r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15628
Expires: Thu, 27 Oct 2022 05:31:04 GMT
Date: Thu, 27 Oct 2022 01:10:36 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1449
Cache-Control: max-age=117875
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:36 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 09:55:11 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10014
Expires: Thu, 27 Oct 2022 03:57:30 GMT
Date: Thu, 27 Oct 2022 01:10:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M5NkITWCW23YiqugvD6E6+tfpdhdygj205LjUDcGF5sU2x/ydbqdhDsh+e9/JZIsTR45k1H1zr4=
x-amz-request-id: 4WKMBXC8FF42JD89
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 00:39:24 GMT
age: 1872
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html
142.250.74.161200 OK 15 kB URL HTTP/1.1 jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5137)
Hash afefeab37b19a25d551b0e244d517e5c
7052d95146e051cd1e25d12ba2a1e4922e160c6c
25a2fcac6626728315121f9c934d7380fdab3b6291184851ba7331e844f65db1
Analyzer Verdict Alert fortinet Phishing
GET /2009/03/graduate-show-during-china-fashion-week.html HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 27 Oct 2022 01:10:36 GMT
Date: Thu, 27 Oct 2022 01:10:36 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 17 Aug 2022 17:06:01 GMT
ETag: W/"2329d2ac8aa99a8624d9bc91d068a44bb0abe05853929da55b740c06ec76993e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 14792
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 01:10:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
scripts.chitika.net/eminimalls/amm.js
143.204.55.20301 Moved Permanently 167 B URL HTTP/1.1 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://scripts.chitika.net/eminimalls/amm.js
X-Cache: Redirect from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nuj2LDX7XNuJAlBgVgZCNoeu-zYloeaQntFcaKKnXNP_Sj_VyntX9g==
mm.chitika.net/eminimalls/mm.js
143.204.55.22301 Moved Permanently 167 B URL HTTP/1.1 mm.chitika.net/eminimalls/mm.js
IP 143.204.55.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/mm.js HTTP/1.1
Host: mm.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://mm.chitika.net/eminimalls/mm.js
X-Cache: Redirect from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VzhH_JwVyfC2KqKyyotKkqtNjvFw5CiKyQuyXcqjUJOQmLZ0axLezQ==
www.google.com/buzz/api/button.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 58dc36fb23d2dcf3ccb3668bf07b59c4
6936e4038682706c7733477ac62ef3e448949edb
66bccd3fa212c7a2ac4d60e86e024e101f80f11ccc3a3556d113140aafd6662d
GET /buzz/api/button.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 27 Oct 2022 01:10:37 GMT
Server: sffe
Content-Length: 1579
X-XSS-Protection: 0
jeannytsy.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 jeannytsy.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 24 Oct 2022 02:32:18 GMT
Expires: Mon, 31 Oct 2022 02:32:18 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 23 Oct 2022 19:50:36 GMT
Content-Type: text/javascript
Age: 254299
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1419
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 01:10:37 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F717)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3916b0c7f5b0721b2d8a74550205303
25a72ed9272ab4c0ff00f4af7f9f73827a2077bc
6cb58a401fae34625b697f8a3d95fb65d829c79ad4701ea7ac85984c9d25061b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
142.250.74.33404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Thu, 27 Oct 2022 01:10:37 GMT
expires: Thu, 27 Oct 2022 01:10:37 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 06:44:47 GMT
expires: Sat, 21 Oct 2023 06:44:47 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Oct 2022 00:50:45 GMT
content-type: text/css
age: 498350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.105200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:57:04 GMT
expires: Wed, 02 Nov 2022 19:57:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 26 Oct 2022 15:54:08 GMT
content-type: image/gif
age: 18813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bp2.blogger.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
142.250.74.174301 Moved Permanently 297 B URL HTTP/1.1 bp2.blogger.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 57bffaa6d93aabe0d805655a31ac39c4
3a0a5e5fce62d17edc9e0a93aa1b442a2d9191bc
bb1bc8d8eb8e8655af5a60073d98653cc0d0d0938ce02dafad8dae602ed787f6
GET /_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg HTTP/1.1
Host: bp2.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 297
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 03:00:07 GMT
Expires: Fri, 25 Nov 2022 03:00:07 GMT
Cache-Control: public, max-age=2592000
Content-Type: text/html; charset=UTF-8
Age: 79830
www.blogger.com/static/v1/widgets/2216895134-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2216895134-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 083268f093ceb61c3a61a818f199d053
97e2062e29efe96089c3e98a5e50f29cdcb05464
6dccb46111dff2073ee44dd7c4b0093f39d28ebc62ec17917c6ce6f8d42dba13
GET /static/v1/widgets/2216895134-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56821
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 15:54:22 GMT
expires: Thu, 26 Oct 2023 15:54:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 26 Oct 2022 05:52:40 GMT
content-type: text/javascript
age: 33375
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 26e60c83d7af169687cbd74f7ca924e0
00f7ceb935fe1cc423f95718a04076e4f5eca150
a041e2901d418b289c3129ce7c07a66e598f6d3ac076732635b0a9ac6fbabb89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash d70fcc84d705c565b31a5835c0938d5b
d28e5dc9fcc6239d67986df3205468072023d2d7
1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 23 Oct 2022 07:26:05 GMT
expires: Mon, 23 Oct 2023 07:26:05 GMT
cache-control: public, max-age=31536000
age: 323072
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.194200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.194:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 13:08:21 GMT
Expires: Wed, 09 Nov 2022 13:08:21 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 43336
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bdv.bidvertiser.com/BidVertiser.dbm?pid=411938%26bid=1024752
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=411938%26bid=1024752
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=411938%26bid=1024752 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash df95706607e2974a4891997783e4d31e
ac613880de6c4c5a04f98ff811a0fbebe9c0bf63
12d13dd98b8aef572a4be6eed5b4fcdbe0d708fa3683c9010873e0716dc9dbde
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash ee952dd06445584eab303044cd7dc78c
553adc72d1b86662f6f044099e73ed90159579bb
32361e12c2a31c1027951b7e26e65476d730f2ddb5325f4083e1de8e72aab461
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127206
Date: Thu, 27 Oct 2022 01:10:37 GMT
Etag: "63592873-1d7"
Expires: Fri, 28 Oct 2022 12:30:43 GMT
Last-Modified: Wed, 26 Oct 2022 12:30:43 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lA1etN2W6Vn0_BrebBHSsxpzVZWzapX_LyDCQfpX6ZalIFq7REphnw==
www.blogger.com/dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 27 Oct 2022 01:10:37 GMT
last-modified: Thu, 27 Oct 2022 01:10:37 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
142.250.74.161200 OK 3.9 kB URL HTTP/2 1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 70x80, components 3\012- data
Hash acfc3a38984e4ca7fec11b9007ad1afc
e961218b503f812db85de665d4b3aaa750e0c1cd
ab2a695cc8bf4ae5f4da8d38841a82fb200017668e0e3c7fdd76a19fd6abb05c
GET /_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="0017_kfli_02.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3877
x-xss-protection: 0
date: Thu, 27 Oct 2022 01:10:37 GMT
expires: Tue, 25 Oct 2022 02:32:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v26"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mm.chitika.net/eminimalls/mm.js
143.204.55.22301 Moved Permanently 0 B URL HTTP/2 mm.chitika.net/eminimalls/mm.js
IP 143.204.55.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/mm.js HTTP/1.1
Host: mm.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://chitika.net/index.html
date: Wed, 26 Oct 2022 22:34:51 GMT
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 57SYXSMlxs6n14wSvKMWv6X2LnMtFDJ37rL-H4OtmbE-ySxEDCkzcA==
age: 9347
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ba93f7305eade9093c149ab8374c1f
29d352bf8c811674691a8d9bc737bc8bf27da37a
12c1af15ce9017b55fdd5e90a2206ff29d6ed1c0c2a35f9fad6e674bd56b5256
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
photoserver.ws/images/J7rK4ec124a37b7c8.jpg
64.70.19.203200 OK 478 B URL HTTP/1.1 photoserver.ws/images/J7rK4ec124a37b7c8.jpg
IP 64.70.19.203:0
ASN #3561 CENTURYLINK-LEGACY-SAVVIS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa86f8a7448401cfee04397b3fcc55b1
d6d241098a23efede5ac01efe7e3c5f69ae92989
131d29852592b7b5ea2ff4466a0ab4f688d36a7e815071703f86052dea6cf7f3
GET /images/J7rK4ec124a37b7c8.jpg HTTP/1.1
Host: photoserver.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 478
Connection: keep-alive
Allow: GET,HEAD
www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
52.128.23.153302 Found 0 B URL HTTP/1.1 www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
IP 52.128.23.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.6.39-0+deb8u1
Location: http://www.globetrackr.com/?f
Set-Cookie: SRV=lander06|Y1nak|Y1nak; path=/
X-DIS-Request-ID: c22a3eb76bc27071ff82de2bf1e0cfd6
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a7009d279b1459806db373b029377a83
473462fe518605c63e157bc7bb33f4554bda1d30
4fd665472c71543b3b202041c1ee6e9f429c1411078757bead0afb5d80c05aae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163912
Date: Thu, 27 Oct 2022 01:10:37 GMT
Etag: "6359b7d5-1d7"
Expires: Fri, 28 Oct 2022 22:42:29 GMT
Last-Modified: Wed, 26 Oct 2022 22:42:29 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IrpNLvpsdFLXiYhWzoKP3ZQMCCi3xpJ7y1_dN7hp1DQXOSWbG9YpWQ==
scripts.chitika.net/eminimalls/amm.js
143.204.55.20200 OK 0 B URL HTTP/2 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
date: Wed, 26 Oct 2022 05:18:56 GMT
last-modified: Fri, 19 Apr 2019 16:37:52 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bROHDulPUn0svrb-LlaKVa2opINUluvY5jD2RuBh4CGorEire_o_Vw==
age: 71502
X-Firefox-Spdy: h2
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4237.jpg
47.246.44.225200 OK 43 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4237.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 450x382, components 3\012- data
Hash 44653346357d0ab942cf4f0cb0b47b47
aed3bcc8d543ed6424f742b3e7457afd46fe8515
5d9f8298998b7efd52f199665233a65b5fe000647e32cc838d8645f5f445e5f1
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4237.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 43346
Connection: keep-alive
Date: Wed, 26 Oct 2022 07:52:06 GMT
Last-Modified: Fri, 08 May 2009 07:46:06 GMT
ETag: "4a03e33e-a952"
Expires: Wed, 26 Oct 2022 08:22:06 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666770771
Via: cache5.l2de2[0,0,200-0,H], cache12.l2de2[1,0], cache4.se1[122,121,200-0,M], cache5.se1[123,0]
Age: 62266
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:37 GMT
X-Swift-CacheTime: 196934
Timing-Allow-Origin: *
EagleId: 2ff62c9916668330375143329e
www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
142.250.74.33404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 27 Oct 2022 01:10:37 GMT
Connection: keep-alive
Content-Length: 0
www.globetrackr.com/?f
52.128.23.153200 OK 773 B IP 52.128.23.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d8f7063ad69d6c7a76db9eb227cfb46
4f258985802a709b4e301fc8a8111274bb610b27
e97d05836d4e298fb115e318ac80920de10a6bcd7d2f0e621a5ff1fa8fc619f2
GET /?f HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
X-DIS-Request-ID: 231057122406933f1f195341fe67e23d
P3P: CP="NON DSP COR ADMa OUR IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Encoding: gzip
d2b9l3u54v5v39.cloudfront.net/css/default.css
54.230.245.149200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP 54.230.245.149:0
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Wed, 26 Oct 2022 22:24:18 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nllF48fR4abfLuJ94P9QBIO88mkilwHWuy8ZESy865TmOUIzJUwqyw==
Age: 10869
www.google.com/buzz/api/button.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 58dc36fb23d2dcf3ccb3668bf07b59c4
6936e4038682706c7733477ac62ef3e448949edb
66bccd3fa212c7a2ac4d60e86e024e101f80f11ccc3a3556d113140aafd6662d
GET /buzz/api/button.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 27 Oct 2022 01:10:37 GMT
Server: sffe
Content-Length: 1579
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1207
Cache-Control: max-age=96406
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 03:57:23 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3287
Cache-Control: max-age=114657
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:37 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:01:34 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
54.230.245.149200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP 54.230.245.149:0
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 27 Oct 2022 01:10:37 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MdqCfk6z-z-yw2XfjH7-LBKbWWTUWqnaJPlEECW5BV-txj8mTkl63g==
Age: 2197
d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
54.230.245.149200 OK 2.9 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
IP 54.230.245.149:0
File type ASCII text, with CRLF line terminators
Hash 4168b5a2517e8d07be159017f22759e7
ade414bcff8b8babb58bf6369fdbc7b8e2cf67b6
816427321da11d1632fac7711648e373bcbc01cf8b7b372d7b9178827906430a
GET /css/88x726.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2866
Connection: keep-alive
Date: Wed, 26 Oct 2022 03:01:07 GMT
Last-Modified: Thu, 18 Jan 2018 16:19:40 GMT
Accept-Ranges: bytes
ETag: "8ae83247890d31:0"
Server: Microsoft-IIS/10.0
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dOvnFoVPijUR858uCNO5jVCI7l6QJ5nXk1wcs8OPM6i7qMMtXmaqqw==
Age: 79770
www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: lZg/DcT2ov1waigEwM1HG8vWPM61o++e6VW6dFhhtPHeipuRF0E6/IfGfv28/U0xHJEzYkoR76zmI6q6Ysq2FA==
content-length: 0
date: Thu, 27 Oct 2022 01:10:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=411938&bid=1024752&RD=2475628913841&DIF=1&bd_ref_v=jeannytsy.blogspot.com&tref=1&win_name=null&docref=&jsrand=2475628913841&js1loc=-&loctitle=%20JeannyTSY%20site%2C%20Health%20%26%20Beauty%3A
54.241.51.109200 OK 5.8 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=411938&bid=1024752&RD=2475628913841&DIF=1&bd_ref_v=jeannytsy.blogspot.com&tref=1&win_name=null&docref=&jsrand=2475628913841&js1loc=-&loctitle=%20JeannyTSY%20site%2C%20Health%20%26%20Beauty%3A
IP 54.241.51.109:0
Hash 53b015c764299204bb2efc25318d7eac
51c5fb1afcd1fa03f110c0a1d7e44293ffac3c93
bbfd4984aecdb08fdbc7ae0cbc7cfb3329ff892b2058fd7a1c81c348a07de482
GET /BidVertiser.dbm?pid=411938&bid=1024752&RD=2475628913841&DIF=1&bd_ref_v=jeannytsy.blogspot.com&tref=1&win_name=null&docref=&jsrand=2475628913841&js1loc=-&loctitle=%20JeannyTSY%20site%2C%20Health%20%26%20Beauty%3A HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thursday, 27-Oct-2022 01:10:37 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 27-Oct-2021 01:10:37 GMT
Set-Cookie: bdv_c10p=244; domain=.bidvertiser.com; path=/; expires=Fri, 28-Oct-2022 01:10:37 GMT
bdv_c10p=1_1_1; domain=.bidvertiser.com; path=/; expires=Fri, 28-Oct-2022 01:10:37 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close
farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
143.204.48.75301 Moved Permanently 167 B URL HTTP/1.1 farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
IP 143.204.48.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /6170/6180570556_15a926428e_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XwtzZlHxYGjW-L5Wdf6P6KhSdLBuRq-8OcBDQl1GSFFmTx0Meh2IyA==
farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
143.204.48.75301 Moved Permanently 167 B URL HTTP/1.1 farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
IP 143.204.48.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /6177/6180570362_3eeacc7e9f_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 27 Oct 2022 01:10:37 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nFgHGecnmajmoJtTwDKCwE5XZ1fsrVzOqBnTtb3PlmW951pHHCUcbQ==
farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
143.204.48.75200 OK 73 kB URL HTTP/2 farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
IP 143.204.48.75:0
File type JPEG image data, baseline, precision 8, 533x400, components 3\012- data
Hash da4038183e721dd49fe8e3158b1dccbe
e835e02fd14c7c49d0df037438f6a9e9e094c0a6
5bed0b7b202882186e1b38950bdab312b2d87d52955ba552f1091273b8eeb60a
GET /6170/6180570556_15a926428e_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
date: Mon, 24 Oct 2022 02:31:01 GMT
edge-control: public, max-age=31536000
surrogate-control: public, max-age=31536000
cache-control: public, max-age=31536000
expires: Tue, 24 Oct 2023 02:31:01 GMT
imagewidth: 533
imageheight: 400
last-modified: Thu, 11 Apr 2019 22:02:35 GMT
etag: "ec5461f0192fe74517e16b45b6c3ce1c.1"
streaming: false
origintype: X
server: Jubilee
quote: "I'm not a kid anymore, I'm one of you, one of the X-Men. It means more to me than anything in the world."
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
powered-by: Mutation/1.0
hiring: Change the world of photography with us. https://www.flickr.com/jobs/
ourvalues: Grow Together (#1 of 5)
x-request-id: 7fabbf16
x-frame-options: DENY
p3p: CP="This is not a P3P policy. We respect your privacy."
x-env: a=live, b=jubilee, c=4cf206a9, e=b1cfc1fdb4a90fbd7ed7449176940c7c057c6af1
x-ttfb: 0.23
x-ttdb-l: 72354
mib: 2
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9W6f0G_nkjGpTiMRfgVLvozHoba2RkJXvPUTkQn0Oo4nPewG1UiqIw==
age: 254376
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BPRGzK82aKXnUPH7B2ZYtQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1pyJTFmA2iAU6Gv9pSZftqKix7M=
photoserver.ws/images/J7rK4ec124a37b7c8.jpg
64.70.19.203200 OK 478 B URL HTTP/1.1 photoserver.ws/images/J7rK4ec124a37b7c8.jpg
IP 64.70.19.203:0
ASN #3561 CENTURYLINK-LEGACY-SAVVIS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa86f8a7448401cfee04397b3fcc55b1
d6d241098a23efede5ac01efe7e3c5f69ae92989
131d29852592b7b5ea2ff4466a0ab4f688d36a7e815071703f86052dea6cf7f3
GET /images/J7rK4ec124a37b7c8.jpg HTTP/1.1
Host: photoserver.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 27 Oct 2022 01:10:38 GMT
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 478
Connection: keep-alive
Allow: GET,HEAD
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4f38.jpg
47.246.44.225200 OK 36 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4f38.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 450x302, components 3\012- data
Hash e09907d7e38ed4a99169381b35dea9fc
78fc6b1b4669cdf5bd6232261403206402135ba2
64e58b751dc13167158915c14e9d49c3f6e01a792d63aab9c7759e335c539a2b
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc4f38.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 36258
Connection: keep-alive
Date: Thu, 27 Oct 2022 01:09:53 GMT
Last-Modified: Fri, 08 May 2009 07:46:06 GMT
ETag: "4a03e33e-8da2"
Expires: Thu, 27 Oct 2022 01:39:53 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666833038
Via: cache2.l2de2[390,390,200-0,M], cache14.l2de2[391,0], cache2.se1[512,511,200-0,M], cache1.se1[513,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:38 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9516668330375183442e
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
142.250.74.163200 OK 34 kB URL HTTP/2 www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2800)
Hash 88e921b492ded34fcf0c75fa81304a02
75a00e5b7c6846be55aa39550258e576abe199ff
6d126a4fa36c1ef24a46c83a19a68085e4f88a7ee57ae21a331c1cd350263a79
GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33986
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 00:24:55 GMT
expires: Thu, 27 Oct 2022 01:14:55 GMT
cache-control: public, max-age=3000
last-modified: Tue, 25 Oct 2022 15:39:03 GMT
content-type: text/javascript
age: 2743
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
52.128.23.153302 Found 0 B URL HTTP/1.1 www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
IP 52.128.23.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 01:10:38 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.6.33-0+deb8u1
Location: http://www.globetrackr.com/?f
Set-Cookie: SRV=lander05|Y1nak|Y1nak; path=/
X-DIS-Request-ID: b00c99e2632ffc02caf9740408546d9d
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc853c.jpg
47.246.44.225200 OK 52 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc853c.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x617, components 3\012- data
Hash be9403ad99c272d5c68837e2ccb4586a
30a7f5fe072bb2c2326005a0590f7b9c5d80f90f
97b79afcf56983719c5a98de43f6c44b039f8ad86e72606863f9edd6d0bcfe3f
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc853c.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 51838
Connection: keep-alive
Date: Thu, 27 Oct 2022 01:09:52 GMT
Last-Modified: Fri, 08 May 2009 07:46:05 GMT
ETag: "4a03e33d-ca7e"
Expires: Thu, 27 Oct 2022 01:39:52 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666833038
Via: cache3.l2de2[393,393,200-0,M], cache1.l2de2[394,0], cache1.se1[517,517,200-0,M], cache2.se1[519,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:38 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9616668330375112678e
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc753b.jpg
47.246.44.225200 OK 45 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc753b.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x563, components 3\012- data
Hash bbbd351c047d6c2a28b61427f9286602
57fa9f7fbab116af6d899f346d90b43aa50f7c56
b997659997e7f97fcf938dbea5d95319ba6a461d2285e330dd10d55a0e65beba
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc753b.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 45248
Connection: keep-alive
Date: Thu, 27 Oct 2022 01:09:53 GMT
Last-Modified: Fri, 08 May 2009 07:46:06 GMT
ETag: "4a03e33e-b0c0"
Expires: Thu, 27 Oct 2022 01:39:53 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666833038
Via: cache20.l2de2[412,412,200-0,M], cache19.l2de2[413,0], cache8.se1[536,536,200-0,M], cache2.se1[538,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:38 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9616668330375112679e
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc683a.jpg
47.246.44.225200 OK 33 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc683a.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 450x304, components 3\012- data
Hash 6009ab71d360abb760d72c36fc86a754
5bfb33f5b5065b6ceb8608fd5c319388c3540fdd
315c1fb9219955ad7ba56b8b8e0eb239d4f3dd63aa94997a5e89a730a802a748
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc683a.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 33006
Connection: keep-alive
Date: Thu, 27 Oct 2022 01:09:52 GMT
Last-Modified: Fri, 08 May 2009 07:46:06 GMT
ETag: "4a03e33e-80ee"
Expires: Thu, 27 Oct 2022 01:39:52 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666833038
Via: cache19.l2de2[583,583,200-0,M], cache21.l2de2[584,0], cache8.se1[707,706,200-0,M], cache5.se1[709,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:38 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9916668330375133328e
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 487 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Hash 189b414d13bb795ad0633e08e0b3918d
1c95ad033b1fe9966ddeb4c6f3e13a838d5a23f1
de74506c0bcc26bc9dd83caaf6080ac20fc0d3a39b0f3adfdcf93907e677cb77
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6740245638922087389%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 27 Oct 2022 01:10:38 GMT
location: https://www.blogger.com/followers.g?blogID=1412683674746141522&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50&pageSize=21&postID=6740245638922087389&origin=http%3A%2F%2Fjeannytsy.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-jJbYhNfd3fTGtIE1cVpfdg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 487
server: GSE
set-cookie: __Host-GAPS=1:AGmbkuVY1M9Jz9OtekmlxPOWxYu3pg:b7Bii6GsAOL9X4Re;Path=/;Expires=Sat, 26-Oct-2024 01:10:38 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.globetrackr.com/?f
52.128.23.153200 OK 773 B IP 52.128.23.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d8f7063ad69d6c7a76db9eb227cfb46
4f258985802a709b4e301fc8a8111274bb610b27
e97d05836d4e298fb115e318ac80920de10a6bcd7d2f0e621a5ff1fa8fc619f2
GET /?f HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 01:10:38 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
X-DIS-Request-ID: fe7a26b35252f796934375621b3a4c5d
P3P: CP="NON DSP COR ADMa OUR IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Encoding: gzip
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 570402
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 27 Oct 2022 01:10:38 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
astore.amazon.com/jeannytsy-20
176.32.98.40503 Service Unavailable 355 B URL HTTP/1.1 astore.amazon.com/jeannytsy-20
IP 176.32.98.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a7a05cd0f47c4f23d59495171f351044
9a0d9cb2b0ef898dcd9b830de013f8e0179752d0
dfaf45c94689a50d29235179fb5ee1006ba62e7c2e0d1ca56d966cd95ce31a65
GET /jeannytsy-20 HTTP/1.1
Host: astore.amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 503 Service Unavailable
Date: Thu, 27 Oct 2022 01:10:38 GMT
Server: Server
Vary: Content-Type,Accept-Encoding,User-Agent
Last-Modified: Thu, 05 Jul 2018 20:40:47 GMT
ETag: "209-570468fd9f1c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
x-amz-rid: 14VGZ046XV3G9ZQM4R7W
Content-Length: 355
Content-Type: text/html
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash f29c78102cc3b552e305610c1ae555f9
ec478d4fb7fc5b665d4415819ebaa56333e1ebf5
470fb056ad1acd601481aa050c27ccefdb52776c4f786110f8bff5e8e2080d8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3751
Cache-Control: max-age=100698
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 01:10:38 GMT
Etag: "6358b241-138"
Expires: Fri, 28 Oct 2022 05:08:56 GMT
Last-Modified: Wed, 26 Oct 2022 04:06:25 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc5c39.jpg
47.246.44.225200 OK 30 kB URL HTTP/1.1 www.chinadaily.com.cn/life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc5c39.jpg
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 450x327, components 3\012- data
Hash 2b942330998da8fbee5b2c60093fa872
f2794d0a647011eb73a290187865f91ef9ee0ec6
d333e8c87c56eb526697a1f7e89e41b80a64f70fe64d0067fe64528d1fe96fcb
GET /life/images/attachement/jpg/site1/20090327/0023ae5d932f0b36cc5c39.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 30256
Connection: keep-alive
Date: Thu, 27 Oct 2022 01:09:53 GMT
Last-Modified: Fri, 08 May 2009 07:46:06 GMT
ETag: "4a03e33e-7630"
Expires: Thu, 27 Oct 2022 01:39:53 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666833038
Via: cache23.l2de2[805,805,200-0,M], cache6.l2de2[806,0], cache2.se1[927,926,200-0,M], cache8.se1[928,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 27 Oct 2022 01:10:38 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9c16668330375111034e
g-ecx.images-amazon.com/images/G/01/website/errors/503/generic.png
143.204.46.75200 OK 59 kB URL HTTP/1.1 g-ecx.images-amazon.com/images/G/01/website/errors/503/generic.png
IP 143.204.46.75:0
File type PNG image data, 500 x 300, 8-bit grayscale, non-interlaced\012- data
Hash f35d39ee1e85e39903dc0827a71779ba
ad136867ba8b419326f7c9e6e3b6135c7cf67cb3
8bc31ae58bf472efcde19f7495d4d392bd96936df12edc386db7e296001c8618
GET /images/G/01/website/errors/503/generic.png HTTP/1.1
Host: g-ecx.images-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://astore.amazon.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 58733
Connection: keep-alive
Server: Server
X-Amz-IR-Id: 64bd2b94-856a-4749-992b-1425b6dc7885
Surrogate-key: x-cache-607 /images/G/01/website/errors/503/generic
Timing-Allow-Origin: https://www.amazon.com
Edge-Cache-Tag: x-cache-607,/images/G/01/website/errors/503/generic
Access-Control-Allow-Origin: *
Last-Modified: Sat, 16 Jul 2011 00:20:23 GMT
X-Nginx-Cache-Status: HIT
Accept-Ranges: bytes
Date: Wed, 26 Oct 2022 03:00:13 GMT
Expires: Thu, 27 Oct 2022 02:16:30 GMT
Cache-Control: max-age=86400,public
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cxsq2OS1O6spO3yoAdeCNN6-nkyVreeQ3Livu44X5qk5y_vKNl3TkA==
Age: 82034
syndication.twitter.com/settings?session_id=21941d79c2704ec43dcf72bcac16bc150811839b
104.244.42.72200 OK 355 B URL HTTP/2 syndication.twitter.com/settings?session_id=21941d79c2704ec43dcf72bcac16bc150811839b
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Hash 7cac009f8121486bc6c44991cf606190
ddae6074c908031f09b586d38a022e0e4add23b5
7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
GET /settings?session_id=21941d79c2704ec43dcf72bcac16bc150811839b HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 01:10:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 01:10:38 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: 13a49a95d2a0c3cb
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: b3557af483bf408ecccaeaf73bd3bdfdcfef30c5de0d55be40a0ea4e11cc8371
X-Firefox-Spdy: h2
rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.132.238301 Moved Permanently 163 B URL HTTP/1.1 rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.132.238:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c4bede7d6b8e56951ae0c0e194153af0
f11f69eaee4f3cd0c75d0f41f1f1d213a359d5b7
b691e78554674f4bb12223fcd4d40aa99c80a83f96d7c251eb116afb33c5fe8a
GET /e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: rcm.amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Server
Date: Thu, 27 Oct 2022 01:10:38 GMT
Content-Type: text/html
Content-Length: 163
Connection: keep-alive
Location: https://rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
jeannytsy.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 jeannytsy.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/2009/03/graduate-show-during-china-fashion-week.html
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Thu, 27 Oct 2022 01:10:38 GMT
Date: Thu, 27 Oct 2022 01:10:38 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 17 Aug 2022 17:06:01 GMT
ETag: W/"2329d2ac8aa99a8624d9bc91d068a44bb0abe05853929da55b740c06ec76993e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
www4.clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
104.22.63.219301 Moved Permanently 178 B URL HTTP/1.1 www4.clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
IP 104.22.63.219:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /counter/index2.php?url=http://jeaanyTSY.blogspot.com HTTP/1.1
Host: www4.clustrmaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Oct 2022 01:10:39 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
CF-Cache-Status: DYNAMIC
Set-Cookie: __cflb=02DiuG7P9ht1hwNUmcmBSaSKnjaReHwobHEJiRg8nvzN8; SameSite=Lax; path=/; expires=Fri, 28-Oct-22 00:10:39 GMT; HttpOnly
Server: cloudflare
CF-RAY: 76078d9d1a37b4f3-OSL
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 5d0940862723a20bb4f2dab2b7af9bb4
c1aab96ed293f46fb5a53aa6b1109dd280c430b3
dbe59da44cbbbc83c10daf0c0a53d1c4c53105f82b77fecd0beb84a67c13525a
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 570403
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 27 Oct 2022 01:10:39 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
93.184.220.66200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401)
Hash b50f912e0a65c3b77c131fcb005702e1
e5f14c4424cfc884f127b83a19c035bb2a14d91e
ee1c07313336a3d9f216f01365553e0094c36a4997ceef98f5ce5e60eda30a15
GET /widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 570400
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 27 Oct 2022 01:10:39 GMT
Etag: "d054dcf1d4f9930ca9bb4901678a35a7+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15129
platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash dcb83b699eb06319b25d6358a99ebf24
b3e7a54a54ff64f7ab997a0695eb3edec5efc180
ca69f6c092f02935c8dbf6bd7ba33325e6343052396cff6b4e08f544194a5a16
GET /widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 570401
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 27 Oct 2022 01:10:39 GMT
Etag: "5f5bf2b99100f854c01f4f321282f861+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:24 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.132.238302 Found 298 B URL HTTP/1.1 rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.132.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9ab9e8a24c52b3ead6ffc16fbacaf1e9
6bf08741cd846da21e7935cf78e60dae9f7993e5
e033a5d4fa26a931213949d2f163163ed721a30f8bd9b9ef1470650ab09c3727
GET /e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: rcm.amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Thu, 27 Oct 2022 01:10:39 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 298
Connection: keep-alive
x-amz-rid: TPENMP9G6W783FWBCZKE
Location: https://ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=300; includeSubDomains; preload
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13112
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 01:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13112
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 01:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13112
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 01:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13112
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 01:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13112
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 01:10:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76b8756bea7b9c29285f6b604ec13a8e
0ddd9f80782a4bda5643be710b498f0fdc2c50db
7068a15f10288c3de5fea422b360b8f20989ac33af4481fb8e5a0f125486b3fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 3d0fb9c3-d606-497e-b196-6ac5ec846814
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aZRwIE1IoAMFYCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63539667-34f866976ebb7efd2c4e868d;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 07:06:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: g_gUPSn6HiFVh-FIsEFJ-Bz2T8xsbYlS26i7lFlgs8hHZbBTaKjdRw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:51:09 GMT
age: 11970
etag: "0ddd9f80782a4bda5643be710b498f0fdc2c50db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8240214ef7bc82b09de023cde217beb9
0f432e521fc4392f528042c711139dc0becc5598
2d5f1a426441536086c8278651808dc6e3e819ec18b48048520a4dedbc8a08ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6806
x-amzn-requestid: bdf4f489-b474-4143-881f-521ad5dee74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocwUGb9oAMFRGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a801-2a1e822f6b1dd3304c8f0527;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: oxLrpXYZuUBO5qEKrFYAkh3lx2ZE7Jph8tcq0b4dWIHxUODXP3FDDQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:52:49 GMT
etag: "0f432e521fc4392f528042c711139dc0becc5598"
content-type: image/jpeg
age: 11870
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/bidvertiser.dbm?pid=411938&bid=1024752&RD=25128752875676&DIF=2
54.241.51.109200 OK 16 kB URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=411938&bid=1024752&RD=25128752875676&DIF=2
IP 54.241.51.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ded5eb41644bfe7ea87cff5ab0d79f0
9b13eca2d768277b92c05a8a82743018489783a6
3de7fcc3e9c8a107e4c5d6e59506ec71e68129a8351e47af63930873775ac3f9
GET /bidvertiser.dbm?pid=411938&bid=1024752&RD=25128752875676&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Date: Thursday, 27-Oct-2022 01:10:39 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 27-Oct-2021 01:10:39 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb430e5efbc6c8c306fce87e26faf734
b05b7299a7e473e873510671a6abdd5227a53f46
c49d64e87ec8243a1ee7f214f21988b6f6a33ba93814ec31262d80e4a22b8504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8936
x-amzn-requestid: d0698fc0-e4c9-4633-9b64-df09be35b450
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGBlIAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7c78a1fc43552b934e6b8708;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gus8UKo03dRkfqPRhxnW6zzqx7o-2tZbbv-DsBSW7UREHPOA1uqdUw==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:53 GMT
age: 11986
etag: "b05b7299a7e473e873510671a6abdd5227a53f46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd980e84d-7557-46f4-86fa-a1750bc0556c.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd980e84d-7557-46f4-86fa-a1750bc0556c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 67c7146ff56c9463c0b083309a978ea0
707b7879deeb50d13d83aafc7293995e937024a7
b7165804db9a86623445ee8dce01ac6cbbf65cc7f99b60089ca4382a230b093e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd980e84d-7557-46f4-86fa-a1750bc0556c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4328
x-amzn-requestid: 0d4e3cd2-261d-48ca-9eaa-e8781bba8208
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocvjFZtIAMFWlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7fc-78d12691124af7052d77f5be;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zhIR7YHR6tsp4mlWUeYqCk2QjLPiE_uyUwpSptMBqCjjtJQE6Fb5cw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:42 GMT
age: 11997
etag: "707b7879deeb50d13d83aafc7293995e937024a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed4462f023dbabb596a2e3b521425ca1
61b82445b422a5f917bb10640beb6d73eb0e62c3
a02af2897331acc123bf7d54b30929e3bc062a0875b5dea95302ddf60d808ded
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18182
x-amzn-requestid: f1232b1f-32ac-4820-b186-b3bfb928c0b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvSKFF4oAMF2Wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f40-0b9bc4d27b7534176cc278ed;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -iSQAX4xEu0e3ym9ovX4jXaBbE6JVQyqZQOI4vNg_uEOO2hFafgl4A==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 07:50:45 GMT
age: 62394
etag: "61b82445b422a5f917bb10640beb6d73eb0e62c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 01:10:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 01:10:39 GMT
content-length: 43
x-transaction-id: 720f7237f302b6b6
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: b3557af483bf408ecccaeaf73bd3bdfdcfef30c5de0d55be40a0ea4e11cc8371
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F03%2Fgraduate-show-during-china-fashion-week.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666833038965%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=21941d79c2704ec43dcf72bcac16bc150811839b HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 01:10:38 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 27 Oct 2022 01:10:39 GMT
content-length: 43
x-transaction-id: ce499e2da720ab26
strict-transport-security: max-age=631138519
x-response-time: 114
x-connection-hash: b3557af483bf408ecccaeaf73bd3bdfdcfef30c5de0d55be40a0ea4e11cc8371
X-Firefox-Spdy: h2
clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
104.22.62.219200 OK 16 kB URL HTTP/1.1 clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
IP 104.22.62.219:0
File type PNG image data, 180 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash db1e8b0eaffe0c216a5f043bbc7be025
b579a85362b9dadf95dd7f514980060cd21e9c4c
0b5aa0155a272e52cb3e20418c0f52b73cf49cfc55f7d0ddacf4128e7c771d9e
GET /counter/index2.php?url=http://jeaanyTSY.blogspot.com HTTP/1.1
Host: clustrmaps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 01:10:39 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
CF-Cache-Status: DYNAMIC
Set-Cookie: PHPSESSID=8qnrv97g448i5fjpof1supp78h; path=/
__cflb=02DiuHcKAbFByoMNpCmpxhfkjjqvkJqKWFyFWqfAtrNPW; SameSite=Lax; path=/; expires=Fri, 28-Oct-22 00:10:39 GMT; HttpOnly
Server: cloudflare
CF-RAY: 76078d9ee9ceb503-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash cc2480c64c4f63cc1cc74de4b0bf85be
d484b99944882d492cad47acb167add1f9e4a40f
4f36ac01c3562011656845368b12677ad2eb378fa2a4aa234d0827d151a4412f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121379
Date: Thu, 27 Oct 2022 01:10:39 GMT
Etag: "63590973-1d7"
Expires: Fri, 28 Oct 2022 10:53:38 GMT
Last-Modified: Wed, 26 Oct 2022 10:18:27 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CFLy4mWuoDprP_6ot6Y4CN_ZRPjfNePDlCNIxcqbT7V9DeLCbenujQ==
Age: 2111
ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.131.85200 200 45 kB URL HTTP/1.1 ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.131.85:0
File type HTML document, ASCII text, with very long lines (574)
Hash 9bf6eb9596d62a24522aec7dc0be159b
68686bf7aaea44fbc61f80c0c3ee302dac2d47d8
7b9036c90593a99cc3f2a1980796d447bb301fd61ea96b14522447ef9c73c9b7
GET /widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: ws-na.assoc-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 200
Date: Thu, 27 Oct 2022 01:10:39 GMT
Server: Server
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
p3p: policyref="http://www.amazon.com/w3c/p3p.xml",CP="CAO DSP LAW CUR ADM IVAo IVDo CONo OTPo OUR DELi PUBi OTRi BUS PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA HEA PRE LOC GOV OTC "
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 44564
Vary: User-Agent
Connection: close
Content-Type: text/html;charset=UTF-8
images-na.ssl-images-amazon.com//images/G/01/rcm/160x600.gif
54.230.219.191200 OK 26 kB URL HTTP/2 images-na.ssl-images-amazon.com//images/G/01/rcm/160x600.gif
IP 54.230.219.191:0
File type GIF image data, version 89a, 160 x 600\012- data
Hash b6ed46533669416573eac5b20561e34c
858e890bca84ab071dcae697bc6669f158667993
c6ada18b92c5b860b82e659246ad1053457d5deb186bf2373f8cc34fed99985d
GET //images/G/01/rcm/160x600.gif HTTP/1.1
Host: images-na.ssl-images-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 26205
server: Server
x-amz-ir-id: cc694f2f-f0de-4cc8-98a4-47da47150c62
surrogate-key: x-cache-208 //images/G/01/rcm/160x600
timing-allow-origin: https://www.amazon.com
edge-cache-tag: x-cache-208,//images/G/01/rcm/160x600
access-control-allow-origin: *
last-modified: Tue, 04 Feb 2014 16:08:40 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Wed, 26 Oct 2022 07:17:46 GMT
expires: Thu, 27 Oct 2022 07:17:42 GMT
cache-control: max-age=86400,public
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n2_1NtElL8VpqAvPCZB3X6YA9hSk5Yckw-H0d9yNkd88TSW22LBHNg==
age: 64378
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 841b230e347cffa08b7e9dc15f0225da
87235bc7e0c732a7fd20f404d91ef00a3176e3cf
a208341f74f6b31aff0d0266a725cbf472cfe159d05ef1e99f2875e81bd2fabb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=122825
Date: Thu, 27 Oct 2022 01:10:40 GMT
Etag: "63590819-1d7"
Expires: Fri, 28 Oct 2022 11:17:45 GMT
Last-Modified: Wed, 26 Oct 2022 10:12:41 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C1fkJVHHQV82UgPcsFyaNFp-83wbPiVakDIpVnfVL5ImRpF9CC8pWw==
Age: 3904
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 841b230e347cffa08b7e9dc15f0225da
87235bc7e0c732a7fd20f404d91ef00a3176e3cf
a208341f74f6b31aff0d0266a725cbf472cfe159d05ef1e99f2875e81bd2fabb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=122831
Date: Thu, 27 Oct 2022 01:10:40 GMT
Etag: "63590819-1d7"
Expires: Fri, 28 Oct 2022 11:17:51 GMT
Last-Modified: Wed, 26 Oct 2022 10:12:41 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qScuAJc3NZdAR3RBiykqbW5z2OobRodwSlAXtRHAmeVrduCgPgMwSQ==
Age: 3910
fls-na.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1666833039831&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D
52.94.237.66200 OK 43 B URL HTTP/1.1 fls-na.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1666833039831&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D
IP 52.94.237.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1666833039831&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: 341a1e07-5429-46bb-9cfe-c405cd526b34
Content-Type: image/gif
Content-Length: 43
Date: Thu, 27 Oct 2022 01:10:40 GMT
fls-na.amazon-adsystem.com/1/associates-ads/1/OP/?cb=1666833039832&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D
52.94.237.66200 OK 43 B URL HTTP/1.1 fls-na.amazon-adsystem.com/1/associates-ads/1/OP/?cb=1666833039832&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D
IP 52.94.237.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/?cb=1666833039832&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: 5016ec88-bb36-4c31-93ef-dda6e8c94be7
Content-Type: image/gif
Content-Length: 43
Date: Thu, 27 Oct 2022 01:10:39 GMT
chitika.net/index.html
143.204.55.22200 OK 0 B IP 143.204.55.22:0
GET /index.html HTTP/1.1
Host: chitika.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 23 Feb 2022 00:46:50 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 27 Oct 2022 01:10:37 GMT
etag: W/"4a6dbd4a93e749e7d05a562308c95a32"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1c3kRdwgfoJ1XihnphPkN5iHcfXguT1dFVY_Sn2UCR7rviS4FvfS7g==
age: 27631
X-Firefox-Spdy: h2
farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
143.204.48.75200 OK 0 B URL HTTP/2 farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
IP 143.204.48.75:0
GET /6177/6180570362_3eeacc7e9f_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
date: Mon, 24 Oct 2022 02:31:01 GMT
edge-control: public, max-age=31536000
surrogate-control: public, max-age=31536000
cache-control: public, max-age=31536000
expires: Tue, 24 Oct 2023 02:31:01 GMT
imagewidth: 533
imageheight: 400
last-modified: Tue, 12 Feb 2019 09:33:51 GMT
etag: "ab27c5a1ccf92200d29859be6c15f45b.1"
streaming: false
origintype: X
server: Jubilee
quote: "I'm not a kid anymore, I'm one of you, one of the X-Men. It means more to me than anything in the world."
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
powered-by: Mutation/1.0
hiring: Change the world of photography with us. https://www.flickr.com/jobs/
ourvalues: Deliver Awesome (#3 of 5)
x-request-id: 9df56e7f
x-frame-options: DENY
p3p: CP="This is not a P3P policy. We respect your privacy."
x-env: a=live, b=jubilee, c=21738c41, e=b1cfc1fdb4a90fbd7ed7449176940c7c057c6af1
x-ttfb: 0.1718
x-ttdb-l: 69602
mib: 2
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VfkmHc8DDCXxd1j_7iZw2oY4CbfWk9QmLZy9_4mkj_e5qC8Z_V3Z3A==
age: 254376
X-Firefox-Spdy: h2