201081 SmartAdServer SAS
File type JSON data\012- , ASCII text, with very long lines (1077), with no line terminators
Hash 7a6ac78ac4ae76f977f68a035fc0519d
a5365d74cff66f081a5e9876250f4c721855af23
0baa18c173f68627052d3f0a88b4e8b4f4bdbe4b98069d1e65613d4758c187eb
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 378
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Thu, 02 Feb 2023 12:57:26 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
vs=521168=5305737; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
pid=2278983731564513670; expires=Fri, 02 Feb 2024 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638109394466310700&o=1; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Fri, 03 Feb 2023 12:57:26 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prodpsus1.blob.core.windows.net/content/pixels/zoomd_logs_general.js?userId=20aa9e71-ea29-4c84-a4bc-68a1a2b3e916
20.150.88.132200 OK 7.5 kB URL HTTP/1.1 prodpsus1.blob.core.windows.net/content/pixels/zoomd_logs_general.js?userId=20aa9e71-ea29-4c84-a4bc-68a1a2b3e916
IP 20.150.88.132:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (2069)
Hash 8a411d126850cdaa5cbe47c7a28885c0
5d32e070b4b28c1183fb1a7e961085fea46ec510
9f2663df351ccaee077d46686e25aa497bd9e47b19ec0800d38ee5c12e11b1a0
GET /content/pixels/zoomd_logs_general.js?userId=20aa9e71-ea29-4c84-a4bc-68a1a2b3e916 HTTP/1.1
Host: prodpsus1.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 7547
Content-Type: application/javascript
Content-MD5: ikEdEmhQzapcvkfHooiFwA==
Last-Modified: Sun, 28 Jul 2019 10:23:28 GMT
Accept-Ranges: bytes
ETag: "0x8D71345A1ACE752"
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 31803f13-401e-000f-1605-3710c4000000
x-ms-version: 2014-02-14
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
Date: Thu, 02 Feb 2023 12:57:26 GMT
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=5ad7973f-313e-4f76-b8ae-34dd7ac23906&l_pb_bid_id=5231049da2037ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&slots=1&rand=0.7538996058853675
213.19.162.31200 OK 452 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=5ad7973f-313e-4f76-b8ae-34dd7ac23906&l_pb_bid_id=5231049da2037ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&slots=1&rand=0.7538996058853675
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (452), with no line terminators
Hash 362b273d7c9a45d4c4b77aa2eb8ad85b
1b4ee14cead53317018f6be9367cf170e70afdab
143766fa8664d60ab3288544d71bd1c6e095e845f2f80ad2d43c7478ebc6802a
GET /a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&tk_flint=pbjs_lite_v6.29.3&x_source.tid=5ad7973f-313e-4f76-b8ae-34dd7ac23906&l_pb_bid_id=5231049da2037ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x250_1st&slots=1&rand=0.7538996058853675 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDN3R7FH-1Y-GWGT; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqUQlYjzcmNB+9DtVM30fCgIyPImRVqHACFwaovXoK9sj5KD5i/K6RNJBy9QPhSFAoi+YQF72mVaaNgOlP9J+ZY; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 452
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&tk_flint=pbjs_lite_v6.29.3&x_source.tid=8d5c508f-14e7-4172-a748-d6eaf1daa2a9&l_pb_bid_id=518fd309824a226&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&slots=1&rand=0.5690588072676425
213.19.162.31200 OK 448 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&tk_flint=pbjs_lite_v6.29.3&x_source.tid=8d5c508f-14e7-4172-a748-d6eaf1daa2a9&l_pb_bid_id=518fd309824a226&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&slots=1&rand=0.5690588072676425
IP 213.19.162.31:0
File type JSON data\012- , ASCII text, with very long lines (448), with no line terminators
Hash b0af3c5363cd77e5ede74c7159811836
9aab2bf60dd12a4151c84e3915c06c97ae25d4d5
cf34160464b2067fb42de09d52429c2fd5808b6c62e83862789b273cf53c53df
GET /a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&tk_flint=pbjs_lite_v6.29.3&x_source.tid=8d5c508f-14e7-4172-a748-d6eaf1daa2a9&l_pb_bid_id=518fd309824a226&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x90_2nd&slots=1&rand=0.5690588072676425 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDN3R7FX-16-K64T; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/Ei75vqOT4yuLO9DtVM30fCgIyPImRVqHACFwaovXoK9sj5KD5i/K6RNJBy9QPhSFAoi+YQF72mVaaNgOlP9J+ZY; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 448
X-Firefox-Spdy: h2
hb.minutemedia-prebid.com/hb-mm-multi
34.195.40.192200 OK 105 B URL HTTP/2 hb.minutemedia-prebid.com/hb-mm-multi
IP 34.195.40.192:0
File type JSON data\012- , ASCII text
Hash f00d7ce63a3cf977d17f2ef4b74a1051
9b60123716d87a8b156bef9d7ee8e1f82befc9ce
5251c9c0e1fcd17f9ea20601ab18c70213fef243b587c14c27e101b0d71cf448
POST /hb-mm-multi HTTP/1.1
Host: hb.minutemedia-prebid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2377
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
content-length: 105
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://tmi.maariv.co.il
x-reason: gdpr is not applied
X-Firefox-Spdy: h2
cloudfront.loggly.com/js/loggly.tracker-latest.min.js
54.230.83.166200 OK 1.1 kB URL HTTP/1.1 cloudfront.loggly.com/js/loggly.tracker-latest.min.js
IP 54.230.83.166:0
File type ASCII text, with very long lines (2373)
Hash b91287e2971e56f1c0d8413c7a59a610
89d4e28d291d92ad192b24a8a2302e5148c62bc0
191b057d80a4f2efbd7ff79b78c51720da3cf1cdab07d74db1f7785aab97724d
GET /js/loggly.tracker-latest.min.js HTTP/1.1
Host: cloudfront.loggly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Mar 2021 09:26:13 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 20:45:42 GMT
ETag: W/"b471738fe2090543611c9c980eb60bc0"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KNxFVQJ0-MuzdCdIgqYrBCWa7sfAn7dGTvqySafK7y0G0yh2WSfNGg==
Age: 58305
tlx.3lift.com/header/auction?lib=prebid&v=6.29.3&referrer=https%3A%2F%2Ftmi.maariv.co.il%2F&tmax=3000
3.125.201.50200 OK 19 B URL HTTP/2 tlx.3lift.com/header/auction?lib=prebid&v=6.29.3&referrer=https%3A%2F%2Ftmi.maariv.co.il%2F&tmax=3000
IP 3.125.201.50:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5
POST /header/auction?lib=prebid&v=6.29.3&referrer=https%3A%2F%2Ftmi.maariv.co.il%2F&tmax=3000 HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6637
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ua-bitness,sec-ch-prefers-color-scheme,sec-ch-width,sec-ch-ect,user-agent,sec-ch-downlink,sec-ch-ua-mobile,sec-ch-save-data,sec-ch-device-memory,sec-ch-dpr,sec-ch-ua-full-version,sec-ch-ua-model,sec-ch-ua-platform-version,sec-ch-viewport-width,sec-ch-ua-platform,sec-ch-viewport-height,sec-ch-rtt,sec-ch-ua-arch,sec-ch-ua
x-auction-status: 29
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
X-Firefox-Spdy: h2
hb-dot-valuad.appspot.com/analytics?d=pubsub
142.250.74.148200 OK 0 B URL HTTP/2 hb-dot-valuad.appspot.com/analytics?d=pubsub
IP 142.250.74.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /analytics?d=pubsub HTTP/1.1
Host: hb-dot-valuad.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-request-id,x-vad-version
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://tmi.maariv.co.il
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: content-type,x-request-id,x-vad-version
x-request-id: undefined
x-cloud-trace-context: 12f114c28f12c7e76a7c744a158cc31f
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
40.79.44.59200 OK 0 B URL HTTP/1.1 prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
IP 40.79.44.59:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /usagelogs/messages HTTP/1.1
Host: prod-sb-appanalytics-us1.servicebus.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: action,authorization,clientid,content-type,sourcesenderid
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://tmi.maariv.co.il
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 3600
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: action,authorization,clientid,content-type,sourcesenderid
Strict-Transport-Security: max-age=31536000
Date: Thu, 02 Feb 2023 12:57:26 GMT
prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
40.79.44.59201 Created 0 B URL HTTP/1.1 prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
IP 40.79.44.59:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /usagelogs/messages HTTP/1.1
Host: prod-sb-appanalytics-us1.servicebus.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/atom+xml;type=entry;charset=utf-8
Authorization: SharedAccessSignature sr=http%3A%2F%2Fprod-sb-appanalytics-us1.servicebus.windows.net%2F&sig=Je1sRog7Z0AkdClQXGxLjg9TPTZOavfBY5IbgmFFaQE%3D&se=1675345608&skn=all
sourcesenderId: 3
clientId: "16664167"
action: pageView
Content-Length: 810
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://tmi.maariv.co.il
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Thu, 02 Feb 2023 12:57:27 GMT
ocsp.starfieldtech.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 0bdf0f7744cbd2ce1ad88c431ddabda9
ce522b4e91b9a888a40e34e1bd9f06cb639ca362
313fd71ec7b36e9b7a8a33d7e180a04ca9f551375ee06be2172bcdd9b7134193
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 12:57:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:35:33 GMT
Expires: Thu, 02 Feb 2023 21:35:33 GMT
ETag: "ce522b4e91b9a888a40e34e1bd9f06cb639ca362"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash f272271261bfe90f09569b812de6f253
ab40bca0c92c8a5884e2f6cd23df14d63229c0df
42f7dddb0c624fd74d51388bfafcca0c5a2b1ff330709b7a111703ec77b0d5a8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 12:57:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:39:34 GMT
Expires: Thu, 02 Feb 2023 21:39:34 GMT
ETag: "ab40bca0c92c8a5884e2f6cd23df14d63229c0df"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID
72.251.249.9204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID
IP 72.251.249.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 02 Feb 2023 12:57:27 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap3ams1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f4f3ba9454559b5ccacf79c29c7cd75d
adc76c93b61785ec964b6a75b4b8d327f5d395f7
a41cff22da0c9fa6e2d3ee16d3c787dc754ae5a3577c7ee0ea7fe9c80564b9af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4952
Cache-Control: max-age=139100
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:27 GMT
Etag: "63db1c3b-1d7"
Expires: Sat, 04 Feb 2023 03:35:47 GMT
Last-Modified: Thu, 02 Feb 2023 02:13:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
widgets.outbrain.com/images/widgetIcons/ob_logo_16x16.svg
23.38.201.81200 OK 14 kB URL HTTP/2 widgets.outbrain.com/images/widgetIcons/ob_logo_16x16.svg
IP 23.38.201.81:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6594)
Hash af7be0711fb1cf2f41bb793256c8f148
18da35a8f882ad83a5e3fad7bf0d5b1303a7a8cb
c3c89d5295be3c6415416b83a9e4c0fc67a790e55713ddc3f2d0c07185779acf
GET /images/widgetIcons/ob_logo_16x16.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "af7be0711fb1cf2f41bb793256c8f148:1673369412.559449"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 13687
cache-control: max-age=2592000
expires: Sat, 04 Mar 2023 12:57:27 GMT
date: Thu, 02 Feb 2023 12:57:27 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010130/module/reel.js?e=1
23.38.201.81200 OK 8.7 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010130/module/reel.js?e=1
IP 23.38.201.81:0
File type ASCII text, with very long lines (1610)
Hash e67642f09479c4322d98f2baaaa3ff63
d7f42208c57e4c151fbd773cf4b96e22e3c450bb
d90dd74fda3b307b1670f3445d1c780673ab06e17f213a5f27c144d34bebe50a
GET /nanoWidget/2010130/module/reel.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "5468404216ed98cf0f62b281d8b5b0c5:1675260310.008905"
last-modified: Wed, 01 Feb 2023 13:35:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Thu, 09 Feb 2023 12:57:27 GMT
date: Thu, 02 Feb 2023 12:57:27 GMT
content-length: 8718
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
csync.smilewanted.com/drop_cookie_sw.php
104.22.68.131200 OK 25 B URL HTTP/2 csync.smilewanted.com/drop_cookie_sw.php
IP 104.22.68.131:0
Hash 363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943
GET /drop_cookie_sw.php HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw8xMXDrKwZomSSbnxmGtTpcFVXVM5MrlgBZ7A390iWb1zJYRRbX6mzGNf9sHJOhZElAETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u6nmQEdX3eYJouwosH9YnTCQ%3D%3D; expires=Fri, 02-Feb-2024 18:46:39 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b95f7d2d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20230202
104.16.89.20200 OK 875 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20230202
IP 104.16.89.20:0
File type JSON data\012- , ASCII text, with very long lines (1595), with no line terminators
Hash d84d4103fd8f9c77ea65356040de18e1
330bb2abe997d68bae5b34235718107a358c910b
0763c40e40fc1913ad51d1757c5fab692d716eec2f24742911722d594707c6fb
GET /gh/prebid/currency-file@1/latest.json?date=20230202 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.0.1605
x-jsd-version-type: version
etag: W/"63b-ofkszW5wWVQ4qziiMrQ365RtTH0"
x-served-by: cache-fra-eddf8230021-FRA, cache-jnb7025-JNB
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 32196
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=COVNjfnZaOOd8DRy7MoKc8X2Qzoah3e9hrtOsr8HmniI5mwe6e%2F8X3vyL4T%2BF7nEl8Evwe%2BUapl44024SkkuUHGJw%2FHwhFUE%2B4cEGZPF0Rhdbcl%2B3wtryxGXOqmOgUEUW4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317b26c6bb511-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 12:57:27 GMT
Last-Modified: Thu, 02 Feb 2023 12:12:26 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tCagKbV7wNzejWieAwVntV8mPEoIE5FRU2og6h9ykJo-m70l0V7ubw==
Age: 2701
logs-01.loggly.com/inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger
52.34.108.226200 OK 19 B URL HTTP/1.1 logs-01.loggly.com/inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger
IP 52.34.108.226:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b5efa112ce475f8bf73086a68521ea2e
4c4e7a9e8feb3e4595b4baf2db4466df001afa61
cdc7a3d8f9ce204e8853c2f7088b9c3fe488432314d1ea6c17cf8fd4ae179261
POST /inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger HTTP/1.1
Host: logs-01.loggly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 314
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 12:57:27 GMT
Content-Type: text/html
Content-Length: 19
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Authorization,Host,Content-Type,X-Forwarded-For,X-LOGGLY-TAG,X-Real-IP
ads.pubmatic.com/AdServer/js/pwt/160447/3622/pwt.js
23.38.200.201200 OK 83 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/160447/3622/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 921bd72b9359ef7b9187925f30339e73
11ed2f067b8b450c3512ae084438c0f3bc34a7af
e248804372e5dd70b1e1ceaca37a7902d49f25c9486a813d8561c8d586075902
GET /AdServer/js/pwt/160447/3622/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 14 Jul 2021 08:22:46 GMT
etag: "1481c32-41771-5c7110f340cdf"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: text/javascript
content-length: 82748
cache-control: max-age=102778
expires: Fri, 03 Feb 2023 17:30:25 GMT
date: Thu, 02 Feb 2023 12:57:27 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
csync.smilewanted.com/getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID
104.22.68.131302 Found 43 B URL HTTP/2 csync.smilewanted.com/getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID
IP 104.22.68.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw8xMXDrKwZomSSbnxmGtTpcFVXVM5MrlgBZ7A390iWb1zJYRRbX6mzGNf9sHJOhZElAETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u6nmQEdX3eYJouwosH9YnTCQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/html; charset=UTF-8
location: https://ib.adnxs.com/prebid/setuid?bidder=smilewanted&gdpr=0&gdpr_consent=&f=i&uid=30650babb4056ddf86c492ceceeb4744
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317bae9242d7b-ARN
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5bb2e02be23f4f2d01576d6da2648c44
67c6161a4af4b51e400a1759178b0ee647957118
6fafe86acf89d94def8ab313d0ad02ef4579f49fbac85f4b6c832ad025a93192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4133
Cache-Control: max-age=94363
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:27 GMT
Etag: "63da70ad-117"
Expires: Fri, 03 Feb 2023 15:10:10 GMT
Last-Modified: Wed, 01 Feb 2023 14:01:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
www.facebook.com/tr/?id=843403715863595&ev=PageView&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&rl=&if=false&ts=1675342672178&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675342672177.1359739614&it=1675342671304&coo=false&rqm=GET
157.240.205.35302 Found 0 B URL HTTP/2 www.facebook.com/tr/?id=843403715863595&ev=PageView&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&rl=&if=false&ts=1675342672178&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675342672177.1359739614&it=1675342671304&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=843403715863595&ev=PageView&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&rl=&if=false&ts=1675342672178&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.2.1675342672177.1359739614&it=1675342671304&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
date: Thu, 02 Feb 2023 12:57:27 GMT
set-cookie:
location: /tr/?coo=false&dl=https%3A%2F%2Ftmi.maariv.co.il%2F&ec=0&ev=PageView&fbp=fb.2.1675342672177.1359739614&id=843403715863595&if=false&it=1675342671304&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675342672178&v=2.9.95
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-type: text/plain
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
match.sharethrough.com/universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent=
18.192.184.215204 No Content 0 B URL HTTP/2 match.sharethrough.com/universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent=
IP 18.192.184.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:27 GMT
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=smilewanted&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=smilewanted&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=smilewanted&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&tk_flint=pbjs_lite_v6.29.3&x_source.tid=7ded9af8-1364-4842-b8fe-0d0688606ba8&l_pb_bid_id=490541f53e78da48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&slots=1&rand=0.7087343270225994
213.19.162.31200 OK 3.6 kB URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&tk_flint=pbjs_lite_v6.29.3&x_source.tid=7ded9af8-1364-4842-b8fe-0d0688606ba8&l_pb_bid_id=490541f53e78da48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&slots=1&rand=0.7087343270225994
IP 213.19.162.31:0
Hash d09f3c30ac9e99439b089aad098a2a1c
81a912bbcb2aeede9d307f2f0205a5906eed5008
45a6d305c9980e5434a53ac964653fdd5763ff86eea48fb6fdf0713c36316784
GET /a/api/fastlane.json?account_id=24684&site_id=431738&zone_id=2465508&size_id=2&alt_size_ids=55%2C57&rp_schain=1.0,1!valuad.io,15104,1,,,&rf=https%3A%2F%2Ftmi.maariv.co.il%2F&kw=%D7%94%D7%A8%D7%9B%D7%99%D7%9C%D7%95%D7%AA%2C%D7%A1%D7%9C%D7%91%D7%A1%2C%D7%A4%D7%A4%D7%A8%D7%90%D7%A6%D7%99%2C%D7%90%D7%95%D7%A4%D7%A0%D7%94&tg_i.ref=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.page=https%3A%2F%2Ftmi.maariv.co.il%2F&tg_i.domain=tmi.maariv.co.il&tg_i.pbadslot=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&tk_flint=pbjs_lite_v6.29.3&x_source.tid=7ded9af8-1364-4842-b8fe-0d0688606ba8&l_pb_bid_id=490541f53e78da48&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F43010785%2Ftmi%2Fdesktop%2Fall_regular_ad_units%2Fhomepage_970x350_1st_top&slots=1&rand=0.7087343270225994 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDN3R7GK-13-D6GQ; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoUjjs/HFzTFe9DtVM30fCgIyPImRVqHACFwaovXoK9sj5KD5i/K6RNJBy9QPhSFAoi+YQF72mVaaNgOlP9J+ZY; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 12:57:26 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5bb2e02be23f4f2d01576d6da2648c44
67c6161a4af4b51e400a1759178b0ee647957118
6fafe86acf89d94def8ab313d0ad02ef4579f49fbac85f4b6c832ad025a93192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5738
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:27 GMT
Last-Modified: Thu, 02 Feb 2023 11:21:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
csync.smilewanted.com/
104.22.68.131200 OK 14 kB IP 104.22.68.131:0
File type ASCII text, with very long lines (49614)
Hash 87938834e2d868a402a928efb411277c
15ac6484436072aeb4aaa69978497c8e912a00cb
dbb2246771f5d29c3a9afd1952e9d7612948cb11b1516bf7edddcdc077fb4d1b
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b7fe0f2d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
odb.outbrain.com/utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=1&rand=69999&key=NANOWDGT01&widgetJSId=AR_8&va=true&et=true&format=html&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&adblck=false&abwl=false&px=58&py=3428&vpd=2604&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F
151.101.246.132200 OK 8.8 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=1&rand=69999&key=NANOWDGT01&widgetJSId=AR_8&va=true&et=true&format=html&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&adblck=false&abwl=false&px=58&py=3428&vpd=2604&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F
IP 151.101.246.132:0
File type Unicode text, UTF-8 text, with very long lines (26749), with no line terminators
Hash 02091435b5e6713dbfff3ab83f506d52
8f33e05583a889ec91e4b6500823b546a0c4f23a
f8ca590da0de97818ccc7570ad04f781fc3cec9edc3eb98922563648c22610e8
GET /utils/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&idx=1&rand=69999&key=NANOWDGT01&widgetJSId=AR_8&va=true&et=true&format=html&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&adblck=false&abwl=false&px=58&py=3428&vpd=2604&cw=1024&activeTab=true&ab=0&wl=0&umv=0&obRecsAbtestVars=1174:3820&settings=true&recs=true&version=2010130&sig=0OiSW67k&apv=false&&osLang=en-US&winW=1140&winH=836&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=0&ccpaStat=0&chs=1&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 1bbae9be751a39bc3faf34ba9a3c4de9
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 02 Feb 2023 12:57:27 GMT
x-served-by: cache-lga21955-LGA, cache-hel1410024-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675342648.557644,VS0,VE221
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 8848
X-Firefox-Spdy: h2
us.ck-ie.com/smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID}
8.2.108.175204 No Content 0 B URL HTTP/1.1 us.ck-ie.com/smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID}
IP 8.2.108.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID} HTTP/1.1
Host: us.ck-ie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 02 Feb 2023 12:57:27 GMT
Content-Type: text/plain
Connection: keep-alive
ecdn.firstimpression.io/fi_client.js
54.230.111.99304 Not Modified 0 B URL HTTP/2 ecdn.firstimpression.io/fi_client.js
IP 54.230.111.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fi_client.js HTTP/1.1
Host: ecdn.firstimpression.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 02 Feb 2023 12:07:29 UTC
If-None-Match: W/"e6fa9b5a0621ad5991b32d1133b85d4a"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 02 Feb 2023 12:07:29 GMT
server: nginx/1.20.0
x-powered-by: PHP/8.0.14
x-xss-protection: 0
last-modified: Thu, 02 Feb 2023 12:07:29 UTC
etag: W/"e6fa9b5a0621ad5991b32d1133b85d4a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NXLzcZKGPa5R4gVsqJOBiGILWXxJpyAKNYhlttwTjh0XBMP8DTqv-g==
age: 2998
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.162200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.162:0
File type ASCII text, with very long lines (3504)
Hash 40b8ffdc606e81703c5f6a39df96f373
0a39b905fe6b8f947d256b01614abcdd27baef65
93cfc3bdb53008e8640dee5f3e7515b10a9b2959e69d8f2919f3d243cf547f36
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49146
date: Thu, 02 Feb 2023 12:57:27 GMT
expires: Thu, 02 Feb 2023 12:57:27 GMT
cache-control: private, max-age=3000
etag: "1675254965429469"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010130/module/streamFeed.js?e=1
23.38.201.81200 OK 13 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010130/module/streamFeed.js?e=1
IP 23.38.201.81:0
File type ASCII text, with very long lines (1562)
Hash 50c10af810b8526eccdab87602c87732
bff48d4a8818367a23fa65b7209d7cd98d69c777
28b0b71c2b369fc55b8541c3db7895dab7ad29568fe35b8347a63c29a62e5e0d
GET /nanoWidget/2010130/module/streamFeed.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "ea295cb19472922580bd70418bf9a370:1675260318.840883"
last-modified: Wed, 01 Feb 2023 13:35:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Thu, 09 Feb 2023 12:57:27 GMT
date: Thu, 02 Feb 2023 12:57:27 GMT
content-length: 13243
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=50e038c5b82a492dd385d63cc642891e_8310_1675342645914&tm=1044&eT=0&widgetWidth=1024&widgetHeight=544&widgetX=58&widgetY=2411&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=738&oo=true&lo=1780&odbreq=2200&odbres=2938&to=1675342669379&umv=0&chs=1&ab=0&wl=0
70.42.32.223200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=50e038c5b82a492dd385d63cc642891e_8310_1675342645914&tm=1044&eT=0&widgetWidth=1024&widgetHeight=544&widgetX=58&widgetY=2411&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=738&oo=true&lo=1780&odbreq=2200&odbres=2938&to=1675342669379&umv=0&chs=1&ab=0&wl=0
IP 70.42.32.223:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=50e038c5b82a492dd385d63cc642891e_8310_1675342645914&tm=1044&eT=0&widgetWidth=1024&widgetHeight=544&widgetX=58&widgetY=2411&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&cheq=0&rtt=738&oo=true&lo=1780&odbreq=2200&odbres=2938&to=1675342669379&umv=0&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:27 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: ccf51302b281df57118ebd39ab40deee
d99666469a0d.bitsngo.net/widget-scripts/extra_content/zoomd.widget.externalcontent.loader.min.js?ver=4.0.v20230126102323.104714
95.140.228.46200 OK 6.6 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/extra_content/zoomd.widget.externalcontent.loader.min.js?ver=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (16206), with no line terminators
Hash ab75976a5165d1779d05c71e7034d6a7
e62a2a451a99185c875a1fd07b0828ba136cce9f
d8eff595016bc5dde278401cba1ac9efcafff815edd2d6b772ca756779f06594
GET /widget-scripts/extra_content/zoomd.widget.externalcontent.loader.min.js?ver=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: ac40acee3a770d67a77368ea70dded1c
age: 612599
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 26 Jan 2023 10:23:52 GMT
expires: Sun, 05 Feb 2023 10:47:29 GMT
content-length: 6582
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d99666469a0d.bitsngo.net/Content/4.0/css/zoomd.widget.autoComplete.css?v=4.0.v20230126102323.104714
95.140.228.46200 OK 615 B URL HTTP/2 d99666469a0d.bitsngo.net/Content/4.0/css/zoomd.widget.autoComplete.css?v=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 38816c0aba3268ae52606e5f49e59208
7ccf874170896a69a0327ab6f40555bab5e2cef8
93aaa3d5ee391b66ca75a913b60e1de7a6025739bba5ba05a1b6c2600e27e891
GET /Content/4.0/css/zoomd.widget.autoComplete.css?v=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 64633d009d6abaeb3ee9abc931b61321
age: 612599
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 02 Jun 2022 09:56:54 GMT
expires: Sun, 05 Feb 2023 10:47:29 GMT
content-length: 615
X-Firefox-Spdy: h2
d99666469a0d.bitsngo.net/widget-scripts/zoomd.widget.autoComplete.min.js?v=4.0.v20230126102323.104714
95.140.228.46200 OK 1.7 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/zoomd.widget.autoComplete.min.js?v=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (3406), with no line terminators
Hash b49d4bba35ba2af82bdcfc916f39e771
9e00364d7173d5f55aefef624b255b90306065a6
8d8ae8738493a5f7ddb3fa035d90e3ef0e52c11eb8e0dd6e8660743eaeb15feb
GET /widget-scripts/zoomd.widget.autoComplete.min.js?v=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: e1eb3a47308e907b80a1f6c9ccb12098
age: 612599
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 26 Jan 2023 10:23:50 GMT
expires: Sun, 05 Feb 2023 10:47:29 GMT
content-length: 1727
X-Firefox-Spdy: h2
d99666469a0d.bitsngo.net/widget-scripts/extra_content/su_w_ts_m.min.js?ver=4.0.v20230126102323.104714
95.140.228.46200 OK 7.2 kB URL HTTP/2 d99666469a0d.bitsngo.net/widget-scripts/extra_content/su_w_ts_m.min.js?ver=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (21717), with no line terminators
Hash f68676a1fcf6a0dbb55240fb574af1d6
4cac8330e57d3da08373c9b3215205a13be74252
4b96596e6c014f8e4bc49b1a378402e01dbcc46588443d08ea72ced999a9fd08
GET /widget-scripts/extra_content/su_w_ts_m.min.js?ver=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 87f5b2675846406e5d4af329cf86c284
age: 612599
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 26 Jan 2023 10:23:48 GMT
expires: Sun, 05 Feb 2023 10:47:29 GMT
content-length: 7240
X-Firefox-Spdy: h2
csync.smilewanted.com/set_partner_userid_get/freewheel/4e771337f1a75ae532ccb27b513123c0?gdpr_consent=&gdpr=0
104.22.68.131200 OK 2.0 kB URL HTTP/2 csync.smilewanted.com/set_partner_userid_get/freewheel/4e771337f1a75ae532ccb27b513123c0?gdpr_consent=&gdpr=0
IP 104.22.68.131:0
File type ASCII text, with very long lines (2899), with no line terminators
Hash 69b6d97d89b76558fee5a81da44fb7d4
a8781b0ec1815610f32e982520aca256c95c5331
98a541a357e741582155e789736705d1be5979840fe7777d1a3f603a5892fa54
GET /set_partner_userid_get/freewheel/4e771337f1a75ae532ccb27b513123c0?gdpr_consent=&gdpr=0 HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Cookie: sw_user_params_infos=8sdRREvsw7LjLys0YvGw8xMXDrKwZomSSbnxmGtTpcFVXVM5MrlgBZ7A390iWb1zJYRRbX6mzGNf9sHJOhZElAETzxb2ORoHNPFOLNmDEN6Mia0dNse%2BBrdIA0FOk2u6nmQEdX3eYJouwosH9YnTCQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D; expires=Fri, 02-Feb-2024 18:46:39 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317bc6a8c2d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
d99666469a0d.bitsngo.net/content/4.0/js/vendor.js?v=4.0.v20230126102323.104714
95.140.228.46200 OK 158 kB URL HTTP/2 d99666469a0d.bitsngo.net/content/4.0/js/vendor.js?v=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 158 kB (157748 bytes)
Hash d84590ca8e28e8ca15868982c65a6495
c2c1de14aa34fe6cec9b427c828b9a8655e0e2d4
616ef18d5ccd535e14bfcd07c1da5cd58d020fef1b65bb56ab8ba80a727336cf
GET /content/4.0/js/vendor.js?v=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 0fd8aaad9abbc1538b5c5b5ae3a0e140
age: 612600
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 26 Jan 2023 10:29:58 GMT
expires: Sun, 05 Feb 2023 10:47:28 GMT
content-length: 157748
X-Firefox-Spdy: h2
cdn.connectad.io/connectmyusers.php?gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fconnectad%2F
104.22.54.206200 OK 650 B URL HTTP/2 cdn.connectad.io/connectmyusers.php?gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fconnectad%2F
IP 104.22.54.206:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1179), with no line terminators
Hash d8a97449880933bb894845bbd5291bca
1a675af6566b5ce4191185586f74e27935e6a9f7
4c2dacd603354841d25cf635473afdc94d49e5e69aa2defd5633009d8b63f554
GET /connectmyusers.php?gdpr_consent=&cb=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fconnectad%2F HTTP/1.1
Host: cdn.connectad.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=3600
cf-cache-status: HIT
age: 1832
last-modified: Thu, 02 Feb 2023 12:26:55 GMT
server: cloudflare
cf-ray: 793317bbdb9cb506-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tmi.maariv.co.il/Content/fonts.css
104.20.19.195200 OK 190 B URL HTTP/2 tmi.maariv.co.il/Content/fonts.css
IP 104.20.19.195:0
Hash c862cf4576bc14f37faca449cb0c2a3d
897337d4e79731eb00ab487b925b2a94d7a77333
8b353bab95d29fb4cf725d0247a7355a16b4f07589f6d93fcfaa342a4a40afb0
GET /Content/fonts.css HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Cookie: _cb=paPUw6GiJYBy4RTq; _chartbeat2=.1675342671208.1675342671208.1.o7BbWDz9sQB8lkgpCKF_G9GIlvS.1; _cb_svref=null; _ga=GA1.1.2054081724.1675342671; _gid=GA1.3.489947710.1675342671; _gat=1; _gat_TMI=1; _gat_UA-4780630-1=1; _gat_gtag_UA_38275187_8=1; _gcl_au=1.1.1740757942.1675342671; _ga_VXHJZ1HTCM=GS1.1.1675342671.1.0.1675342671.0.0.0; OptanonConsent=isGpcEnabled=0&datestamp=Thu+Feb+02+2023+12%3A57%3A52+GMT%2B0000+(Coordinated+Universal+Time)&version=6.17.0&isIABGlobal=false&hosts=&landingPath=https%3A%2F%2Ftmi.maariv.co.il%2F&groups=C0002%3A0%2CC0004%3A0%2CC0005%3A0%2CC0003%3A0%2CC0001%3A1; _fbp=fb.2.1675342672177.1359739614; _pbjs_userid_consent_data=3524755945110770; zdSessionId_16664167=6ddb7500-f3c6-4562-9a48-095fca94f723; vad-loc-code=no; 16664167-ehtoken=SharedAccessSignature sr=http%3A%2F%2Fprod-sb-appanalytics-us1.servicebus.windows.net%2F&sig=Je1sRog7Z0AkdClQXGxLjg9TPTZOavfBY5IbgmFFaQE%3D&se=1675345608&skn=all; logglytrackingsession=bc0d9c70-8c3b-45f5-8ddf-aae9c4b2ed44; __gads=ID=2f02d0aaeaac9db9:T=1675342647:S=ALNI_Maxg8UcJAZLCbZvXYIYYpPVM95xqg; __gpi=UID=00000bae1bc70680:T=1675342647:RT=1675342647:S=ALNI_MbmAg42mNF_r5GfbUGUsZosEOnC7g
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:27 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Sun, 23 Aug 2020 06:15:30 GMT
etag: W/"ef7324cd1479d61:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 36350dd697b9af80be27aaf4296fbde4.cloudfront.net (CloudFront)
age: 395808
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: q1y881rQqycxw59CXU61xTxv8JUZTLMXmJ6m31SM4e2vTLEheifQlQ==
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317bd488ab51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 12:57:28 GMT
Last-Modified: Thu, 02 Feb 2023 11:32:20 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jf5LjGS0yHnfHoouigeXn3Cz5czI9Zy3EUHyXQpMexcY0bpobjyhfg==
Age: 5109
sync.smartadserver.com/getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1
185.86.139.106200 OK 0 B URL HTTP/1.1 sync.smartadserver.com/getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1
IP 185.86.139.106:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1 HTTP/1.1
Host: sync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
date: Thu, 02 Feb 2023 12:57:27 GMT
pixel.rubiconproject.com/exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent=
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent=
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 402fba8a82f093def2459220061c8d31
Content-Type: image/gif
zdwidget3-bs.sphereup.com/TopSearch?callback=jQuery331005550429290689707_1675342670618&clientId=16664167&url=https%3A%2F%2Ftmi.maariv.co.il%2F&query=&title=&loader=false&containerType=SR1&overrideActions=true&targetUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&_=1675342670619
104.40.187.26200 OK 317 B URL HTTP/1.1 zdwidget3-bs.sphereup.com/TopSearch?callback=jQuery331005550429290689707_1675342670618&clientId=16664167&url=https%3A%2F%2Ftmi.maariv.co.il%2F&query=&title=&loader=false&containerType=SR1&overrideActions=true&targetUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&_=1675342670619
IP 104.40.187.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with no line terminators
Hash 4fbf5d152b469c5126692c5dff2aa6e4
3424c55f034b7be21b0b12659ae9146d20a7d731
76188c33ab21f685c2c2a1c92277c12e3a8af2b03884a55202a759a22d21ad06
GET /TopSearch?callback=jQuery331005550429290689707_1675342670618&clientId=16664167&url=https%3A%2F%2Ftmi.maariv.co.il%2F&query=&title=&loader=false&containerType=SR1&overrideActions=true&targetUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&_=1675342670619 HTTP/1.1
Host: zdwidget3-bs.sphereup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 317
Content-Type: text/javascript; charset=utf-8
Date: Thu, 02 Feb 2023 12:57:27 GMT
Server: Microsoft-IIS/10.0
Cache-Control: no-cache
Content-Encoding: gzip
Expires: -1
Pragma: no-cache
Vary: Accept-Encoding
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
ice.360yield.com/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010
35.157.6.185302 Found 0 B URL HTTP/2 ice.360yield.com/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010
IP 35.157.6.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010 HTTP/1.1
Host: ice.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 12:57:28 GMT
content-type: text/plain
content-length: 0
location: https://ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
set-cookie: tuuid=c1ca4d57-10c7-49cb-b694-7099a9ebc02e; Expires=Wed, 03 May 2023 12:57:28 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675342648; Expires=Wed, 03 May 2023 12:57:28 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
35.157.6.185200 OK 43 B URL HTTP/2 ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
IP 35.157.6.185:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010 HTTP/1.1
Host: ice.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:28 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 526a5af72f8bc6b7a410ee87aa34e299
2827b0b635a18cfda79177b2c7a3c1747f1178bf
3f00906f91130f1c1453a1ff022d2ba02999236631a426abf608b43892d1a6c9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F00906F91130F1C1453A1FF022D2BA02999236631A426ABF608B43892D1A6C9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5092
Expires: Thu, 02 Feb 2023 14:22:20 GMT
Date: Thu, 02 Feb 2023 12:57:28 GMT
Connection: keep-alive
d99666469a0d.bitsngo.net/content/4.0/js/main.js?v=4.0.v20230126102323.104714
95.140.228.46200 OK 27 kB URL HTTP/2 d99666469a0d.bitsngo.net/content/4.0/js/main.js?v=4.0.v20230126102323.104714
IP 95.140.228.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 507acb40d0389fdc1843c23de1fe7505
9f3bcabcc2602b349b8ffa834580c5b76fbfb21c
2acd5d6c3d7393b34e936eb15b938803c1adeecf90a65629e5da943fc931b649
GET /content/4.0/js/main.js?v=4.0.v20230126102323.104714 HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 6ec11082a3eadd60da2bb022584bfdf4
age: 612599
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 26 Jan 2023 10:29:58 GMT
expires: Sun, 05 Feb 2023 10:47:29 GMT
content-length: 27024
X-Firefox-Spdy: h2
hal9000.redintelligence.net/zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D
138.201.63.116200 OK 4.1 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D
IP 138.201.63.116:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1655), with CRLF line terminators
Hash f1468829ea6f37302bf20e3ba4831d07
5abfe93054e83caebad15f60ba5b884a965cf7e0
8e0874ba8017eab8fdd0affe1539d9f19d370efeedcbcf6034a5b832916c47e0
GET /zone/djaavvuv8jta?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:28 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4079
Connection: close
Content-Type: text/html; charset=UTF-8
static.doubleclick.net/dynamic/5/77963336/2870077842036103234_17448908751220508912.jpeg
142.250.74.166200 OK 75 kB URL HTTP/2 static.doubleclick.net/dynamic/5/77963336/2870077842036103234_17448908751220508912.jpeg
IP 142.250.74.166:0
File type JPEG image data, progressive, precision 8, 600x600, components 3\012- data
Hash 970a1e1e1dd7886f6d6874df547ccf85
ab49681b68196b937e7b7cdd78f1165befc2b3df
845d32bb505a84722267b3ac67a099fd21e7b102aa01883f9f5d811c8e39b4f3
GET /dynamic/5/77963336/2870077842036103234_17448908751220508912.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 75444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:56:15 GMT
expires: Fri, 02 Feb 2024 10:56:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 23:28:06 GMT
content-type: image/jpeg
age: 7273
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/77963336/12616042733503046237_16577555708600451910.jpeg
142.250.74.166200 OK 79 kB URL HTTP/2 static.doubleclick.net/dynamic/5/77963336/12616042733503046237_16577555708600451910.jpeg
IP 142.250.74.166:0
File type JPEG image data, progressive, precision 8, 600x600, components 3\012- data
Hash b94e70719ff1855334a644b42c2a40d3
56650a1186e733e5f0dc69e912f82de107d65cc8
abfebdffc7a4f5e06eedac79d9d7d9c1b0478a7eb94f386d1bc6c99048564d91
GET /dynamic/5/77963336/12616042733503046237_16577555708600451910.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 79254
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 07:08:05 GMT
expires: Fri, 02 Feb 2024 07:08:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 23:54:10 GMT
content-type: image/jpeg
age: 20963
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/77963336/15751419575197367988_13264122474454248688.jpeg
142.250.74.166200 OK 96 kB URL HTTP/2 static.doubleclick.net/dynamic/5/77963336/15751419575197367988_13264122474454248688.jpeg
IP 142.250.74.166:0
File type JPEG image data, progressive, precision 8, 600x600, components 3\012- data
Hash c371d56e95c1533d9241aa20992b38e2
341e0da8410e045b1dafd9dffaf2818bcebeab81
d91aefe2f15a10e023ec468eb8c9e001d4692de63371221a784f15f4440493cf
GET /dynamic/5/77963336/15751419575197367988_13264122474454248688.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 95688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:11:03 GMT
expires: Fri, 02 Feb 2024 10:11:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 23:28:39 GMT
content-type: image/jpeg
age: 9985
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.99200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.99:0
File type C++ source, ASCII text, with very long lines (1688)
Hash 3582c692298538eabf17eebd7434e582
587a6222383df174947008131dcccc13efbd3dba
ac83b4d1ea4abd201377d450290a7cc306499837a4b6ff1cd2b0f8d275baaa82
GET /mysidia/8aec859a266e19fb42fee7f82edeac28.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14079
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:47:16 GMT
expires: Mon, 01 May 2023 04:47:16 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 27 Jan 2023 00:31:18 GMT
content-type: text/javascript
age: 202212
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/77963336/14337768521108852882_16434680459885117892.jpeg
142.250.74.166200 OK 62 kB URL HTTP/2 static.doubleclick.net/dynamic/5/77963336/14337768521108852882_16434680459885117892.jpeg
IP 142.250.74.166:0
File type JPEG image data, progressive, precision 8, 600x600, components 3\012- data
Hash 6752174ce7c80f4e2ec15bb0efe2b626
b1fda7ca1fa1d3246d2de6f28e92145c4fd9c313
551339d4404e8814bc54a3916adcfc8127246954c9bfbf5e500fc5b0137781fb
GET /dynamic/5/77963336/14337768521108852882_16434680459885117892.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 61811
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:05:02 GMT
expires: Fri, 02 Feb 2024 09:05:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 23:35:56 GMT
content-type: image/jpeg
age: 13946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&settings=true&recs=true&widgetJSId=AR_8&key=NANOWDGT01&version=2010130&apv=true&sig=0OiSW67k&format=html&rand=74582&osLang=en-US&umv=0&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&winW=1140&winH=836&adblck=false&abwl=false&secured=true&feedIdx=1&lastIdx=1&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=1024&activeTab=true&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F&obRecsAbtestVars=1174:3820&chs=1
151.101.246.132200 OK 13 kB URL HTTP/2 mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&settings=true&recs=true&widgetJSId=AR_8&key=NANOWDGT01&version=2010130&apv=true&sig=0OiSW67k&format=html&rand=74582&osLang=en-US&umv=0&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&winW=1140&winH=836&adblck=false&abwl=false&secured=true&feedIdx=1&lastIdx=1&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=1024&activeTab=true&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F&obRecsAbtestVars=1174:3820&chs=1
IP 151.101.246.132:0
File type Unicode text, UTF-8 text, with very long lines (59057), with no line terminators
Hash 3f2d08b0fc5e1a13f04bb20992778355
5da57daf89362a54e54de9d019d32dfccb2c67c7
5ca9930928d45cc9d7fe691a478e45d577bde7bd3d7a9bb1baba02311ada9d00
GET /Multivac/api/get?url=https%3A%2F%2Ftmi.maariv.co.il%2F&settings=true&recs=true&widgetJSId=AR_8&key=NANOWDGT01&version=2010130&apv=true&sig=0OiSW67k&format=html&rand=74582&osLang=en-US&umv=0&seid=null&va=true&et=true&cmpStat=0&ccpaStat=0&scrW=1280&scrH=1024&t=NTBlMDM4YzViODJhNDkyZGQzODVkNjNjYzY0Mjg5MWU=&winW=1140&winH=836&adblck=false&abwl=false&secured=true&feedIdx=1&lastIdx=1&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=1024&activeTab=true&ogn=https%3A%2F%2Ftmi.maariv.co.il%2F&obRecsAbtestVars=1174:3820&chs=1 HTTP/1.1
Host: mv.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: f6883019b1bc6605b7d59e36f47b8a6e
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 02 Feb 2023 12:57:28 GMT
x-served-by: cache-lga21976-LGA, cache-hel1410024-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675342648.023643,VS0,VE591
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 13124
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21428, version 1.0\012- data
Hash 965bbfea8a5db5aea3a63da8c5b3d570
ce645f4adf18c4ff26251610878969c9562de69f
92a7f8224a1ba2ccfa92d3e1fc55ee5aa7ae20a0fcd80d3331bd660878a090f5
GET /s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 16:03:02 GMT
expires: Mon, 29 Jan 2024 16:03:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:32:46 GMT
content-type: font/woff2
age: 334466
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.0 kB IP 216.58.211.3:0
File type gzip compressed data, max compression\012- data
Hash 1e395fcfa0f1e8c9a18d7c00c006a2a5
5c201bf5021012a651667b1b65f605111da58f1e
e634eb0664ed3768680871edb3ce438d44614fc0d310067dfa10446e4b8f1277
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 21 kB IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 20784, version 1.0\012- data
Hash e11c810c086df83c0876dd59ed32ebcb
b89fe2ed6d016f81af13b35797ad2b0e2e5c6822
acc5497e76f832d950d14fcfa047dc3c864f7a0aae4c7a20521c0c655a53033b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mcdp-nydc1.outbrain.com/l?token=191646ff0c6af4effee6a2b81d16057a_8310_1675342648314&tm=3599&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4518&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5498&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
70.42.32.223200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=191646ff0c6af4effee6a2b81d16057a_8310_1675342648314&tm=3599&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4518&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5498&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
IP 70.42.32.223:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=191646ff0c6af4effee6a2b81d16057a_8310_1675342648314&tm=3599&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4518&wRV=2010130&pVis=1&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5498&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:28 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: da83491c4ae5c3c0cb851a7c17ea8eeb
mcdp-nydc1.outbrain.com/l?token=6190fc5c8bc7c7dc4c8027814141411e_8310_1675342648436&tm=3619&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4811&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5519&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
70.42.32.223200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=6190fc5c8bc7c7dc4c8027814141411e_8310_1675342648436&tm=3619&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4811&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5519&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
IP 70.42.32.223:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=6190fc5c8bc7c7dc4c8027814141411e_8310_1675342648436&tm=3619&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=4811&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5519&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:28 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: a04b3dfb8a481985095f43bf86cccd3c
hal900019.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
78.46.90.238302 Found 0 B URL HTTP/1.1 hal900019.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 78.46.90.238:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900019.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 12:57:28 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Thu, 02 Feb 2023 12:57:28 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=ce4941f4ce756ed4; expires=Wed, 03-May-2023 12:57:28 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
d99666469a0d.bitsngo.net/content/4.0/js/8.js?ba32f6570336786256cc
95.140.228.46200 OK 1.3 kB URL HTTP/2 d99666469a0d.bitsngo.net/content/4.0/js/8.js?ba32f6570336786256cc
IP 95.140.228.46:0
File type ASCII text, with very long lines (3013), with no line terminators
Hash c2f1e383a042ae83a5d86990b8387cf2
518fc426c8d4b4a083005e829dbe4aa1199f604f
aa11b032fb0769dbaa1a514351ee0385be8b525b0ed6fd3a7ba9e4f94d95a642
GET /content/4.0/js/8.js?ba32f6570336786256cc HTTP/1.1
Host: d99666469a0d.bitsngo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=864000
content-encoding: gzip
vary: Accept-Encoding
x-powered-by: ASP.NET
x-llid: 5a682c5a9b8d1a569fc0245d6f13700c
age: 713636
date: Thu, 02 Feb 2023 12:57:28 GMT
last-modified: Thu, 12 Jan 2023 10:44:32 GMT
expires: Sat, 04 Feb 2023 06:43:32 GMT
content-length: 1301
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=d6f15c666ff822a368c932c17a20b244_8310_1675342648557&tm=3622&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=5104&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5522&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
70.42.32.223200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=d6f15c666ff822a368c932c17a20b244_8310_1675342648557&tm=3622&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=5104&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5522&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0
IP 70.42.32.223:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=d6f15c666ff822a368c932c17a20b244_8310_1675342648557&tm=3622&eT=0&widgetWidth=1024&widgetHeight=286&widgetX=58&widgetY=5104&wRV=2010130&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&rtt=681&oo=true&lo=1780&odbreq=2962&odbres=4703&mvreq=4809&mvres=5492&re=5522&cs=3&to=1675342669379&umv=0&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:28 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 9d969a6c614bcd8edcb3dd60dd35354e
prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
40.79.44.59201 Created 0 B URL HTTP/1.1 prod-sb-appanalytics-us1.servicebus.windows.net/usagelogs/messages
IP 40.79.44.59:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /usagelogs/messages HTTP/1.1
Host: prod-sb-appanalytics-us1.servicebus.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/atom+xml;type=entry;charset=utf-8
Authorization: SharedAccessSignature sr=http%3A%2F%2Fprod-sb-appanalytics-us1.servicebus.windows.net%2F&sig=Je1sRog7Z0AkdClQXGxLjg9TPTZOavfBY5IbgmFFaQE%3D&se=1675345608&skn=all
sourcesenderId: 3
clientId: "16664167"
action: TopSearchesPath-not-found-on-page
Content-Length: 896
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Transfer-Encoding: chunked
Content-Type: application/xml; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: https://tmi.maariv.co.il
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Thu, 02 Feb 2023 12:57:28 GMT
hal900019.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
78.46.90.238200 OK 512 B URL HTTP/1.1 hal900019.redintelligence.net/request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 78.46.90.238:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 9d7051d4201f7f35172a08953796e261
1b9886b63fd88ef6a2fd197d7cb4d69a282f0143
eef139e2ed74137f4f4a36546e8d574f7a998ee1a5b3fba0552988c820c58c41
GET /request.php?zone=djaavvuv8jta&nw=20&renderingType=javascript&namespace=735e050b4c&subid=&uid=20c45f029b2b8059&screenSize=1280x1024&screenSizeAvail=1280x1024&clientSize=970x90&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCLtX_N7PbY9GkKJf56gSimIKYCMm5opxp5LTNztUP8C4QASDRk8MqYMOEgICYGMgBCakCWCz0URRysj6oAwGqBOMBT9BTgGbbEgdMkd5ZCg7DU3y026N_TjCEcohjGoSD8G_repnZ5fK3B3Set5KWMlBHds0IIiDI28hfj-ygdtamSi7ZzOQGMik4u78J4WuflL1MOcPCwSX6wihMymWthfLU4HbsBYwC8iUUYgmZN-zzKo6LvxLnoJXTQ8o1VRIQ_gPoWorrbY_D8Us7dkKv-z7guvG3p3pAXhvuVddw7GE1KXYnT9xPcapOL2aUKksZzwBIzXUg9KBss4v_lu3-n4YfcL5HZapmxw-fFL7z_XmEm3OnAUgb9-QdY1Iz_OUBV6O2fLzABMG9lPzzA-AEA5AGAaAGTYAHrK31nwOoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgdMgKqAjoCgECACgOYCwHICwGADAGwE5yizQ7QEwDYEwPYFAHQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSSwDUE5ymB7EsyhlOnDSEdeG2Y2mX7_hI6BMONlhHOsjmjZcI2Gq8nAJVP8-BaogMUMFog0up17FEWItBcXjZkhvx2AXsT5HrAy8iyxgB%26sig%3DAOD64_1w8Wrj3t5TofIYOm7xhnc7mnZgrA%26client%3Dca-pub-4491659496372172%26dbm_c%3DAKAmf-Av3k0G43QcrsHr-VUpS3yj1CrYz5hghu-qbuaU5SE3W75orhB9hNOWfi4uKk0xcxTmLvyIUUcnbitouHUY6v9IrMJH7jc1-OpAWf_QApp1qeVOCcDoy8VU_kw9npVbHNKR7J6sn4rS5JMY5vj1-u5TefrYV5wYbH3j48ESKTPwn66nMtE%26cry%3D1%26dbm_d%3DAKAmf-DB_lFC2ivdS81A40LSWESAzi5lkcWXDuSN1JeOSGE2fC452eu2ITL1aDk2Zfi1cwhOlUyJC-Sh966ifo4eqWAUTCNQv6eg3yPlaBlh5c3ntXEbJ0qnGZz3q7gGmfV1beHUQgJQpn9neLwvL-aVml9XQT5eXHZ0I6IvkZPG2pHzKBfCCM6e9vr7ICZ3FBxjKXjzTYa3WvuA5iQ_vrZZYggjan69qWPNpL_2LxBtdonBmw-a1YsHMego_hrRtZ62DrYqzYm6PgStgQIWu5okxfYmGL4ffLUQMxsPz6AQ3Flwm3m7YkrWD6E8-hkMdWcyMmSMlAngpbQwzeEXHJWBwSq6bKDHI_-3gkOUaPcyt7Xmy0CATVacydWUal39vfvZC4C0w8rxbH1Q1yMHwOLDRZ-uNOvPqXfqF_Zgac0da9Z9_8xIQ6kbR5DRQGYelV9kvb3MBgS9MojAvJgAl3i7BAJnexqaCAvjVCDd72jIdRWIYTQQtKsfdmiP0w47IJx8VUJ55Jj6qucbeGmoOsVbaz5_TY9SGRHKXZjgdba1A0NYSsWwxdg%26adurl%3D&documentReferer=https%3A%2F%2Ftmi.maariv.co.il%2F&ancestorOrigins=null&random=6762073528434&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900019.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=ce4941f4ce756ed4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:29 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Thu, 02 Feb 2023 12:57:29 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=ce4941f4ce756ed4; expires=Wed, 03-May-2023 12:57:29 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 31762400096924404438342012223019
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Connection: close
Content-Type: application/x-javascript; charset=utf-8
logs-01.loggly.com/inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger
52.34.108.226200 OK 19 B URL HTTP/1.1 logs-01.loggly.com/inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger
IP 52.34.108.226:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b5efa112ce475f8bf73086a68521ea2e
4c4e7a9e8feb3e4595b4baf2db4466df001afa61
cdc7a3d8f9ce204e8853c2f7088b9c3fe488432314d1ea6c17cf8fd4ae179261
POST /inputs/b30ca557-8461-40a5-a26c-a41635db1700/tag/jslogger HTTP/1.1
Host: logs-01.loggly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 225
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 12:57:29 GMT
Content-Type: text/html
Content-Length: 19
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Authorization,Host,Content-Type,X-Forwarded-For,X-LOGGLY-TAG,X-Real-IP
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
142.250.74.102200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 142.250.74.102:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 05:58:24 GMT
expires: Fri, 03 Feb 2023 05:58:24 GMT
cache-control: public, max-age=86400
age: 25145
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=213&cbvp=1&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl=
172.217.21.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=213&cbvp=1&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl=
IP 172.217.21.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=213&cbvp=1&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
access-control-allow-origin: *
cache-control: private
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 12:57:29 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 13:12:29 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 02 Feb 2023 12:57:29 GMT
X-Firefox-Spdy: h2
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=563&vt=11&dtpt=350&dett=3&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl=
172.217.21.162200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=563&vt=11&dtpt=350&dett=3&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl=
IP 172.217.21.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsukCsLnIqO8YBj3RjmeKs9NuykcKswehZjiYcQsjsBuRzZY7YABIlbBT0x9kuy1jekJVogeZxpqPReRpfvfF6A01aVaJXn3xeGJncQjEMm8lNGfsgdjqZTGd-e9-KOkBq06ghf4De127QCNDLrKHCdUTa7oIndrzdo1SfSQqSL8KplRbx6s7zp386Lf2ZCMCsZ5PSFXYUqkVRmEBJbE5kZkL2NrPZrC7LA27gdrsUAuN8bjwOdVoEghtwV8vL26Ap6FqryjTDwQ9esAlkTWPrqiUH72sy1qXcH_kcXId2Bs0cwTzJNfC7KzdW3uAXjQqY8mZak8tA_C7jeHtWJ95_R6mkFpd45cMWqaqQIJWWdWC02QQl3GruEczVTufK6Su9YcOFxn6Il5W4OZ9dJtVOSBhNh40Z-fNSEDHLOeZfSrhFzuMtDiW4kA0e8AlEFCdM41W26o9tu6kdpcfQLj5vD-wV7Fjqxhi7-TUZVmuGbYoMuKFwJ5vZbNURZluWd6jOqdP-5Md7ewgpArpYOQiKroI2rmyrWL-GoOGlhhhxsDOwsqK0xXmSuxoGBSNAoAwAdGkE6kILwVsnaFIKBWIEV9EDmMPfoWKD_Co5IetfOmpAulJvtJYo63JD9UsyXKImjpUgXahQYfOcDCeh5rfkce206TV2ORdqb9gXIYLWFBupsPqO6MlWitLf7ABpGl6LQDebKwdb8256U0EUqU8GqED151APNFaf9qToIBdBFpOBI3aUXkNyv_Lu-FVtPXacVx550gZ4blKCjWXtnSjJ8vKSx9ZpsffKP5_D83Z0U2z1lMzXMZZEzjcRYhXlSuNBs2Brr75Fg9vKTDRe4WbTr0d04aPs9OL88J5pkoBNUM7GbnVEstMKkmwVfl-57AKat067LdHZtW7bZ1QywahxzOWnjs8vlWr1BXigie_PdvC4prILkNwLyzUwVGq7V7--PMO_ud_iBfnvOG2L4M1Bfpkj-KHTW1izrT4BRsye0aAu4K0EvwIdgQvGPN5bRRC78pd1pHZNJEBO_CxPGUk9y0NysXmEZkv1gWdA1NDDTFONkgtYBucFCfz82QBMA4h7eADU0ZMY-gsCo9WMSJrOZTynd3rZf1aC8hdHAi5gJHi_v6SPodbu9K5sI5Li-QqqseCgJxm0Ze20FMarr5sefyB6pYxSGfXHNXLhSDupdh3zsWfyxJeFd7GRgE8-lAQcR3inPijShSkCWuuJAiCQ3-jQ&sai=AMfl-YQovjxD-jk_rYpLEpefzKPf_rz2U60BFsABJw1GBUSI5tgs_2_QWjBgqHzP7sCHtKWfmaJ-RvnYklNdrDWtzrst8QjN44-3B-9ACs5W2wAcypZwF7a80jbVsrHt2RDkGkikFM5efieWLh4k5MV4DoiQK0AMmSPIL3BsxLrUSqsKDIkYpXDwmKQmz_3nsR_66BdxPFxGn-rliyFBB_z_KKbtrvSzjJsUO1DLl4tuWsKRlHh-9edNVqpW04fHgbqCLvGbcqcDaYJLygOa4oerE4MRKUdVjUwzNBnwBx9aig&sig=Cg0ArKJSzMHKtrnxmNCmEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=563&vt=11&dtpt=350&dett=3&cstd=208&cisv=r20230131.96515&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 12:57:29 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 13:12:29 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 02 Feb 2023 12:57:29 GMT
X-Firefox-Spdy: h2
hal900019.redintelligence.net/request_content.php?s=31762400096924404438342012223019&a=24d8c358
78.46.90.238200 OK 1.5 kB URL HTTP/1.1 hal900019.redintelligence.net/request_content.php?s=31762400096924404438342012223019&a=24d8c358
IP 78.46.90.238:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 77323b527832f3fb364fd8661bfd22f8
28f59b141fa31ec7fe52968b21004cb4249dbabe
7e1e36ea2b6093087b0bf4c2a9439232ea51f9cea2c383dc4dc6c045179890b2
GET /request_content.php?s=31762400096924404438342012223019&a=24d8c358 HTTP/1.1
Host: hal900019.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://292df8fa5f40edb3b110b64dc6fb3183.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=ce4941f4ce756ed4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:29 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Thu, 02 Feb 2023 12:57:29 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1502
Connection: close
Content-Type: text/html; charset=utf-8
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=160447
23.38.200.201200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=160447
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=160447 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=47188
expires: Fri, 03 Feb 2023 02:03:58 GMT
date: Thu, 02 Feb 2023 12:57:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1675342672860
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?cb=1675342672860
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1675342672860 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.2.114200 OK 149 B IP 104.18.2.114:0
File type JSON data\012- , ASCII text
Hash 1089082b40706fed3bcf25324938dfa0
8e0fd05cf124adbd2b90ef5ef168a8b5c19a0422
edeaa270634bb258ac6bc37b5e19e30f7e20d6ea5ac20d58eabc2236d011dd1f
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6221
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:26 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://tmi.maariv.co.il
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 3 inventory rules not found for mediatype: banner and adUnitCode: div-gpt-ad-1517142100515-15, Process Floors. 2 inventory rules not found for mediatype: banner and adUnitCode: div-gpt-ad-1517142100515-18, Process Seats Booster. unable to get the seat booster engine for organization: 1241
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317b49a9fb51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1668
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:30 GMT
Last-Modified: Thu, 02 Feb 2023 12:29:42 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1674
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:57:30 GMT
Last-Modified: Thu, 02 Feb 2023 12:29:36 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 312
hal900019.redintelligence.net/viewability?s=31762400096924404438342012223019&a=a7b937e7&vb=m
78.46.90.238200 OK 0 B URL HTTP/1.1 hal900019.redintelligence.net/viewability?s=31762400096924404438342012223019&a=a7b937e7&vb=m
IP 78.46.90.238:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /viewability?s=31762400096924404438342012223019&a=a7b937e7&vb=m HTTP/1.1
Host: hal900019.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900019.redintelligence.net/request_content.php?s=31762400096924404438342012223019&a=24d8c358
Cookie: 8lcfmzhxc8d6_uid=ce4941f4ce756ed4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:30 GMT
Server: Apache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
static.chartbeat.com/js/chartbeat_mab.js
54.230.219.187200 OK 34 kB URL HTTP/2 static.chartbeat.com/js/chartbeat_mab.js
IP 54.230.219.187:0
Hash b32cd159618efe975351197b4b12a6d4
1e1c46ba150ea0190f135cfb947650b96e38c669
096fd5cbc70eaa630280a7cc5f0bdd2748e490ae3c00f8975972bc519a3fe3b6
GET /js/chartbeat_mab.js HTTP/1.1
Host: static.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
date: Thu, 02 Feb 2023 01:13:29 GMT
server: nginx
last-modified: Wed, 20 Jul 2022 00:57:56 GMT
cross-origin-resource-policy: cross-origin
expires: Fri, 03 Feb 2023 01:13:29 GMT
cache-control: max-age=86400
content-encoding: gzip
etag: W/"62d75314-5d6b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HoKU2boCpLwFZOr6sn61sUPt5UA-ilL7bdUub16p0sLX1YazwhMbkw==
age: 42235
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 02 Feb 2023 12:57:30 GMT
Connection: keep-alive
Vary: Accept-Encoding
acdn.adnxs.com/dmp/async_usersync.html
151.101.193.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.193.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Wed, 18 Jan 2023 06:44:40 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 02 Feb 2023 12:57:30 GMT
Age: 33299
X-Served-By: cache-lga13626-LGA, cache-bma1652-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 103516
X-Timer: S1675342650.191800,VS0,VE0
Vary: Accept-Encoding
eb2.3lift.com/sync?
76.223.111.18200 OK 37 B IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync? HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
b1h-euc1.zemanta.com/usersync/prebid
213.227.153.221200 OK 26 B URL HTTP/1.1 b1h-euc1.zemanta.com/usersync/prebid
IP 213.227.153.221:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
GET /usersync/prebid HTTP/1.1
Host: b1h-euc1.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 26
Connection: keep-alive
Date: Thu, 02 Feb 2023 12:57:30 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a98cd24d1f8257175a33853988e01de7
14dee392f8cc3c662d41684f4a569ea9d23bc7bc
ac45a5dc648d0026e945f2db4bd55953fbfd572ca0692bb4ac1cf6cc94cd073b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC45A5DC648D0026E945F2DB4BD55953FBFD572CA0692BB4AC1CF6CC94CD073B"
Last-Modified: Tue, 31 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16423
Expires: Thu, 02 Feb 2023 17:31:13 GMT
Date: Thu, 02 Feb 2023 12:57:30 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 39f3b5b2bd195602170e5476c4e25fac
776164cdd5ce071c5bf90837d2b34384bf5fedf5
05b1d2718aa244dd62832cfbc4106d3f546063a970e28924c863cd679316d071
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:57:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 06 Feb 2023 10:54:24 GMT
ETag: "776164cdd5ce071c5bf90837d2b34384bf5fedf5"
Last-Modified: Thu, 02 Feb 2023 10:54:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 337
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793317cd3f411c0e-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d3a8825102d4d677483b0adecb3e8157
2ac9e91e32e882c72da03e07d88b9fb38cd758c9
070018f9f3a0f4970e5e6aa86dde278775450bd1b289d86fa73216b3021fc346
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "070018F9F3A0F4970E5E6AA86DDE278775450BD1B289D86FA73216B3021FC346"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3702
Expires: Thu, 02 Feb 2023 13:59:12 GMT
Date: Thu, 02 Feb 2023 12:57:30 GMT
Connection: keep-alive
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18573)
Hash 65038a2210b7cbb9538fa12f0765aa2e
5dbc2e6b172d18dbc1ffc4ae9eb1f6c72b4624f1
3e47f3bac7b5acab430644761391b40e2f888350fc48efa7bbca1d845c33b603
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Wed, 01 Feb 2023 15:45:51 GMT
Content-Encoding: gzip
Content-Length: 10036
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=10107
Expires: Thu, 02 Feb 2023 15:45:57 GMT
Date: Thu, 02 Feb 2023 12:57:30 GMT
Connection: keep-alive
Vary: Accept-Encoding
dsp.adfarm1.adition.com/cookie/?ssp=5&gdpr=0&gdpr_consent=
85.114.159.118302 Found 0 B URL HTTP/1.1 dsp.adfarm1.adition.com/cookie/?ssp=5&gdpr=0&gdpr_consent=
IP 85.114.159.118:0
ASN #24961 myLoc managed IT AG
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie/?ssp=5&gdpr=0&gdpr_consent= HTTP/1.1
Host: dsp.adfarm1.adition.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 02 Feb 2023 12:57:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
p3p: policyref="http://imagesrv.adition.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Set-Cookie: UserID1=7195541891367893142; Max-Age=7776000; domain=.adfarm1.adition.com; Path=/; SameSite=None; Secure
Location: https://rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7195541891367893142&gdpr=0&gdpr_consent=
id5-sync.com/i/102/9.gif?gdpr=0&gdpr_consent=
141.95.98.65200 43 B URL HTTP/1.1 id5-sync.com/i/102/9.gif?gdpr=0&gdpr_consent=
IP 141.95.98.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/102/9.gif?gdpr=0&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 13:02:30 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 12:57:30 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash 6ecca01d207937dad22defcfe1f0fedf
0ac0659235f3e91f24254beb13565776a7106aeb
8677925ac98ddd6c1704bedd8bfe73c8f90db22d991d3b87260e0214d3c43b81
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Wed, 3 May 2023 05:34:42 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Thu, 02 Feb 2023 12:57:29 GMT
content-length: 60
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
185.89.210.212307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 12:57:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: bd972a8a-43bd-4843-9ca4-804d22a05897
Set-Cookie: uuid2=12420883653300642; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 12:57:30 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=
185.64.190.78302 Found 0 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=
IP 185.64.190.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent= HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: /AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=&rdf=1
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Thu, 02 Feb 2023 12:57:30 GMT
content-length: 0
X-Firefox-Spdy: h2
csync.smilewanted.com/
104.22.68.131200 OK 2.4 kB IP 104.22.68.131:0
Hash a22583d5a33aabda847d1eb314249946
f1221ca9930868b074ad789448a5e9aff0443764
cffc394b1b80e0a50da85975c3b621093d587e6bf164802f50730103333ff121
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317cb28822d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
csync.loopme.me/?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=0&gdpr_consent=
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=0&gdpr_consent=
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D124%26partneruserid%3D%7Bdevice_id%7D&pubid=5679&gdpr=0&gdpr_consent= HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=84973478-addc-49db-9bf3-ff942b5994b5; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Tue, 02-May-2023 12:57:30 GMT; SameSite=None
location: https://rtb-csync.smartadserver.com/redir/?issi=1&partnerid=124&partneruserid=84973478-addc-49db-9bf3-ff942b5994b5&gdpr_consent=null&gdpr=0
content-length: 0
date: Thu, 02 Feb 2023 12:57:30 GMT
server: _
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=&rdf=1
185.64.190.78200 OK 0 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=&rdf=1
IP 185.64.190.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/UCookieSetPug?&rd=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26partnerid%3D91%26partneruserid%3D%23PM_USER_ID%26gdpr%3DPM_GDPR%26gdpr_consent%3DPM_CONSENT&gdpr=0&gdpr_consent=&rdf=1 HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Thu, 02 Feb 2023 12:57:30 GMT
content-length: 0
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.210.212200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 12:57:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 1897765c-4f8c-4df2-b203-1898f1f04e80
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7195541891367893142&gdpr=0&gdpr_consent=
185.86.139.89200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=49&partneruserid=7195541891367893142&gdpr=0&gdpr_consent=
IP 185.86.139.89:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=49&partneruserid=7195541891367893142&gdpr=0&gdpr_consent= HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Thu, 02 Feb 2023 12:57:30 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=7077837746077436323; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
csync=49:7195541891367893142; expires=Fri, 02 Feb 2024 12:57:30 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID
72.251.249.9204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID
IP 72.251.249.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fsovrn%2F%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Thu, 02 Feb 2023 12:57:30 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap3ams1
rtb-csync.smartadserver.com/redir/?issi=1&partnerid=92&partneruserid=5bnF170bjLdu&ev=1&pid=560288&gdpr_consent=&gdpr=0
185.86.139.89200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?issi=1&partnerid=92&partneruserid=5bnF170bjLdu&ev=1&pid=560288&gdpr_consent=&gdpr=0
IP 185.86.139.89:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?issi=1&partnerid=92&partneruserid=5bnF170bjLdu&ev=1&pid=560288&gdpr_consent=&gdpr=0 HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Thu, 02 Feb 2023 12:57:29 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=8442142160715516228; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
csync=92:5bnF170bjLdu; expires=Fri, 02 Feb 2024 12:57:30 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
rtb-csync.smartadserver.com/redir/?issi=1&partnerid=124&partneruserid=84973478-addc-49db-9bf3-ff942b5994b5&gdpr_consent=null&gdpr=0
185.86.139.89200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?issi=1&partnerid=124&partneruserid=84973478-addc-49db-9bf3-ff942b5994b5&gdpr_consent=null&gdpr=0
IP 185.86.139.89:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?issi=1&partnerid=124&partneruserid=84973478-addc-49db-9bf3-ff942b5994b5&gdpr_consent=null&gdpr=0 HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Thu, 02 Feb 2023 12:57:30 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=1335445902727055770; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sat, 02 Mar 2024 12:57:30 GMT; domain=smartadserver.com; path=/
csync=124:84973478-addc-49db-9bf3-ff942b5994b5; expires=Fri, 02 Feb 2024 12:57:30 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
match.sharethrough.com/universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent=
18.192.184.215204 No Content 0 B URL HTTP/2 match.sharethrough.com/universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent=
IP 18.192.184.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /universal/v1?supply_id=GmfSCHMu&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 12:57:30 GMT
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC793A99A-FD34-4B62-BC37-248211DCC062%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
23.38.200.201200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC793A99A-FD34-4B62-BC37-248211DCC062%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DC793A99A-FD34-4B62-BC37-248211DCC062%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=168230
expires: Sat, 04 Feb 2023 11:41:20 GMT
date: Thu, 02 Feb 2023 12:57:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
creativecdn.com/cm-notify?pi=smilewanted
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=smilewanted
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=smilewanted HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 12:57:30 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=KviwsJEa8Q09P0uIDIn0;Path=/;Domain=.creativecdn.com;Expires=Fri, 02-Feb-2024 12:57:30 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1675342650;Path=/;Domain=.creativecdn.com;Expires=Fri, 02-Feb-2024 12:57:30 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=smilewanted&tc=1
content-length: 0
X-Firefox-Spdy: h2
us.ck-ie.com/smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID}
8.2.108.175204 No Content 0 B URL HTTP/1.1 us.ck-ie.com/smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID}
IP 8.2.108.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smw888.gif?gdpr=0&gdpr_consent=&us_privacy={$USPrivacy}&coppa={$COPPA}&puid={$PARTNER_UID} HTTP/1.1
Host: us.ck-ie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 02 Feb 2023 12:57:30 GMT
Content-Type: text/plain
Connection: keep-alive
creativecdn.com/cm-notify?pi=smilewanted&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=smilewanted&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=smilewanted&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
csync.smilewanted.com/drop_cookie_sw.php
104.22.68.131200 OK 25 B URL HTTP/2 csync.smilewanted.com/drop_cookie_sw.php
IP 104.22.68.131:0
Hash 363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943
GET /drop_cookie_sw.php HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D; expires=Fri, 02-Feb-2024 18:46:42 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317ce5bce2d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ice.360yield.com/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010
35.157.6.185302 Found 0 B URL HTTP/2 ice.360yield.com/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010
IP 35.157.6.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/{PUB_USER_ID}&partner_id=1010 HTTP/1.1
Host: ice.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 12:57:31 GMT
content-type: text/plain
content-length: 0
location: https://ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
set-cookie: tuuid=8ca91516-9a60-404e-ace4-afbf6ea1652e; Expires=Wed, 03 May 2023 12:57:31 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675342651; Expires=Wed, 03 May 2023 12:57:31 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
csync.smilewanted.com/getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID
104.22.68.131302 Found 43 B URL HTTP/2 csync.smilewanted.com/getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID
IP 104.22.68.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /getuid?source=prebid-server&gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fib.adnxs.com%2Fprebid%2Fsetuid%3Fbidder%3Dsmilewanted%26gdpr%3D0%26gdpr_consent%3D%26f%3Di%26uid%3D%24UID HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 12:57:31 GMT
content-type: text/html; charset=UTF-8
location: https://ib.adnxs.com/prebid/setuid?bidder=smilewanted&gdpr=0&gdpr_consent=&f=i&uid=30650babb4056ddf86c492ceceeb4744
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317d08dce2d7b-ARN
X-Firefox-Spdy: h2
sync.smartadserver.com/getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1
185.86.139.106200 OK 0 B URL HTTP/1.1 sync.smartadserver.com/getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1
IP 185.86.139.106:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?gdpr_consent=&nwid=2491&url=https://csync.smilewanted.com/set_partner_userid_get/smart/[sas_uid]&cklb=1 HTTP/1.1
Host: sync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
date: Thu, 02 Feb 2023 12:57:30 GMT
ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
35.157.6.185200 OK 43 B URL HTTP/2 ice.360yield.com/ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010
IP 35.157.6.185:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?r=https://csync.smilewanted.com/set_partner_userid_get/improve/%7BPUB_USER_ID%7D&partner_id=1010 HTTP/1.1
Host: ice.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://csync.smilewanted.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:31 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?p=158810&gdpr=0&gdpr_consent=&predirect=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F
23.38.200.201200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=158810&gdpr=0&gdpr_consent=&predirect=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?p=158810&gdpr=0&gdpr_consent=&predirect=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=47187
expires: Fri, 03 Feb 2023 02:03:58 GMT
date: Thu, 02 Feb 2023 12:57:31 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
pixel.rubiconproject.com/exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent=
69.173.144.165204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent=
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=pbs-smilewanted&gdpr=0&gdpr_consent= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://csync.smilewanted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 402fba8a82f093def2459220061c8d31
Content-Type: image/gif
csync.smilewanted.com/set_partner_userid_get/pubmatic/C793A99A-FD34-4B62-BC37-248211DCC062
104.22.68.131200 OK 25 B URL HTTP/2 csync.smilewanted.com/set_partner_userid_get/pubmatic/C793A99A-FD34-4B62-BC37-248211DCC062
IP 104.22.68.131:0
Hash 363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943
GET /set_partner_userid_get/pubmatic/C793A99A-FD34-4B62-BC37-248211DCC062 HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Cookie: sw_user_params_infos=VIp2frD7zm7m0oaUP6hRd30rcVtRbL8LDxE%2BVeXOeoAR6vsKJ4PMQOa9YSLycrwkKYhkl%2F8tfpvpKkd1r1fCy9tG2Z%2B0%2BKCh9b8jqFvbUo3%2BGk%2Bqqu62dDI2I%2Bhd0TGE7n0RYw%2FG6JXYGC%2FxIUejcGjyhtA1QtzxM4jJD2mTB9udBz7pVnBXzQoNIeS0LSKD72zwPazRI1%2B45JMXhkB8Hwn%2FICUSlSzgwm6lcUyT2Gg%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: sw_user_params_infos=PvjBa5NLO4GaGMDYpUu8BtG0aWMH1RLi9txDPENfYVnnOOyofTqQLXQV7yS6pZtGcoSjLpOKl6hT4oQLIj7akWX11%2FjjXAJTkcr4FP0MsyuMsb6qTgG0cG6soyH%2BW1xMdUL0iwtWWQy62aiEYDNyta3vYvla8DAuq24xXDK3r5lQqCu7OhJtIQ1LAlGPDKrt%2B609LBbwty5LarMKXho6Yv7S7yUZf9kkpFY%2Bp0AS8AEiJy00kxTorY1Bf5VOvdFYVudTOrgnr5eeltyRi9mivDMs7%2BKHU4HJ4PZ4yf1Eb90%3D; expires=Fri, 02-Feb-2024 18:46:43 GMT; Max-Age=31556952; path=/; domain=smilewanted.com; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317d28fde2d7b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
185.89.210.212200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 185.89.210.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 12:57:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: a62767e4-fd6f-4c2e-b96b-ca409af5e6a7
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
tmi.maariv.co.il/Images/instagram_fff.svg
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Images/instagram_fff.svg
IP 104.20.19.195:0
GET /Images/instagram_fff.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Thu, 04 Jul 2019 06:42:37 GMT
etag: W/"92221dab3332d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
cloudfront-is-desktop-viewer: false
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lSn9YmSx5tcYjn4rSvjUB3AyU3bHd6gSi_aHu98VqjE8kxEA6x5NSQ==
cf-cache-status: HIT
age: 162237
server: cloudflare
cf-ray: 793317a60febb51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/appstore-svg-footer.svg
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Images/appstore-svg-footer.svg
IP 104.20.19.195:0
GET /Images/appstore-svg-footer.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Mon, 28 Nov 2022 12:09:13 GMT
etag: W/"c8c6b63a223d91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 242358
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vkHQ_1Hl4wPCCv8CRIiVKG3AfHpVR-Ca0GFAMLyQ8YSdTqG_U0icPg==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a68880b51e-OSL
X-Firefox-Spdy: h2
js.nagich.co.il/style/style.css
104.26.3.20200 OK 0 B URL HTTP/2 js.nagich.co.il/style/style.css
IP 104.26.3.20:0
GET /style/style.css HTTP/1.1
Host: js.nagich.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: public, max-age=2604800
last-modified: Wed, 15 Dec 2021 11:05:22 GMT
etag: W/"04554a7a3f1d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
cf-cache-status: HIT
age: 566632
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJ1lPU8OlzjqArGaZJuB%2B3JzMcjs6W607vaHq1wEzK%2FvewCxMme5ZG08tIPPfPUIpghcB7oNgriGe6EkRWXMDvZgaqdlGbELnW5hhtsrPp7eMIMoHysppnORBQzVSJ4aGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317aa8c0f0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
tmi.maariv.co.il/Content/fonts.css?ver=2020_08_18_1
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Content/fonts.css?ver=2020_08_18_1
IP 104.20.19.195:0
GET /Content/fonts.css?ver=2020_08_18_1 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
last-modified: Sun, 23 Aug 2020 06:15:30 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
cache-control: max-age=604800
etag: W/"ef7324cd1479d61:0"
vary: Accept-Encoding
age: 550277
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DVXEU6YY8Cs5BiHdYa6xrM_eI9FTYWdlZd7mcdY4kNi5bd1PoggR0w==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfa8b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tmi.maariv.co.il/Content/home.css?ver=2022_11_27_1
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Content/home.css?ver=2022_11_27_1
IP 104.20.19.195:0
GET /Content/home.css?ver=2022_11_27_1 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Sun, 15 May 2022 07:26:04 GMT
etag: W/"cd652f92d68d81:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Mr1KgtjbEB5WqvhOss9NIbiTpNS3xhOU6OGc49E7pMcfvsS8Ia-RA==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfb0b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/DANIEL-CHEN-LOGO-FOOTER.svg
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Images/DANIEL-CHEN-LOGO-FOOTER.svg
IP 104.20.19.195:0
GET /Images/DANIEL-CHEN-LOGO-FOOTER.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Mon, 28 Nov 2022 12:09:13 GMT
etag: W/"7e2b23a223d91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 497971
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZIkbfso36dYeVowjCxsxyvReZHfFbZd6S4oz7aJibE-q11QXXQ3P-w==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a6888db51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick.css
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick.css
IP 104.20.19.195:0
GET /Scripts/slick-1.6.0/slick/slick.css HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:25 GMT
etag: W/"5939e3477d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 497971
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eoiP0mA68cdyDHezzlyMZ3CBASdCeKsDWEt_wHhRhofzXmwYUz0f6g==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfb6b51e-OSL
X-Firefox-Spdy: h2
ecdn.firstimpression.io/fi_client.js
54.230.111.99200 OK 0 B URL HTTP/2 ecdn.firstimpression.io/fi_client.js
IP 54.230.111.99:0
GET /fi_client.js HTTP/1.1
Host: ecdn.firstimpression.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 12:07:29 GMT
server: nginx/1.20.0
x-powered-by: PHP/8.0.14
x-xss-protection: 0
last-modified: Thu, 02 Feb 2023 12:07:29 UTC
etag: W/"e6fa9b5a0621ad5991b32d1133b85d4a"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: whtLKTDnt7BiHSUfIifMkBdYtIGr2g2QoqFBbC7MXrKezVhLibvhdA==
age: 2995
X-Firefox-Spdy: h2
tmi.maariv.co.il/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.20.19.195:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 14:59:41 GMT
etag: W/"63d7db5d-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317a6888eb51e-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 04 Feb 2023 12:57:24 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
js.nagich.co.il/assets/images/10.svg
104.26.3.20200 OK 0 B URL HTTP/2 js.nagich.co.il/assets/images/10.svg
IP 104.26.3.20:0
GET /assets/images/10.svg HTTP/1.1
Host: js.nagich.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:25 GMT
content-type: image/svg+xml
cache-control: public, max-age=2604800
last-modified: Mon, 21 Jun 2021 11:25:30 GMT
etag: W/"158f9d249066d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
cf-cache-status: HIT
age: 1995412
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b0E9VGSQKZi72mMxGDgPaNu%2FQgLyztO6t8nFrROzCk8g3wervEIs%2FOQ%2F0g44KWGH0Ih3i5sHySjpj%2F0HvyPtuf8GMCyJI0Fptfk%2FdTXh2l%2FZRpoSlTfiUjoWeqfLHFU57A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793317adb9290b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
tmi.maariv.co.il/
104.20.19.195200 OK 0 B IP 104.20.19.195:0
GET / HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:23 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=150
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
vary: Accept-Encoding
age: 17
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2AVyKRrUHJQEYMveFTpTojrcer0GaSGvrYl_HpiLREOlUsHV-PBuFA==
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793317a3ecf3b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
tmi.maariv.co.il/Content/bootstrap.min.css
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Content/bootstrap.min.css
IP 104.20.19.195:0
GET /Content/bootstrap.min.css HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Thu, 02 May 2019 06:10:17 GMT
etag: W/"a1d8d2b6ad0d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
age: 530932
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MT1SAOfwQ9pLx1BlgYC4BQjGkfKKEjL2wLdZtS0bLDjPeRiAFU63SA==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfa5b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/gossip_to_us.svg
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Images/gossip_to_us.svg
IP 104.20.19.195:0
GET /Images/gossip_to_us.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Tue, 09 Jul 2019 13:16:53 GMT
etag: W/"4aeaa9935836d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 420871
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cfQuf4DlqjNwWRonOVM3gN7sy7ZEWIr3hdhIks4j6KL5jyxCrtztRw==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a60fe5b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/jquery-3.3.1.min.js
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Scripts/jquery-3.3.1.min.js
IP 104.20.19.195:0
GET /Scripts/jquery-3.3.1.min.js HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Thu, 02 May 2019 06:09:31 GMT
etag: W/"208daa9bad0d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 171729
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dP37A0oOqkvOgeRbH5PREcrRtb8ll_52HMRvyJZNfF_6qK5lUBIiTg==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a68890b51e-OSL
X-Firefox-Spdy: h2
js.nagich.co.il/style/btncolor.css
104.26.3.20200 OK 0 B URL HTTP/2 js.nagich.co.il/style/btncolor.css
IP 104.26.3.20:0
GET /style/btncolor.css HTTP/1.1
Host: js.nagich.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
cache-control: public, max-age=2604800
last-modified: Mon, 11 Feb 2019 10:07:59 GMT
etag: W/"e97d81aaf1c1d41:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
cf-cache-status: HIT
age: 1995411
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQKBGM3jMENBB2TJack%2F5SBUYbv%2FSqwqsXmr9xhXJWn8qrIL5CmOfKhK3jVu3i%2B4ahFCPol88I0qL0GMe%2FqABZFOOI%2BEURodCpbaPM5tdCmjup0hDXI4FpHBi94gTGE7Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317aa8c120b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:29 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://tmi.maariv.co.il
server-processing-duration-in-ticks: 1405879
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=158810&sc=1&pr=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=158810&sc=1&pr=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=158810&sc=1&pr=https%3A%2F%2Fcsync.smilewanted.com%2Fset_partner_userid_get%2Fpubmatic%2F&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
21975121.adoric-om.com/adoric.js
188.114.97.1200 OK 0 B URL HTTP/2 21975121.adoric-om.com/adoric.js
IP 188.114.97.1:0
GET /adoric.js HTTP/1.1
Host: 21975121.adoric-om.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/javascript; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: movetogcp2020.com
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-credentials: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Access-Control-Allow-Credentials
content-range: bytes 50-10000/*
vary: Accept-Encoding
via: 1.1 google
cache-control: public, max-age=14400
age: 444
etag: W/"27b83-Ca3pAOLZUkp7uVXG3Q81fbFfCuI"
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=35xJJxwaiE5S9BG8MnVwJGlB%2B9aGsk0IJPWzzHTgr05XvI4NvsavvMvnnj8p%2FyrsMVIq8X8Yat0Pf3I9hsBAW3Iv%2BDJU3aZZVgo%2Bx7%2F%2Br3xD6762diwVnTmYMUuiMIdpfLBjkgyL%2FkI%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793317a90c15b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.chartbeat.com/js/chartbeat.js
54.230.219.187200 OK 0 B URL HTTP/2 static.chartbeat.com/js/chartbeat.js
IP 54.230.219.187:0
GET /js/chartbeat.js HTTP/1.1
Host: static.chartbeat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
date: Thu, 02 Feb 2023 02:57:12 GMT
server: nginx
last-modified: Thu, 08 Dec 2022 17:25:10 GMT
cross-origin-resource-policy: cross-origin
expires: Fri, 03 Feb 2023 02:57:12 GMT
cache-control: max-age=86400
content-encoding: gzip
etag: W/"63921df6-9377"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8VOo-hllq1D0ODU6kDDAMnDZvLfYJp083M0vLN576S4O0JzPiR3XOQ==
age: 36012
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick.min.js?ver=2021_07_14_01
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Scripts/slick-1.6.0/slick/slick.min.js?ver=2021_07_14_01
IP 104.20.19.195:0
GET /Scripts/slick-1.6.0/slick/slick.min.js?ver=2021_07_14_01 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 10 Mar 2021 07:16:25 GMT
etag: W/"1facf8477d15d71:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 395807
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: drGcXGbFh4WerzVyX3K118qtZWXoXbcGaHWjRv0WtFfz0pLInLhyIg==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a6a8beb51e-OSL
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1
IP 178.250.2.146:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Ftmi.maariv.co.il%2F&domain=tmi.maariv.co.il&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://tmi.maariv.co.il
server-processing-duration-in-ticks: 576023
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
img.wcdn.co.il/3/4/8/7/3487012-46.jpg
54.230.111.34200 OK 0 B URL HTTP/2 img.wcdn.co.il/3/4/8/7/3487012-46.jpg
IP 54.230.111.34:0
GET /3/4/8/7/3487012-46.jpg HTTP/1.1
Host: img.wcdn.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 59443
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: public, max-age=31557600
cache-tag: 125498748831489836750784236019486634060,d2bce9e04f88d43dd8350e859c701704
edge-cache-tag: 125498748831489836750784236019486634060,d2bce9e04f88d43dd8350e859c701704
etag: "f2ef2f3ff963bc505f291265cc3c6254"
last-modified: Sun, 22 Jan 2023 13:15:14 GMT
server: cloudinary
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 25 Jan 2023 13:08:11 GMT
via: 1.1 varnish, 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-served-by: cache-lga21959-LGA
x-cache-hits: 1
x-timer: S1674652091.317410,VS0,VE1
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DQkwjhMrjSJTk9B6fJlE9Uv1NJmCOhKVOg4OanZ7F8aNLiiK9b9cCQ==
age: 690553
X-Firefox-Spdy: h2
get.geojs.io/v1/ip/country.json
172.67.70.233200 OK 0 B URL HTTP/2 get.geojs.io/v1/ip/country.json
IP 172.67.70.233:0
GET /v1/ip/country.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tmi.maariv.co.il/
Origin: https://tmi.maariv.co.il
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/json
x-request-id: 1451901bff3d2901684dc69824167bd5-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iolpi27vSXCzyYgw4BT8krEbp%2BxjfzfwOuk2us8OSFyupn9t61c0%2F8IWTL4xSTaDwHU8%2FIYEPX%2F57Qw2lAL6gO0ZWmeqQ%2BetyOH0w3RHbr6kabBveenKoNYW%2Fy0fRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793317a979741c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=160447&sc=1&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=160447&sc=1&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=160447&sc=1&u=C793A99A-FD34-4B62-BC37-248211DCC062&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 12:57:30 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.106:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 12:57:26 GMT
date: Thu, 02 Feb 2023 12:57:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tmi.maariv.co.il/Content/Site.css?ver=2022_08_23_1
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Content/Site.css?ver=2022_08_23_1
IP 104.20.19.195:0
GET /Content/Site.css?ver=2022_08_23_1 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 08:58:37 GMT
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
content-encoding: gzip
cache-control: max-age=604800
etag: W/"6ede4d88ceb6d81:0"
vary: Accept-Encoding
age: 395807
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bFM637fzQh8H68Cm_x_eQwe15q3-rR5Eo9SXZhdDEd9Wc7i6OUoQsA==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a5dfaab51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Images/logo-maariv-online.svg
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Images/logo-maariv-online.svg
IP 104.20.19.195:0
GET /Images/logo-maariv-online.svg HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: image/svg+xml
cache-control: max-age=604800
last-modified: Wed, 12 Jun 2019 11:23:20 GMT
etag: W/"1c36a53d1121d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 342890
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dTHJqD-n8-5DfwtIAE2mgI3KPRxohq03El7yWeRLHrNieh1fgfEFCA==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a60fefb51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/site_script.js?ver=2022_12_28_1
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Scripts/site_script.js?ver=2022_12_28_1
IP 104.20.19.195:0
GET /Scripts/site_script.js?ver=2022_12_28_1 HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 28 Dec 2022 09:34:57 GMT
etag: W/"45e1da69f1ad91:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
via: 1.1 google, 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
content-encoding: gzip
vary: Accept-Encoding
age: 75892
cloudfront-is-desktop-viewer: true
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u0pEe1jLNKKC3u4BAn4l8BBfmPAMGIK8qjn2hYtGhQQW-P_VkKqf7A==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a68892b51e-OSL
X-Firefox-Spdy: h2
tmi.maariv.co.il/Scripts/bootstrap.min.js
104.20.19.195200 OK 0 B URL HTTP/2 tmi.maariv.co.il/Scripts/bootstrap.min.js
IP 104.20.19.195:0
GET /Scripts/bootstrap.min.js HTTP/1.1
Host: tmi.maariv.co.il
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tmi.maariv.co.il/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:57:24 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Thu, 02 May 2019 06:10:19 GMT
etag: W/"af7e5b7ad0d51:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
age: 473931
cloudfront-is-desktop-viewer: false
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: utH_7S83aULi5_R3qGzc1eB4wN8eXhs4t76-sr0VF6EMYgxYtt_sjw==
cf-cache-status: HIT
server: cloudflare
cf-ray: 793317a68891b51e-OSL
X-Firefox-Spdy: h2