roselinlin.com/
54.230.111.65301 Moved Permanently 167 B IP 54.230.111.65:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET / HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 02 Feb 2023 08:20:36 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://roselinlin.com/
X-Cache: Redirect from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4hwCzwTxN3pgdDa3tobEdh0nOeMP2KSEgSGekJmMf7Hhrhs3wSGEJA==
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7477
Expires: Thu, 02 Feb 2023 10:25:13 GMT
Date: Thu, 02 Feb 2023 08:20:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20153
Expires: Thu, 02 Feb 2023 13:56:29 GMT
Date: Thu, 02 Feb 2023 08:20:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3750
Expires: Thu, 02 Feb 2023 09:23:06 GMT
Date: Thu, 02 Feb 2023 08:20:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 07:36:04 GMT
content-type: application/json
age: 2672
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ddcR47rhYCsv69x4cWekQJR9bGZ2HE77cxyxhOkB4dUZtFEjp04RCk0S1y/oMaf3e9/ZHXPq6+0=
x-amz-request-id: G3TD7NT1DR6QY1RK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 07:23:00 GMT
age: 3456
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 9a56dfc93aab0a2f5eacdf7d7a94214b
4d9d653878be526b5e45949e6a8b33498df18dcb
d7a2282c47d5178385e9c41a122030e65af8335f5e97105687d3cfc048b0e79b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:36 GMT
Last-Modified: Thu, 02 Feb 2023 07:45:54 GMT
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: __wHrne_h9iBE9XrFRUgoGqXzPOmsVzVCC7M5EsoYOWmtbdpaDzzaA==
Age: 2082
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:20:36 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/lJfyAvh4bK1674979333.jpg
54.230.111.113200 OK 11 kB URL HTTP/2 roselinlin.com/image/catalog/activity/lJfyAvh4bK1674979333.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b40f9840300397f429883baa645a9e70
572759ede4a52d13f29519b4342191cc27c5d1ba
b6f62e95be8e80a76a4b9a5100026365fbf8578b8005168c7378c6936a7aa7c6
GET /image/catalog/activity/lJfyAvh4bK1674979333.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 10626
date: Sun, 29 Jan 2023 08:04:24 GMT
last-modified: Sun, 29 Jan 2023 08:03:12 GMT
etag: "b40f9840300397f429883baa645a9e70"
cache-control: public, max-age=2592000
x-amz-version-id: qSwiN7qZNuLoiIzTBY4lE_HO4g4CTryo
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3olM8luSmtBZ2ew0wX5DN7B8jtFWwjjG_b8JaZtk8s3GwVwV9v1ovA==
age: 346572
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/gXgXyRuWfq1674979815.jpg
54.230.111.113200 OK 4.4 kB URL HTTP/2 roselinlin.com/image/catalog/activity/gXgXyRuWfq1674979815.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a846ff686c23da61d01457ad2eca501
2f8230a2e501e0aa41f0fe77b6d0df989cb7c809
15c5b16401074a360d66d6b4c776de59cba886aad9dc84b421c3e5c6bfe88f63
GET /image/catalog/activity/gXgXyRuWfq1674979815.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4422
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "1a846ff686c23da61d01457ad2eca501"
cache-control: public, max-age=2592000
x-amz-version-id: Jv6tfVfdLspaQ7ppc6MydlOxcwyOucq2
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wvz32tznKGO_9hY8qA1TxnLSKra-X4TPtL1nxsclvpGE7g9xDs-Qlg==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/hEucgQvPvC1674979822.jpg
54.230.111.113200 OK 2.7 kB URL HTTP/2 roselinlin.com/image/catalog/activity/hEucgQvPvC1674979822.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a06d0bb41d31a8f9810bae491b0e8dad
2c30b971452fbf9766e4af211c5bbba339f20a47
6e5a54be627335a8a1794c77216a27a435e14d1350ffaf65fe77724cb3cbc705
GET /image/catalog/activity/hEucgQvPvC1674979822.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2682
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "a06d0bb41d31a8f9810bae491b0e8dad"
cache-control: public, max-age=2592000
x-amz-version-id: wNqltR7aFElnemPL.rkwsRthrI5wNWGg
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XOUTkLpz5LpfPtXqIBT2IVFEffrMEXO-VhJ4LUeRLKBaqRJFYmbiGQ==
age: 341436
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/intelligent/test-harbor.js?shop=roselinlin.com/
54.230.111.77200 OK 0 B URL HTTP/2 wzstatic1.streamoptim.com/intelligent/test-harbor.js?shop=roselinlin.com/
IP 54.230.111.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /intelligent/test-harbor.js?shop=roselinlin.com/ HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 0
date: Wed, 01 Feb 2023 08:43:10 GMT
last-modified: Thu, 03 Mar 2022 08:15:46 GMT
etag: "62207932-0"
service-worker-allowed: /
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tWO9ulGyhb5bZYkQl58fe5R6llzoLfIJLGFM8U_iWDqFOOPn4Ovcmw==
age: 85046
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/HKfejNaO3g1674979812.jpg
54.230.111.113200 OK 4.0 kB URL HTTP/2 roselinlin.com/image/catalog/activity/HKfejNaO3g1674979812.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ec851720b880cd13bb2aa45ce20fe662
8b53ca598370a33e8e0f3a9d529c30fb5657593b
2a370ba00280ecd5376c4548274a9bb3dfc37497b948b68bed5ba86e6002e242
GET /image/catalog/activity/HKfejNaO3g1674979812.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4028
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "ec851720b880cd13bb2aa45ce20fe662"
cache-control: public, max-age=2592000
x-amz-version-id: .xxXV8H_hQQySZw9rAiwHDUy4feFzggi
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: inGkx20K4GL1145ROAfRCdGheN0ExtFGZ7pWyR0je3pueNHPHaSleA==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/9vPZ2fufPV1674979818.jpg
54.230.111.113200 OK 2.0 kB URL HTTP/2 roselinlin.com/image/catalog/activity/9vPZ2fufPV1674979818.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 55a5a585927b5b7cd24924f443d14854
d12cb6d8cca14ba1d152f9921a2436198b6ebb9d
b48516315e2ced23255269bef8e72b7179a4d19341a8c0999f8f26ae051673fa
GET /image/catalog/activity/9vPZ2fufPV1674979818.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2008
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "55a5a585927b5b7cd24924f443d14854"
cache-control: public, max-age=2592000
x-amz-version-id: qWOvR8Plw1bwgZkEDmheN.Z051CmJIHM
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m2VJvOnLVe0ayld21tgyb9-C36D0gUGiwQYwiEqtP3wzSqpN2ymsOw==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/BAS0S6GdlR1674979830.jpg
54.230.111.113200 OK 3.2 kB URL HTTP/2 roselinlin.com/image/catalog/activity/BAS0S6GdlR1674979830.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 21b8f439c45cc11265c6b20af7c07923
747f617909a7a40a74a644866fd5634ed73ff43a
73a4b188fc70e6743b7b6d68935d04767d563966902faccf7b88e2b9d4e7ce89
GET /image/catalog/activity/BAS0S6GdlR1674979830.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3212
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "21b8f439c45cc11265c6b20af7c07923"
cache-control: public, max-age=2592000
x-amz-version-id: Z7yZ6V86KOKZJmLLVsReiceCk32Akpjv
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kzD_4jARzHCpFlawOZ7h7e-6h9eZm31S1B_ZzlA7Je494TUNHdj69w==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/YisisyIWXM1674979832.jpg
54.230.111.113200 OK 2.0 kB URL HTTP/2 roselinlin.com/image/catalog/activity/YisisyIWXM1674979832.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3bb4d38901f00cb4f873498824ace13e
58b2aede98b8773644c9c2cc707ed1985d5acbf5
8092e7d20b873d19f2c3a09f725ddf7f6fe454c5e460c956a84f449be88cb5a8
GET /image/catalog/activity/YisisyIWXM1674979832.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2000
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "3bb4d38901f00cb4f873498824ace13e"
cache-control: public, max-age=2592000
x-amz-version-id: KUSSrZkET8REIktVpWAuGIZ41i6C8fbt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BwAeJezThcC8uLOGa88DFqd4cjIBqsUjHtPQ3p9oMpFnbES71of6ZA==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/f1PfToUqAJ1674979839.jpg
54.230.111.113200 OK 2.0 kB URL HTTP/2 roselinlin.com/image/catalog/activity/f1PfToUqAJ1674979839.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e655f0254cdc769feedbe9144a4c7f1
09d403c062e0535c46c7a3634401da7f6ade6200
99029bcfd916052906f0551dd0792c64637bf5ec4e8f4f4afe1385e3ee63ab5f
GET /image/catalog/activity/f1PfToUqAJ1674979839.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1982
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "8e655f0254cdc769feedbe9144a4c7f1"
cache-control: public, max-age=2592000
x-amz-version-id: NzeaBKIRvkhQgoeq6bgnnJ7NhJjOhrhH
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: snWpRzvK4GPYqAM64-rf4UPeGMewGzuFz1TBN5VjrzPAlEKDv9F4gg==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/lJJurL21GQ1674979823.jpg
54.230.111.113200 OK 2.8 kB URL HTTP/2 roselinlin.com/image/catalog/activity/lJJurL21GQ1674979823.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 466dc2d3b139e5dd56b2eb85455e9564
869fc8a64f5a4c9fe84b618f7576d3c3c9da77ff
bd3dd807d3b4fcc7a8664d10e293abb986f417fd0271728fae51989e6b38ea1a
GET /image/catalog/activity/lJJurL21GQ1674979823.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2838
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "466dc2d3b139e5dd56b2eb85455e9564"
cache-control: public, max-age=2592000
x-amz-version-id: XEbXed1hzmZFZJOU47VC6are.tN1531U
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RwuX-a4Pr0EDc6e1CAbpyFEgRnZJn0ND_c60Mjmxm0Kb-UbdTzmjQQ==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/ZZBzL6tDFA1658199335.png
54.230.111.113200 OK 12 kB URL HTTP/2 roselinlin.com/image/catalog/activity/ZZBzL6tDFA1658199335.png
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a0019eb6b1f6a291fe68066a5fea1c8a
35610dcdb3f96bf5c42f2f6c0c24bec70e07e74b
76985b50d537eef9f40a1ac5749fea1b8530f9cfe3c42801ef30436b5fa0d89f
GET /image/catalog/activity/ZZBzL6tDFA1658199335.png HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 11890
date: Sun, 22 Jan 2023 08:01:12 GMT
last-modified: Tue, 19 Jul 2022 02:55:38 GMT
etag: "a0019eb6b1f6a291fe68066a5fea1c8a"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fB5_OWzC2Coe1FlEwUA-OWoUB9Vq7sQFD2UYM4zGfclEYzCgvMQtAA==
age: 951565
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/z78MnGmMxT1674980249.jpg
54.230.111.113200 OK 50 kB URL HTTP/2 roselinlin.com/image/catalog/activity/z78MnGmMxT1674980249.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1750x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ff93a4fab4bc41981396258d440f9045
80c659b3d9b6736fe5b6f150d2d5b090a6550a0f
dbf3c33e076b7c540920ed7b248e8cc9b5b4f17331530295cca16ec411625fbc
GET /image/catalog/activity/z78MnGmMxT1674980249.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 49938
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:22:12 GMT
etag: "ff93a4fab4bc41981396258d440f9045"
cache-control: public, max-age=2592000
x-amz-version-id: ev7awVUIuVniE0qCcqH2fKy6630jsfT_
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ec_8LEEVYsSpTTq7QjnLuxUxHLPzHi94xRo4x-SWWkx-ON3koXEh4Q==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/B6rRN6fN7S1674979827.jpg
54.230.111.113200 OK 1.8 kB URL HTTP/2 roselinlin.com/image/catalog/activity/B6rRN6fN7S1674979827.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b568949583ed09c63e8d8c83e19de130
4307027cf0e2a39dbc2df46d7cdc8bb6c87b521e
8b892f260cc2e6ce0e85ce6a5d9dc8228b098c0a0e7e0af5c3b0d9e6d27f7294
GET /image/catalog/activity/B6rRN6fN7S1674979827.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1796
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "b568949583ed09c63e8d8c83e19de130"
cache-control: public, max-age=2592000
x-amz-version-id: jn59FOiGSiecG84dINQSFS_t8FfKjI_b
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pgUcqdAhTp2YQaO5Y_t2RR_BVRLPGInBg3S-dXh5MmDQfRkSdM4rBg==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/TijpHgyjmg1674979993.jpg
54.230.111.113200 OK 22 kB URL HTTP/2 roselinlin.com/image/catalog/activity/TijpHgyjmg1674979993.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 575x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc0dbca60729c120241535901f20da6f
a0582e0fb001d401abb12dbce7d4e2870443e35d
9f366d77686f305b5c8606e6418d32ffb5790ab60a0128aaeb28a4d229e2cc14
GET /image/catalog/activity/TijpHgyjmg1674979993.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 21872
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:13:46 GMT
etag: "cc0dbca60729c120241535901f20da6f"
cache-control: public, max-age=2592000
x-amz-version-id: opkDawVvdAI9y7KPpX.DcTW1Dwb0bdMY
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0aBJN3JRWRAYsdJdzhAZr5mbbBLxdRhOYGlNRgD23ReGERaRYYfs2Q==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/9kh00UVqy11674979991.jpg
54.230.111.113200 OK 24 kB URL HTTP/2 roselinlin.com/image/catalog/activity/9kh00UVqy11674979991.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 575x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e82855f99e62bc747cdc84afe983aed
edc54b58d90904fc630b897ad01227623d6901df
4ddaad0531ea6d3e1c0c90390e88b553aa527056daaf8a59da21933de6284b3f
GET /image/catalog/activity/9kh00UVqy11674979991.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24244
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:13:46 GMT
etag: "8e82855f99e62bc747cdc84afe983aed"
cache-control: public, max-age=2592000
x-amz-version-id: J1BOhZMYCD5kKY1ZsZz7DnksHvedcqN9
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bZV6XoFcEHYmZTiF8PDgoKqLXA1OcXH-tn3LZJFTWazORQb4s7fe7A==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/C3zmHuQ8cM1674979837.jpg
54.230.111.113200 OK 3.1 kB URL HTTP/2 roselinlin.com/image/catalog/activity/C3zmHuQ8cM1674979837.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 350x147, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9c2e71f45d04d88e6b9c4484554b7c1
129aa9b2a2f223279f9dcdf52582a8b84e0f0c52
773dd36437393e9e16f5a6a1e79c4f61fe19302364e40df4f54de2d3fb1769e3
GET /image/catalog/activity/C3zmHuQ8cM1674979837.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3100
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "a9c2e71f45d04d88e6b9c4484554b7c1"
cache-control: public, max-age=2592000
x-amz-version-id: qwSCBVv9AF6EQTCn5emAaR9dyuhjx1Ys
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SJJSpjdNY1RtweTsUv_1mlKdeyS_dEDBRDir3nweqzt2WplpSTbFxg==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/OB1jB3DArc1674979995.jpg
54.230.111.113200 OK 24 kB URL HTTP/2 roselinlin.com/image/catalog/activity/OB1jB3DArc1674979995.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 575x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e07c5de03eb5e55d69b3eacb2582e564
9b1f46bb79b4e1324273469b9febef79a602fc60
8807b01deb01ac3b1849ae13a5b5c95274e37552552f08a223b253c9035bd4cc
GET /image/catalog/activity/OB1jB3DArc1674979995.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 24454
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:13:46 GMT
etag: "e07c5de03eb5e55d69b3eacb2582e564"
cache-control: public, max-age=2592000
x-amz-version-id: AFLHXOLnfz0cQw_KAzZ8MI02owxHS6s0
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zMDonH9Z8VWDlqsEtxU_MYP2OPQn3SuiEMwp7WzoFCXvzmhbm0W-9g==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/aX0gbtEMD21674980194.jpg
54.230.111.113200 OK 90 kB URL HTTP/2 roselinlin.com/image/catalog/activity/aX0gbtEMD21674980194.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1750x500, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c82ba84e2bb3932c357a5c87e9a27c27
9c85ab1273a7217136b2bfc8af45cc2feedd1180
58bbed2435937c7807757ce62c1de77c0b2fd24676bd245a61ff92a9c512461c
GET /image/catalog/activity/aX0gbtEMD21674980194.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 89964
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:22:12 GMT
etag: "c82ba84e2bb3932c357a5c87e9a27c27"
cache-control: public, max-age=2592000
x-amz-version-id: bquHRpIjT6_DcxTJKZFEX6uqE7EdYxsS
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XadilkyTceq8B4Lk1PFk5BTZCTQ78YuYGS65C8Y5ZJmgaYJ-p9bHjQ==
age: 341436
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/zE69X3yHYR1674980483.jpg
54.230.111.113200 OK 22 kB URL HTTP/2 roselinlin.com/image/catalog/activity/zE69X3yHYR1674980483.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1750x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b04b0ce7f833b55eabd3d6634e4066b0
85308001566e7455dee6e2e11b5a28a79068a2ec
b1f957d56311e0bba2ebe5ec51f1be0db9c525bf73d2898f74605213eeb12764
GET /image/catalog/activity/zE69X3yHYR1674980483.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22406
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:22:13 GMT
etag: "b04b0ce7f833b55eabd3d6634e4066b0"
cache-control: public, max-age=2592000
x-amz-version-id: BHSXScmTvC6z1VHCEKLyJWXF0oqHjmcD
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qUHGDvDVEav750cafS66hlY20qyTDw_E1kS4Ftl7_zoh8M7vMLcC6w==
age: 341436
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d94d1a4dc82ce1c6019c4390176fc413
e549396f59c6728aefafe2261c11a14e76247215
f80c6333533a245e9ecd955747cfd05b43e753780fa9e9e66887bccb75b7ef7d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:36 GMT
Last-Modified: Thu, 02 Feb 2023 07:24:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
roselinlin.com/image/catalog/activity/CTArAViop41674980534.jpg
54.230.111.113200 OK 27 kB URL HTTP/2 roselinlin.com/image/catalog/activity/CTArAViop41674980534.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1750x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bcc45a2b2bb8e11c06f35c2bf1338212
a2c0f0dd00f5b40ab3bc409971e268aa178d5f49
df77e60ac8f0350f3aa5a141c2ba97f116b89cb5478f19ea537cccc2bb136219
GET /image/catalog/activity/CTArAViop41674980534.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 26998
date: Sun, 29 Jan 2023 09:30:01 GMT
last-modified: Sun, 29 Jan 2023 08:22:30 GMT
etag: "bcc45a2b2bb8e11c06f35c2bf1338212"
cache-control: public, max-age=2592000
x-amz-version-id: dUWWgaZHbOl675MO1MX3goXYSs9TVA6p
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LeJ8y-gWKP_nOpMP6nHXmzjHbpYHb00iTPbx4iS8pfmWlKGSiZRmDw==
age: 341436
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-761876961
172.217.21.168200 OK 68 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-761876961
IP 172.217.21.168:0
File type ASCII text, with very long lines (6682)
Hash 04565b9dc6229f3807af6f948b2f5f07
48e8f5a9972198ebd448a4a6390b96420a152b66
ba92f6c461116ba45a92e550074a96ec4be51ffdb3a8cabfcff7cb64775d7128
GET /gtag/js?id=AW-761876961 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 08:20:37 GMT
expires: Thu, 02 Feb 2023 08:20:37 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67576
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
roselinlin.com/
54.230.111.113200 OK 297 kB IP 54.230.111.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39009)
Size 297 kB (297264 bytes)
Hash f559b275a6c31de2cd48b26bd54b8e6b
1545e366e0f99f1507dbaf8e3cc639eda1e33135
981d3be08e12eca071a408ea9f880fec258c76b779c0687cfe442b04aaa82d5f
GET / HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 297264
date: Thu, 02 Feb 2023 08:20:36 GMT
server: openresty
x-powered-by: Next.js
x-next-boost-status: hit
x-next-boost-key: Y21hbGwlM0Fyb3NlbGlubGluLmNvbS0lMkY=
set-cookie: currency=USD; Path=/; SameSite=Lax
language=5; Path=/; SameSite=Lax
language-code=en; Path=/; SameSite=Lax
ignore_ip_detect=1; Path=/; Expires=Fri, 03 Feb 2023 08:20:28 GMT; SameSite=Lax
etag: "3ba45a-YWrU/qWVuvvC/S9zEJ66SmowgT4"
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ECVdLlTeiwa4RdAoEooJEuEJ8xQoK8jk3mhmiMUi031KyVOgM26NFw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 07:41:43 GMT
age: 2334
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash ca5016d98dc3985244e8fec7c014d001
3ea32e11d2830c5f1edc66553712ee38c0a23346
0b9d1f3fd0c717b15b0ffab18626436e9fc79935136a812320c35c16fb7ed487
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101780
Date: Thu, 02 Feb 2023 08:20:37 GMT
Etag: "63da493a-1d7"
Expires: Fri, 03 Feb 2023 12:36:57 GMT
Last-Modified: Wed, 01 Feb 2023 11:12:58 GMT
Server: ECS (dcb/7F3C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Wt6QtA3gAxVmUbXcokHivBgnvkkYMP6ypjRUYxr-9T2gMs39lCDdWg==
Age: 5039
js.ptengine.com/29s8mlic.js
143.204.55.9200 OK 92 kB URL HTTP/2 js.ptengine.com/29s8mlic.js
IP 143.204.55.9:0
Hash f9719a1402d05d0506673e74a3cf019f
ac67c97b11dc01c9bf15f8a565a08b4682041eea
c40d6efca5c04cf6653dbaeab17e0f3f607430d7fb72a462bdace0809ab24f9f
GET /29s8mlic.js HTTP/1.1
Host: js.ptengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Wed, 01 Feb 2023 15:01:26 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 08:19:08 GMT
cache-control: public, max-age=300
etag: W/"743e78208a9ef11a9f4b54ec89979f6b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: N0aef5rbz_Gtu-MvvJZrqPF7aOrjHwyngvnwh9Qs7V1tKRNb9P6uzA==
age: 89
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 16dd0f4fd355cbb105a0f14b0487c466
55af85a5f8ce5e9831574d3cd7bb0b58b4eb3354
56e8f290444a477c4241fea92565c1c32fab07779fbf162f8c569ee5b5b3da09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128918
Date: Thu, 02 Feb 2023 08:20:37 GMT
Etag: "63dab409-1d7"
Expires: Fri, 03 Feb 2023 20:09:15 GMT
Last-Modified: Wed, 01 Feb 2023 18:48:41 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xGAirQQwZjb-gZ6obzy4EgXhUiT5d6fbaXspz8vNqvB9FtWhD84oiQ==
Age: 4835
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_middlewareManifest.js
143.204.55.3200 OK 92 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_middlewareManifest.js
IP 143.204.55.3:0
File type ASCII text, with no line terminators
Hash 7c3f7e060745668041278118c0bb3d6d
e639f56695b3cc30d78dce7a0084aa8299a1311a
de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a
GET /prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_middlewareManifest.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 92
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: tkHqjNj3Lszv1oJbtGpRBYaxCu7eTKdg
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: "7c3f7e060745668041278118c0bb3d6d"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2bTVmD-ReQrMVVygdF1y7KGCKY-ur2UOAaBUt4zey64vz6ByR509Hw==
age: 96524
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_ssgManifest.js
143.204.55.3200 OK 77 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_ssgManifest.js
IP 143.204.55.3:0
File type ASCII text, with no line terminators
Hash b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
GET /prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_ssgManifest.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 77
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: 5tS611uh6iPYKs.YteF0HrkGy9bXkIrP
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: "b6652df95db52feb4daf4eca35380933"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sRal9Nz5cH_ggN7D6ZEE17VCnmOqrqnkrlrQR_OWB3aey5nSBSsRlQ==
age: 63366
vary: Origin
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UlcoSm+WOfbqoZ2L75PxfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6iIWD9uwtlHt1q4qozbX5rWEK9Y=
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 16dd0f4fd355cbb105a0f14b0487c466
55af85a5f8ce5e9831574d3cd7bb0b58b4eb3354
56e8f290444a477c4241fea92565c1c32fab07779fbf162f8c569ee5b5b3da09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128745
Date: Thu, 02 Feb 2023 08:20:37 GMT
Etag: "63dab409-1d7"
Expires: Fri, 03 Feb 2023 20:06:22 GMT
Last-Modified: Wed, 01 Feb 2023 18:48:41 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 67uOF1GvjyoqiwV_12BaYxj8_JKQjcHVf_T4mD7TP7ud3l9fDCTz8Q==
Age: 4662
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7adc8073dfb67f70eb89470e160c3f90
8d34934d8ac8f61752d753f0c935f54264ebb2f9
6df88fb509cdd10b01ecc873f7ed817aa8b9f5664fa8c78c1ab6f2b41f926b4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141027
Date: Thu, 02 Feb 2023 08:20:37 GMT
Etag: "63dade2f-1d7"
Expires: Fri, 03 Feb 2023 23:31:04 GMT
Last-Modified: Wed, 01 Feb 2023 21:48:31 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CIBeV1g8JE74291n0A0NfT9IXGsAS4QCHsHcE9EVP1n37da7mYiGCg==
Age: 6153
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7adc8073dfb67f70eb89470e160c3f90
8d34934d8ac8f61752d753f0c935f54264ebb2f9
6df88fb509cdd10b01ecc873f7ed817aa8b9f5664fa8c78c1ab6f2b41f926b4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:37 GMT
Last-Modified: Thu, 02 Feb 2023 06:49:24 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vKQGy8ygtC5892dSr4rqScQw0o_C2oibecwyqC67CdMuXJzHj_fw8w==
Age: 5473
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7adc8073dfb67f70eb89470e160c3f90
8d34934d8ac8f61752d753f0c935f54264ebb2f9
6df88fb509cdd10b01ecc873f7ed817aa8b9f5664fa8c78c1ab6f2b41f926b4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:37 GMT
Etag: "63dade2f-1d7"
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HdCUsj0zDmYAgP5p9waOORHhfjCYlk0s5fc5g-RKi1f6qu7teH1OcA==
cmall-static-resource.s3.us-west-2.amazonaws.com/libs/cmall-widget-customer-service-chat/lib/style.css
52.218.246.249200 OK 6.8 kB URL HTTP/1.1 cmall-static-resource.s3.us-west-2.amazonaws.com/libs/cmall-widget-customer-service-chat/lib/style.css
IP 52.218.246.249:0
File type ASCII text, with very long lines (6754)
Hash 713c7d6c2981c973480afc3ac90a6639
bde4e5443464fb671b9c94f6015a79acb36b0ce9
0239d6ae941268f01ac4f100999e01fc9b4cedfa69edd90e93b74fe81f37e4d4
GET /libs/cmall-widget-customer-service-chat/lib/style.css HTTP/1.1
Host: cmall-static-resource.s3.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: bNnYbAe+IY46AQIlxnNXS8341G73HjosOzZg84rCmb5gX7/9pIO6lPBnwO+m76rkLQNcXMTp4b0=
x-amz-request-id: RF2J8SR28AVW85PR
Date: Thu, 02 Feb 2023 08:20:38 GMT
Last-Modified: Thu, 15 Dec 2022 10:14:54 GMT
ETag: "713c7d6c2981c973480afc3ac90a6639"
x-amz-version-id: prvjlSDwg3hGrogLIZ0hlkSkMnzODMbl
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 6755
cdn.livechatinc.com/tracking.js
26 kB URL cdn.livechatinc.com/tracking.js
IP :0
Hash 349345e8baec106d74b4eb289b8d2b0b
5c4a724241c19e2de9063da2c3dc0c4a3366ea7a
a69d354aa4044e3786dc89e3a46f415276b8657f0caa8c8355b12558cfde8695
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
analytics.webgains.io/clk.min.js
54.230.111.60200 OK 109 kB URL HTTP/2 analytics.webgains.io/clk.min.js
IP 54.230.111.60:0
Size 109 kB (109220 bytes)
Hash e1bb8ca30967624f3bcf016548b49d1c
ad6892f37dd4c98e689d9ce1e00ff58b8abd3bac
59e8d539af9223bf4f4383b05f42d7cdfd8dcbbb6bdbf90cfb50bacb8c3667dd
GET /clk.min.js HTTP/1.1
Host: analytics.webgains.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 00:28:25 GMT
last-modified: Fri, 09 Dec 2022 10:53:01 GMT
etag: W/"76730e56c06e1f48f55e0878d3287e62"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HWfDeB9eZ85Oq8pivsN0CqTFHvrCfTamhlnuhupEgbutbdv4mn-Hfg==
age: 28333
X-Firefox-Spdy: h2
cmall-static-resource.s3.us-west-2.amazonaws.com/libs/cmall-widget-customer-service-chat/lib/index.umd.js
52.218.246.249200 OK 36 kB URL HTTP/1.1 cmall-static-resource.s3.us-west-2.amazonaws.com/libs/cmall-widget-customer-service-chat/lib/index.umd.js
IP 52.218.246.249:0
File type ASCII text, with very long lines (35449)
Hash 4052599e3e751a74db254540bf9d057b
d304d57eeb3f2bbde3a46654175f86d6c37cc2e0
ca6450bbf016581e044902595a112ec62a8d9d4a2b6ff60991845026ab419106
GET /libs/cmall-widget-customer-service-chat/lib/index.umd.js HTTP/1.1
Host: cmall-static-resource.s3.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: J7XrPv7gRIvctSOndgOrzQCcVUjOc0H8NIPjBIccJdVqNFOH9Oo2uHW417V3o3j2f6wyoyTDV+8=
x-amz-request-id: RF2VDQ395STBB089
Date: Thu, 02 Feb 2023 08:20:38 GMT
Last-Modified: Thu, 15 Dec 2022 10:14:54 GMT
ETag: "4052599e3e751a74db254540bf9d057b"
x-amz-version-id: 7nAcCYTUfHN5.WcNpOSbqig.LRglPBWk
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 35450
roselinlin.com/image/catalog/activity/6iP5SmNjkr1674979808.jpg
54.230.111.113200 OK 6.2 kB URL HTTP/2 roselinlin.com/image/catalog/activity/6iP5SmNjkr1674979808.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1750x86, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d6efa37646a6bb40506a2b8b5236e8c6
21e8a3cdeee8869464b5168622f97d0499147607
c5c7a66464d5064e1e649c341288d28f3283fbbc3727f75061446de6158ffc6a
GET /image/catalog/activity/6iP5SmNjkr1674979808.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6172
date: Thu, 02 Feb 2023 08:20:39 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "d6efa37646a6bb40506a2b8b5236e8c6"
cache-control: public, max-age=2592000
x-amz-version-id: xLuMn8K0Y6.CPRv8gOyw5uxjz_MGx7qf
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aHqgO4KQAMHZZPoSYPXy9RZRi3ACrxv9ZXkM7J7UYBLv6pb9_by0rQ==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash be60a5a826a6628e9661215a31d63e1b
7c8c6f28544dd493b0dd5dd7e681939dcc2d0369
b66bc58b7eda4b59d33dbdadd1eb1cc6c431388a5736cb020bb32f57bf8d3ed4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:39:49 GMT
ETag: "7c8c6f28544dd493b0dd5dd7e681939dcc2d0369"
Last-Modified: Thu, 02 Feb 2023 04:39:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1653
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931823b18ef0b02-OSL
roselinlin.com/image/catalog/activity/s3QedYR7GB1674979707.jpg
54.230.111.113200 OK 122 kB URL HTTP/2 roselinlin.com/image/catalog/activity/s3QedYR7GB1674979707.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x680, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 122 kB (121594 bytes)
Hash 1d04d12137e1112e6b6ba64d8af0cbcd
f1dc381e60ed269e9c959ec4e0d36396e93e6388
c91844ff2846b82173bbf38332618483987c03c0b874dc61aa8262ad6b182bf0
GET /image/catalog/activity/s3QedYR7GB1674979707.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 121594
date: Thu, 02 Feb 2023 08:20:39 GMT
last-modified: Sun, 29 Jan 2023 08:14:05 GMT
etag: "1d04d12137e1112e6b6ba64d8af0cbcd"
cache-control: public, max-age=2592000
x-amz-version-id: nYrdVWu4Mua1kB6NZhmtMYs4nT5dP8Re
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aTOkD9t6WLZB7SvGgRscCygT4feeBsz1d8_R8KcaFHQshIBXk6pyWg==
X-Firefox-Spdy: h2
collect.ptengine.jp/pn
45.43.60.167204 No Content 0 B IP 45.43.60.167:0
ASN #135377 UCLOUD INFORMATION TECHNOLOGY HK LIMITED
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pn HTTP/1.1
Host: collect.ptengine.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 642
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Thu, 02 Feb 2023 08:20:38 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4940
Expires: Thu, 02 Feb 2023 09:42:58 GMT
Date: Thu, 02 Feb 2023 08:20:38 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4940
Expires: Thu, 02 Feb 2023 09:42:58 GMT
Date: Thu, 02 Feb 2023 08:20:38 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4940
Expires: Thu, 02 Feb 2023 09:42:58 GMT
Date: Thu, 02 Feb 2023 08:20:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 37203
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d807a49-adb3-465b-bdcf-f7b8f276af86.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d807a49-adb3-465b-bdcf-f7b8f276af86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a62a4f48037f1f84b8fd03347daf9ab9
e67e666749b07a0d343d1d0f74d59155ba25d687
5a9ebe1bec39e5d69b20c9747f32c85be906cddba92501052d54dc9a37d3c52d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d807a49-adb3-465b-bdcf-f7b8f276af86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2874
x-amzn-requestid: 0102a009-be1f-4890-97db-674ebd79e449
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frep5EBOoAMFgiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade3f-371af67b2cc767ed35cb81d6;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MwPmKlNm1j7hqbrlEgxAlfu0gQQNhnkrHnL-YABUr7P8_oFaoFDgFA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:37 GMT
age: 37201
etag: "e67e666749b07a0d343d1d0f74d59155ba25d687"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 35940
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif
34.120.237.76200 OK 45 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash 54d9e8efcff3cc7fa309dc41e89c2a26
fa1cd58cf243d18f360e4394a02bee994e738c0a
4dd37eec5c27d911c3193c7ba08c10a8ec2526eac48c9b6a2a4ec49502cf189a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 44860
x-amzn-requestid: 318e5c01-c024-4c5e-8422-e6cba20b8dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaTEeBoAMFesA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-4b775cdc759aac341f2aff9a;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vmPt8MLY6RsliPiMKcbnJ6jGjfuc8LXspyaqEIQiExnxnPOXIWDhqA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:19:04 GMT
age: 3694
etag: "fa1cd58cf243d18f360e4394a02bee994e738c0a"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 35940
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c0980cc80018f2218e1a5a7336a4bcc
461e33619154423dbbf49407a80b70ade9078593
4375676d6ce36b3ec3923eefe2007bb96d96135dae10103a886c24fc9063fce9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3541
x-amzn-requestid: f65e4be6-20ff-4f14-a722-d6c2c4631a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5YHQqoAMFeBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6f-5f9183ed1c2cb640249c2b09;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5wf_aWTm28747VwFTo8NM2HOVsMWtMBYIAY9502vCrH7GcOmKb0zsg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 37367
etag: "461e33619154423dbbf49407a80b70ade9078593"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
harbor-hyperf.harborcdn.com/collect-data/collectData.modern.js
54.230.111.126200 OK 37 kB URL HTTP/2 harbor-hyperf.harborcdn.com/collect-data/collectData.modern.js
IP 54.230.111.126:0
Hash 802f4bd76b7a9164f6ea7aa9d935672e
2f333c4ffe83812f35373345950b0d69f8915ebc
17a6960411ff7e418f70c9ca7e7cf5ae821bba233a8ffaa8e139aef0f4e36c82
GET /collect-data/collectData.modern.js HTTP/1.1
Host: harbor-hyperf.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 08:20:39 GMT
server: nginx/1.21.0
last-modified: Wed, 01 Feb 2023 11:08:05 GMT
etag: W/"63da4815-15e46"
cache-control: public, max-age=1800
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: *
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f0U3Y-pMUfldM3JzvlPRV8nzKXMiMy-WzMSVDoVFy_g2C5AAhj8A_g==
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/_app-5686f5b2353cf0b6.js
143.204.55.3200 OK 239 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/_app-5686f5b2353cf0b6.js
IP 143.204.55.3:0
Size 239 kB (238574 bytes)
Hash 22fcac244ca1666ef187b9c195b8aa9a
37b494a8d56c4b4a157b1133f8037226d0734768
169103f9426ec4f93338c72cc6a575e91df45d13dfb97c281f6727dd04ffa345
GET /prod/cmall-front/_next/static/chunks/pages/_app-5686f5b2353cf0b6.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: JKJik.qra0m8flUCIdRYRaEmsOhamQhV
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 19:45:48 GMT
etag: W/"7bde561877c61c809b02e0da41007795"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F6F_XY5tbT9LhJZP6l_aJrd4H60_9T7kvxpR47vStCmKmmNj4nItWA==
age: 45290
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/123e19f2-016a067808d88b3a.js
143.204.55.3200 OK 161 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/123e19f2-016a067808d88b3a.js
IP 143.204.55.3:0
Size 161 kB (160579 bytes)
Hash 8bac9f6e6103694e131ba02a3a49cc7c
6e217d4803f8140bc09b8051e9cced9426af2bc5
0a28074c18d452ba9499cba09b15f58afc6ead2bd1634ef15c254e1ba5138a47
GET /prod/cmall-front/_next/static/chunks/123e19f2-016a067808d88b3a.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: A8Oy9crZpy18dK_KwDQ4dEfUGg.nmvNk
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"02531b9571b73e760c94fcefbc4c322c"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _DOtxaMAtQZiJBkcOZP8sJ4IOFxevenVvZPbrqcBWa-zAdIh7JKM3Q==
age: 125537
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/s58SM5LXSH1659939868.jpg
54.230.111.113200 OK 40 kB URL HTTP/2 roselinlin.com/image/catalog/activity/s58SM5LXSH1659939868.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fd448747614f2c7f5e17a5b15f41a94d
5b9914c1c3590c5e7327da7d4c155d6c32bf93c6
2e30502c89e2ab18e99677acb55b4b72d98ccf987b1610304c875eaa289dc2fd
GET /image/catalog/activity/s58SM5LXSH1659939868.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39998
date: Mon, 23 Jan 2023 14:04:44 GMT
last-modified: Mon, 08 Aug 2022 06:41:49 GMT
etag: "fd448747614f2c7f5e17a5b15f41a94d"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MipnXJn_U2bhitjqyDp1cAWKPYhZbKq_65YNOYwJJshUv24uujST-A==
age: 843357
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/main-c9709590e8ed2208.js
143.204.55.3200 OK 81 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/main-c9709590e8ed2208.js
IP 143.204.55.3:0
Hash 591b2996aa8b7d801c460e039e6496dd
f84b275caf18bd76d48ddf5e7dc17720831b7cef
74aef884ff40b09c131554c7f0ebd674226720958d44f38bfa8cc9b04fef2295
GET /prod/cmall-front/_next/static/chunks/main-c9709590e8ed2208.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: rcZOB.YHxwhz6RsRDpSh44F2SFOsEosp
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"55fc2974574923a6d06d825e14d8b6e8"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MmECI0Q447giuciLO0p9oiJYl8CHUyg0JbS9h1Vec4JkL7WXrGeDcA==
age: 140447
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css
143.204.55.3200 OK 57 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css
IP 143.204.55.3:0
Hash bdf9452d12caa7ccf59d7c26e1084a5b
9812868d4c99b200cf4d0a99b6f62a7cbac3b3c9
9cc9204b0573283ec4fc614877210c6309e80e913f2d177baf878a40884a3d47
GET /prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: gnd5aq5KDYomHbbw1O_8r7BBfBk3srx1
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 07:47:56 GMT
etag: W/"753aed8c8418ed850847e53242a5e180"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RmqDP1YwimWl4_Z_AAZqVZqoUrjQse3jWPEC_qZgYTrJLq2NWiuIKg==
age: 35125
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/nmNohfz0oy1659940006.jpg
54.230.111.113200 OK 47 kB URL HTTP/2 roselinlin.com/image/catalog/activity/nmNohfz0oy1659940006.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cc09ec28f543ae3c194c829687e4c0d2
3eb7c0302d165fe23a334c8f435a0f4160fb0144
4dde51c3c4a9294f89d70293dfa105688004ecd6973d2192bdaf209e629d06e5
GET /image/catalog/activity/nmNohfz0oy1659940006.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 47058
date: Thu, 19 Jan 2023 07:39:34 GMT
last-modified: Mon, 08 Aug 2022 06:36:41 GMT
etag: "cc09ec28f543ae3c194c829687e4c0d2"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DJTSYpflixBrZkIxxy3LMCis7MmvAxFJ2aolAkuvmTJVRjQZwim-UA==
age: 1212067
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/gFso39ny5O1659940384.jpg
54.230.111.113200 OK 44 kB URL HTTP/2 roselinlin.com/image/catalog/activity/gFso39ny5O1659940384.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8b0e280496471556d24112c27d68227d
2e47b7af3055b5ed11e729d82a11c448973d187e
be032ba195410fd4731865d198342a65d3fcf2ccc3d2027068e18ea1138b5f3f
GET /image/catalog/activity/gFso39ny5O1659940384.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 44044
date: Mon, 16 Jan 2023 05:29:11 GMT
last-modified: Mon, 08 Aug 2022 06:36:40 GMT
etag: "8b0e280496471556d24112c27d68227d"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cDurg-OwZdiezA3xC-0YWYDI1Nuy7tRX5CNNg66SwZQl4Wfrw-GGvw==
age: 1479090
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/ade1afba908d1ad5.css
143.204.55.3200 OK 37 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/ade1afba908d1ad5.css
IP 143.204.55.3:0
Hash dd07fae65360dbc338eb63e400297f01
a4a9c5552bacd903232a565e3f5ad73a06ced51b
a3022fc89580e3d93bd470594b1c144c83c182973d4127f95ef5128eeed32019
GET /prod/cmall-front/_next/static/css/ade1afba908d1ad5.css HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: fNePGb35X38aF4_Tsb0xtm4agS2HIdw3
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"3416c77f69f5867c55da88233e90b5b4"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Xnw8CF1QrDRVp04LIk5Cel5tE0lTwF1F1MY0RkLKv_0ORMlXHaUrNQ==
age: 96399
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/7k2bhYG79q1659940036.jpg
54.230.111.113200 OK 40 kB URL HTTP/2 roselinlin.com/image/catalog/activity/7k2bhYG79q1659940036.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 408fcd00f51c503a664b3e16e41944cf
187545fd661884a52ae83d2ddf32a7b242541530
28a3c5425ce493f6a8c4af7a1b77c113ad91cba5db8535a71a24e6ce5b96c223
GET /image/catalog/activity/7k2bhYG79q1659940036.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 40548
date: Mon, 16 Jan 2023 05:29:11 GMT
last-modified: Mon, 08 Aug 2022 06:36:41 GMT
etag: "408fcd00f51c503a664b3e16e41944cf"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MtLt0ix-phL3PqYti3irswppNKGddrgCqmo7n5IHO4FagVnOh-uzlA==
age: 1479090
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/bra42Ip5hu1659940232.jpg
54.230.111.113200 OK 32 kB URL HTTP/2 roselinlin.com/image/catalog/activity/bra42Ip5hu1659940232.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 12662b080cc5629d4998bfa9fb3e97fb
329a0680b6f1fd6abcced244137a326ae938f31f
1289bc9a479db892752fb10ec607308d3e8a8b8efeb73b33497594a785615bb0
GET /image/catalog/activity/bra42Ip5hu1659940232.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 31850
date: Sat, 14 Jan 2023 06:46:21 GMT
last-modified: Mon, 08 Aug 2022 06:36:40 GMT
etag: "12662b080cc5629d4998bfa9fb3e97fb"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: okKvNcdAh8CvB1AVa4MrjEWIRvpSHjRNq4w0AWcSROAUzImx5MnkMg==
age: 1647260
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/ceZ8m2nA3O1659940241.jpg
54.230.111.113200 OK 26 kB URL HTTP/2 roselinlin.com/image/catalog/activity/ceZ8m2nA3O1659940241.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d64ba4832daf29fa47d5c6d673489f2c
e1a7aab73a8390fe46db14c2b4e92b570979d4c5
56ab1ce6473d461b80d713029970c599f8057ad4504c58df07cb8987aef8d1a3
GET /image/catalog/activity/ceZ8m2nA3O1659940241.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 25808
date: Sat, 21 Jan 2023 01:47:10 GMT
last-modified: Mon, 08 Aug 2022 06:36:41 GMT
etag: "d64ba4832daf29fa47d5c6d673489f2c"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eyI_Ax4BqiKIxKuKJKZt0uA_HzYCW2aVmq7C_HPXYA3OxZRvBzpiUw==
age: 1060411
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/HIYqs2ON9R1659940477.jpg
54.230.111.113200 OK 46 kB URL HTTP/2 roselinlin.com/image/catalog/activity/HIYqs2ON9R1659940477.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 645x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f9960b1cce8b9c40e5e0526bbd0b08d
c658cd91a44ca227c1d89d7b6a0b6ce3b99da482
c679b5ca4fd05504812addec3209dcd5badcda8ab24714fbdf9532d1ee5a588f
GET /image/catalog/activity/HIYqs2ON9R1659940477.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 45538
date: Sun, 08 Jan 2023 05:47:48 GMT
last-modified: Mon, 08 Aug 2022 06:36:40 GMT
etag: "6f9960b1cce8b9c40e5e0526bbd0b08d"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DxvhraoKoFfhNip9ySkZ_xYiQNEX6savnMH8j6MQK8fwZ1M3DQ8-kA==
age: 2169173
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/framework-07ba49083a3e026b.js
143.204.55.3200 OK 76 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/framework-07ba49083a3e026b.js
IP 143.204.55.3:0
Hash 9b692257f7b28e72c0fe9a0b9ddf10d2
8896ba6ba4c96eaa9731ea778d508242a8522a4e
d13d8703ceaed81d46a0e49d38efe7d34c042a19b0b68d2e1f6c181169e96370
GET /prod/cmall-front/_next/static/chunks/framework-07ba49083a3e026b.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: E5Mb7uGwtp9ykRDLN8JbigPjSzUukVQK
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"94465b5e06b3a005076692b833bb4c28"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wjZ6Ho8FJ6TM21RUz5Ta6z5Z8boJGyBenCu3sKKkH_8EviQGA5BLDw==
age: 39024
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
roselinlin.com/rest/domain_name/subdomain
54.230.111.113200 OK 24 kB URL HTTP/2 roselinlin.com/rest/domain_name/subdomain
IP 54.230.111.113:0
Hash d6442bdc0e6108f445a7d199f7c16974
a4fcd01e134b1ea939df1df8b7b784a0666968c8
2ae0c1a93fb39580e11847758dc2d748981cda636a5383d7366f611ad86cd93e
GET /rest/domain_name/subdomain HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:40 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"0aa57999e78756edb0d44d6218763ab371a4b8b2"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hv0SN4akbh9D7Vp4gDHYoFpwHpXyGabLlfl3XTQyO7OFj3jpLMFcdw==
X-Firefox-Spdy: h2
roselinlin.com/rest/products/attr?id=3723329,14693745,14726644,14718320,12248332,14726909,14743128,14706637,14771300,14771320,14768521,14715084,14737323,14699127,14707958,14770213,14718319,13430749,1022155,944240&with=review,corner_mark,new_product_mark
54.230.111.113200 OK 36 kB URL HTTP/2 roselinlin.com/rest/products/attr?id=3723329,14693745,14726644,14718320,12248332,14726909,14743128,14706637,14771300,14771320,14768521,14715084,14737323,14699127,14707958,14770213,14718319,13430749,1022155,944240&with=review,corner_mark,new_product_mark
IP 54.230.111.113:0
Hash db50e978bd0ad62d4d364be4bf63a4af
46e0b6b262789d24cb7c9968e7b3061eb21e8874
30270df9120d22fe84b2f9964880c182efabfec745675a4fb382393ce6e6cc11
GET /rest/products/attr?id=3723329,14693745,14726644,14718320,12248332,14726909,14743128,14706637,14771300,14771320,14768521,14715084,14737323,14699127,14707958,14770213,14718319,13430749,1022155,944240&with=review,corner_mark,new_product_mark HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:40 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"5769c241fe5c3c3604ecf7e3a94011336ae33829"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mwJdYI1aKUTHyEI1KM-5dgXJiP7Vw7MHBFLFFqobllMFzlsdXpbnAA==
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/144-092d313b2990bfce.js
143.204.55.3200 OK 205 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/144-092d313b2990bfce.js
IP 143.204.55.3:0
Size 205 kB (205325 bytes)
Hash e982cee4d1b12fc96d799624352a4bda
e7630f065ad2cd77510d472e588762ca5d47a5f7
3fb53c9c3c2a163eb2c463ec87bb7ab0395428dbe04a3383d7c66e0f95ab215a
GET /prod/cmall-front/_next/static/chunks/144-092d313b2990bfce.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: iW6ezicdY8m5KeFLM1JrYEThODxIR.He
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 19:45:48 GMT
etag: W/"024a59b989ed2509d3ed8c09ceeb67de"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Crx4hAmf5F2dbtDbZfpHjutUnJOwyq_LSFULQ59WI8TBUh3iE6vcGA==
age: 45290
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/827-28297f2df64bd522.js
143.204.55.3200 OK 179 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/827-28297f2df64bd522.js
IP 143.204.55.3:0
Size 179 kB (178565 bytes)
Hash cc65998b6fdfc2c7855e5be6cc6efb6b
967b60c35e1507426b929a997a199372d8b86108
83e3eb840c102db570a5383a70b693eeebae0e68beb844bcfd76758df0c0733c
GET /prod/cmall-front/_next/static/chunks/827-28297f2df64bd522.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: H0KtoaIFNnt2B6BHQiVYadcHmmo92uz3
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"b61ef3a55b25b09efffd31f759dd125b"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aMGD3a_xKSHk4Et6wGFRNAFwChe_UFJXjkJGlBaGZv9SA86bpMV4Lw==
age: 42982
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
roselinlin.com/image_cache/resize/335x445/image/catalog/product/2020-08-07/2-1596772131335.jpeg
54.230.111.113200 OK 35 kB URL HTTP/2 roselinlin.com/image_cache/resize/335x445/image/catalog/product/2020-08-07/2-1596772131335.jpeg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 333x445, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e23464a492c823e52db19c71e688b060
11f6deac9468b95fe69ca2f57f8955f7a0555d65
e7526589a169377a8262b4035ef0e7b4e932d633e4566df763702f9354cec67b
GET /image_cache/resize/335x445/image/catalog/product/2020-08-07/2-1596772131335.jpeg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 34690
date: Thu, 26 Jan 2023 16:40:55 GMT
last-modified: Fri, 14 Aug 2020 06:53:54 GMT
etag: "e23464a492c823e52db19c71e688b060"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vTsOhr9Ziy4NrnlXxru-jvszzBAVoc7p3RhsnRPxXeiiHb5cJkT8ew==
age: 574786
X-Firefox-Spdy: h2
roselinlin.com/rest/cookie_policy
54.230.111.113200 OK 28 kB URL HTTP/2 roselinlin.com/rest/cookie_policy
IP 54.230.111.113:0
Hash 721620768c2c6bc5cdbe542080402a1e
cdcdda049ffbe5cae8b3223c7fdc8a76b3d57771
03604cc1a135ed81329c7bcaeaf5519c5280134f6a07123c340cb50fbbb84bd3
GET /rest/cookie_policy HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:40 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"2633a926d8f8fd04859c78b8b8f37d625976957e"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x2FsWpNqiqseAkdL2LM548mN6EtdgUkvGK4EvcPi-hUxU1gZT7mGGw==
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/bdb21a15200772be.css
143.204.55.3200 OK 16 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/bdb21a15200772be.css
IP 143.204.55.3:0
Hash cac57405ad548e0da08939185cf445fb
0c59c777d3d1da9d31b9b3bdc16c35fc762522b1
e601bc5ae64291710b827c5617f9c8574dcdccbf6780d5d8c882c2b4dcf3b042
GET /prod/cmall-front/_next/static/css/bdb21a15200772be.css HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: w2lS7ALVVgia2JOzL_q058d5eZu5U92J
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"73aa8e4ae6015700aa0de65eb150b586"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hf1m_WCMFfvN4FFiMNXpIKPlkARZ6cUOqPdauOVjHWYyzm3MXYbDpA==
age: 39022
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8e186dce1fd1ccf03fdcee7d14ffa216
03814faf439fe941ef696a02fca0e10ca8e6c0a1
6f0e98fcf2266d560f28288fb755123bd9ad00aa285413cdafb0a9ed09813b0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4927
Cache-Control: max-age=89805
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:40 GMT
Etag: "63da1ae6-116"
Expires: Fri, 03 Feb 2023 09:17:25 GMT
Last-Modified: Wed, 01 Feb 2023 07:55:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8e186dce1fd1ccf03fdcee7d14ffa216
03814faf439fe941ef696a02fca0e10ca8e6c0a1
6f0e98fcf2266d560f28288fb755123bd9ad00aa285413cdafb0a9ed09813b0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4927
Cache-Control: max-age=89805
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:40 GMT
Etag: "63da1ae6-116"
Expires: Fri, 03 Feb 2023 09:17:25 GMT
Last-Modified: Wed, 01 Feb 2023 07:55:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aac473ea903c.cdn4.forter.com/sn/aac473ea903c/script.js
143.204.55.20200 OK 152 kB URL HTTP/2 aac473ea903c.cdn4.forter.com/sn/aac473ea903c/script.js
IP 143.204.55.20:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 152 kB (152162 bytes)
Hash 277bf2bdb8c5ea995f748acbcd26d61c
98c58a60f7ebf48c9de760ec5555740d189df8dd
d39525987cf64770aaf257d41242510e5b797b2aa7f23f83e17ca978adb2c3b8
GET /sn/aac473ea903c/script.js HTTP/1.1
Host: aac473ea903c.cdn4.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 29 Jan 2023 00:02:33 GMT
strict-transport-security: max-age=86400; includeSubDomains
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Sun, 29 Jan 2023 00:02:33 GMT
expires: Sun, 29 Jan 2023 00:07:33 GMT
cache-control: private, max-age=300
x-sourcemap: https://cdn4.forter.com/map/suid/aac473ea903c/68014557905
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EC9QvDaiDPs9xkAA_A5kME7mpe_RmDSMyYj1MAKJgEZ0lWvTteNY1A==
age: 375487
X-Firefox-Spdy: h2
roselinlin.com/rest/payment-icon/all
54.230.111.113200 OK 1.9 kB URL HTTP/2 roselinlin.com/rest/payment-icon/all
IP 54.230.111.113:0
File type JSON data\012- , ASCII text, with very long lines (6165), with no line terminators
Hash 2589954b5664c4673ee964337ac73c66
95f31aaae31f1dc09d4a9da7d18d2967dcb55440
eca7f116602a99bf95a7749e14b3d0a5c648c969c02c5292f53bf199b6a40aef
GET /rest/payment-icon/all HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:40 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"2687045b288f0cabfe88e6ccdd54ee0dfd3e2f39"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: THRN3k2xSiT9afKoch0D6YnPaRTYcbg_Fpx3dXeJy-8vdSjEa3eXMQ==
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_localization?license_id=12657117&version=ff93808ef52c6dd040640c4853b854bd_6ab076af8c2abf91d5db0227527b5cec&language=en&group_id=10&jsonp=__lc_localization
23.36.79.17200 OK 3.8 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_localization?license_id=12657117&version=ff93808ef52c6dd040640c4853b854bd_6ab076af8c2abf91d5db0227527b5cec&language=en&group_id=10&jsonp=__lc_localization
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (10938), with no line terminators
Hash 17a4206f89474d38bbdba3537f684dda
3b0bb6b46735252b0448df5d19ec7be2095be095
7b67d1563bdcd9b114723ba9310f22139fff1a2e92a9317bfc4c915a9957c95f
GET /v3.3/customer/action/get_localization?license_id=12657117&version=ff93808ef52c6dd040640c4853b854bd_6ab076af8c2abf91d5db0227527b5cec&language=en&group_id=10&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Thu, 02 Feb 2023 08:30:41 GMT
date: Thu, 02 Feb 2023 08:20:41 GMT
content-length: 3799
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=12657117&group=10&embedded=1&widget_version=3&unique_groups=0
23.36.79.17200 OK 2.6 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=12657117&group=10&embedded=1&widget_version=3&unique_groups=0
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Hash e73532c0c660a631b8b058705ce26d21
ac886227ce8d418692c8496201f8bc76709b1a63
0ee4d5761027247228422c7b57c6727e95d065c52b4f68501694f1a41754ac03
GET /customer/action/open_chat?license_id=12657117&group=10&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Thu, 02 Feb 2023 08:20:41 GMT
content-length: 2557
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
95.101.10.202200 OK 15 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/0.d619df13.chunk.js
IP 95.101.10.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (47599), with no line terminators
Hash f790030a4058f34f76fa8b0e0e4285cf
955ed12553baf05025f6f19f9079bad07af10bc3
5a57474ecc2a44ecf94ceae42e672745f900749479012ee2ba9eea180ee2a265
GET /widget/static/js/0.d619df13.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2023 08:35:01 GMT
x-amz-version-id: fr6Gz9d8KXQbrJuaQVT4sDUpSqjnuR9Q
server: AmazonS3
content-encoding: br
etag: W/"10a3d7ac1ed37325d3341c379ee0de69"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: M5BEPnK3INOuxV-Zd5EkJqKhsnyIsA6pc5CcKg9GF8ozNzaNoBaR7Q==
content-length: 14885
cache-control: max-age=31536000
expires: Fri, 02 Feb 2024 08:20:41 GMT
date: Thu, 02 Feb 2023 08:20:41 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
wzstatic.streamoptim.com/stream/style/fonts-style.css
54.230.111.10200 OK 108 kB URL HTTP/2 wzstatic.streamoptim.com/stream/style/fonts-style.css
IP 54.230.111.10:0
File type ASCII text, with very long lines (22040)
Size 108 kB (107702 bytes)
Hash 3fccbcd7c7080d57ae42488929cce4d0
969866949bc0e2c791923078553622b7af7ebdd8
998d18d4255040b2e24d55ef6778ce1a3cea0723a82b7f476a458ec882f62875
GET /stream/style/fonts-style.css HTTP/1.1
Host: wzstatic.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: AliyunOSS
x-oss-request-id: 63D5A93A4EA12137302F8100
last-modified: Thu, 24 Jun 2021 03:21:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4707530008504402095
x-oss-storage-class: Standard
content-md5: 9h/+Bs66X1XZqOeOfipmdQ==
x-oss-server-time: 53
content-encoding: gzip
date: Wed, 01 Feb 2023 23:01:20 GMT
etag: "F61FFE06CEBA5F55D9A8E78E7E2A6675"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3dsaSSHhybkywBL_oidY-LLunoxFCrhNxJJ1FAJJWL4y7jlKjBljcQ==
age: 33562
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/webpack-3ab4036c281fd41c.js
143.204.55.3200 OK 23 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/webpack-3ab4036c281fd41c.js
IP 143.204.55.3:0
Hash 7c148eb9bcc770569030dde7557692a0
3d81fc4e77718f97dd0e4810e4f370392765f49c
690784eb8970e6e5997463720526b78724d945fed9827810c596b9fb09199692
GET /prod/cmall-front/_next/static/chunks/webpack-3ab4036c281fd41c.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: ZtFgU4O8ZggDYJM1z9yGMhxX4GaY74x9
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"7b1c233e9dee1b911df745e04badf088"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d6ul8DlhLaGxbQFIgo863d10VgUHt5tvt4Qz21g4fOs8T5_BG0bL2g==
age: 52568
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
2.18.173.74200 OK 5.9 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 2.18.173.74:0
File type ASCII text, with very long lines (17737), with no line terminators
Hash 69ccf6d91702cd65dedfbad36e94c61b
adce8bd55dcc466c709dc96e230cbdd72fb27645
9a5b793c3b453c30229658bebe68719aa0df37a71ef371a6c6117e123b091e64
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "9f0b052ec22f789c3cc95c26dd0da7f4:1674389451.57807"
Last-Modified: Sun, 22 Jan 2023 12:08:14 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 02 Feb 2023 08:40:41 GMT
Date: Thu, 02 Feb 2023 08:20:41 GMT
Content-Length: 5884
Connection: keep-alive
roselinlin.com/image/catalog/activity/Oi61uljvQJ1617330654.png
54.230.111.113200 OK 41 kB URL HTTP/2 roselinlin.com/image/catalog/activity/Oi61uljvQJ1617330654.png
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e03ee9e827acc4a720ce79b8eae83079
e9cb8dc07f17bb695699c2c163d32d614072f513
b5bc60334fd6c682eec9aa79bcf802539f8285ec681ffade5c8634e97461c537
GET /image/catalog/activity/Oi61uljvQJ1617330654.png HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969__UDF43_9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065; mirage_cid=t20qzfbhf6.1675326065; mirage_sid={%22sid%22:%228w6kzsxmh5.1675326065%22%2C%22timestamp%22:1675326065753}; __uid=66bamjjcx626; ftr_ncd=6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 40922
date: Sat, 21 Jan 2023 01:47:12 GMT
last-modified: Fri, 02 Apr 2021 02:30:59 GMT
etag: "e03ee9e827acc4a720ce79b8eae83079"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2tgBAztUmZU9JawZ7Soo8pGF96KXo9qo7zll8UpGa5V4_uShPMdITQ==
age: 1060409
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wzstatic1.streamoptim.com/stream-subscribe.js
54.230.111.77200 OK 399 kB URL HTTP/2 wzstatic1.streamoptim.com/stream-subscribe.js
IP 54.230.111.77:0
File type Unicode text, UTF-8 text, with very long lines (64889), with no line terminators
Size 399 kB (398861 bytes)
Hash 76455a7a0c5847d9bea34ac6c802714c
f38681bd381f73f364d7610c8f6246d52efe1b7f
3a8d89e1a9d390f0a01774c7e6e93bc95977da673e2de42e9a3ef2b478ace7e5
GET /stream-subscribe.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 01 Feb 2023 08:42:46 GMT
last-modified: Mon, 09 Jan 2023 02:40:15 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X6tNoI3khM33CPxC3J-l3pjrRmWu2rbA0pHPxyUKNDaiS9vk1mpY8g==
age: 85074
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Last-Modified: Thu, 02 Feb 2023 07:01:57 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Last-Modified: Thu, 02 Feb 2023 07:01:57 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: max-age=128548
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Etag: "63daae91-139"
Expires: Fri, 03 Feb 2023 20:03:09 GMT
Last-Modified: Wed, 01 Feb 2023 18:25:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1263a80e4bed64529b9e8ca61ccea9b8
97356de87ac091a56de8bb5485ce99712408d62b
f174c72446dbd9a2d0f1b6f74f02bec21d15d8da763b976d7bb9e598e786a7ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/761876961/?random=1675326066019&cv=11&fst=1675326066019&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&auid=549610653.1675326063&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&rfmt=3&fmt=4
142.250.74.130200 OK 955 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/761876961/?random=1675326066019&cv=11&fst=1675326066019&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&auid=549610653.1675326063&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2137), with no line terminators
Hash be31eb368aea57f140b6fd1ad2240aae
b765d16445a1a013c5fc05310085d011bf22e168
de628197172281294bf2d7f9b58d20983f0845638ba34bcffbd4b529d859f99c
GET /pagead/viewthroughconversion/761876961/?random=1675326066019&cv=11&fst=1675326066019&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&auid=549610653.1675326063&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 08:20:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 955
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 08:35:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 9ij/oubX3IM2Be1FwvqIH6sQOGTmpcA0wFmCR9gdCeKqGHbVmNF5l1z3iKSjIRNXC1Cs+MH0uyr5Y7mXjCbJug==
content-length: 27843
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 08:20:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/480-ebd4b68cfa763dfa.js
143.204.55.3200 OK 12 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/480-ebd4b68cfa763dfa.js
IP 143.204.55.3:0
File type Unicode text, UTF-8 text, with very long lines (30377)
Hash 59a172b8b3eb297e4dbc1bb7ff1cdfa8
3e8013a428b024e18bf091f7c537bc76e1ef8320
c2e4a4c6b8f76646d33043a9a76696338ba971f5f3ee4e382e00406977e878db
GET /prod/cmall-front/_next/static/chunks/480-ebd4b68cfa763dfa.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: Uoi4xS0e.Z9lYzk6YqbE5zgh9id__7Hm
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:39 GMT
etag: W/"b0e83beea4a79c145fee88d55924b449"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vDlR-8lMk3r_1iQj0pjXCRihUr4CXSv03JXnoerXpsAJrghcSIXkmw==
age: 98549
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/780-ab0e6334e4a01ecb.js
143.204.55.3200 OK 6.9 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/780-ab0e6334e4a01ecb.js
IP 143.204.55.3:0
File type ASCII text, with very long lines (2054)
Hash ed88a26669d90cb0bd7fc7800c86bd4d
7f85cf53a70f5faf6ad8d5162c70b04b88a82307
da6ff126c190a2e55a934ac9a7d7739d8a769c9c2ca8572daee2cc2229646bda
GET /prod/cmall-front/_next/static/chunks/780-ab0e6334e4a01ecb.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: dWiaJUEK_NOVLCi95povdiSpvjlZvTXJ
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"ac007f44ad35ea2fdc232232ec77d2a2"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JZ4nSPDSI2xwBhIVCseqTn1WV3SoDBH3nJp0rVMfaJNxJypl3q96JA==
age: 42315
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/637-183a02b842272505.js
143.204.55.3200 OK 76 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/637-183a02b842272505.js
IP 143.204.55.3:0
Hash 2d9cfa4db18251b1882672371c0935ea
a9c32297c69fe8e4d088628a5c21cddcc0c6063b
cbf88773215b7dbbb2f95f625c987015422064797a8b9853c135bb54e2d0ce1b
GET /prod/cmall-front/_next/static/chunks/637-183a02b842272505.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: 5r.F8GcIKyjS_nyDmT6GZVtKQXZfH9QN
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 21:09:59 GMT
etag: W/"47962111d37897fc3396d9b4b62a22d7"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S1_RuCFTqoUFHHGAeRrK6m23eG3n-wgUi2dY-dchitVAiCypHqv7aA==
age: 40239
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4724
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Last-Modified: Thu, 02 Feb 2023 07:01:57 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn9.forter.com/vchk2
143.204.55.40301 Moved Permanently 138 B IP 143.204.55.40:0
File type JSON data\012- , ASCII text
Hash d92dca1315d2041efdb3fcbaee341aec
610c15efe0f5d6c5577774160d40ddea9f5f0d26
c035a507172459e1c558c9636533ba281b16b43e12f476d219aaf7b22bbdedfb
GET /vchk2 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjE3NDg1NTU4Mjg3MjczNDczLCJ1IjoiOTUzNjhlM2NmYzBjNDU4MWEyOGZlNWI3NTdjMGM1ODciLCJzIjoiYWFjNDczZWE5MDNjIn0=
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://cdn9.forter.com/vchk2/v1/77ba599d341f2f286b77b24918ab0ebea1b1965d7b8d1462bde1325fecc1ca13ac7f4bc9661455e1d9f448d5a474
date: Thu, 02 Feb 2023 08:20:41 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Bai69XY3ECD5jicr92OQO1g0EhNwGPX5jMW-U1J7S2xFNM2Va18-Yw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed4be2c568c77fdb416cd41c25ceb05e
3c342317239b8fa621e1911dff54d5927616e4b4
e6a51313b664fd6e0e71bc757fa32134a613050438bfc8a415525fed4c09adbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/workbox-cdn/releases/5.1.2/workbox-sw.js
142.250.74.144200 OK 739 B URL HTTP/2 storage.googleapis.com/workbox-cdn/releases/5.1.2/workbox-sw.js
IP 142.250.74.144:0
File type ASCII text, with very long lines (1287)
Hash 249735252fa77748fd785f34d005ec19
3bca9f45092591834a64a26b89b0152deb413305
2365fdf042d37d228fc38934d2371904fbab32d8e731ff8b8b11275f658b4b4b
GET /workbox-cdn/releases/5.1.2/workbox-sw.js HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt9UmOO21eVGRY8Dd878nuIJwv54KG4dbtC9WDQxafd8k7-S1S00Cce2GWzuBhfPeqjQtvtc_MflKGslOckOrqyqQ
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1585146749480807
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 739
content-encoding: gzip
x-goog-hash: crc32c=XWGGlw==, md5=JJc1JS+nd0j9eF800AXsGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 739
access-control-allow-origin: *
server: UploadServer
date: Thu, 02 Feb 2023 07:44:31 GMT
expires: Fri, 02 Feb 2024 07:44:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Mar 2020 14:32:29 GMT
etag: "249735252fa77748fd785f34d005ec19"
content-type: application/javascript; charset=utf-8
age: 2170
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 08:20:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed4be2c568c77fdb416cd41c25ceb05e
3c342317239b8fa621e1911dff54d5927616e4b4
e6a51313b664fd6e0e71bc757fa32134a613050438bfc8a415525fed4c09adbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/761876961/?random=1675326066019&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2wg1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&value=0&data=event%3Dpage_view%3Becomm_pagetype%3DHome%3Becomm_totalvalue%3D0%3Becomm_category%3D&fmt=3&is_vtc=1&random=2221790911&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 08:20:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
roselinlin.com/rest/customer/tag?email=&platform=pc&cid=t20qzfbhf6.1675326065
54.230.111.113200 OK 3.7 kB URL HTTP/2 roselinlin.com/rest/customer/tag?email=&platform=pc&cid=t20qzfbhf6.1675326065
IP 54.230.111.113:0
Hash c8c4113d31002362a4aa0cf1677ab49d
e11bf0db73a1ab57deaaeb2880bbb345beb181d1
a14105462974db62016ec093bd13e127da9b5f1062d9b310aa1a711edede14f9
GET /rest/customer/tag?email=&platform=pc&cid=t20qzfbhf6.1675326065 HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid: t20qzfbhf6.1675326065
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969__UDF43_9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.1.265997604.1675326065; mirage_cid=t20qzfbhf6.1675326065; mirage_sid={%22sid%22:%228w6kzsxmh5.1675326065%22%2C%22timestamp%22:1675326065753}; __uid=66bamjjcx626; ftr_ncd=6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:41 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"d6414cac4c14b105d8ade044b503890584f97a19"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w_aYzdKrDBJ0Xv4hhCKnqokqpMTB316mu90v6V1KeFLrEVldHM6NLA==
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 08:20:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/761876961/?random=1675326062905&cv=11&fst=1675324800000&bg=ffffff&guid=ON&async=1>m=2oa1u0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Froselinlin.com%2F&tiba=Roselinlin%20-%20Shop%20Women%27s%20Fashion%2C%20Trendy%20Linen%20Styles%20%7C%20roselinlin&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2095891430&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 08:20:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.YyskdsiEoiw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrOC7xxlHSStBnZbZdqheUGpkxWzA/m=el_main
142.250.74.106200 OK 75 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.YyskdsiEoiw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrOC7xxlHSStBnZbZdqheUGpkxWzA/m=el_main
IP 142.250.74.106:0
File type ASCII text, with very long lines (1622)
Hash 93705f618295a8c01d2c14ddbfd422fe
24696ec767a7ef8a41d2be36af9b679c2abab454
02a016cf6a3c4be2233c42e7dcc657a029bc9170da3397c8b93139d30f703ae6
GET /_/translate_http/_/js/k=translate_http.tr.no.YyskdsiEoiw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrOC7xxlHSStBnZbZdqheUGpkxWzA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 23:17:16 GMT
expires: Thu, 01 Feb 2024 23:17:16 GMT
cache-control: public, max-age=31536000
age: 32605
last-modified: Wed, 25 Jan 2023 04:12:33 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 39480998c76d94a91da9df4fa2fa686d
f04adb0c36f6663cec46c0fe00f1952d156475a8
f123f6452e10d2408fa2d4c083e191951de76c14ed9f6a3928d50313efc3a014
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4879
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Last-Modified: Thu, 02 Feb 2023 06:59:22 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
tr.outbrain.com/cachedClickId?marketerId=undefined
64.202.112.127200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP 64.202.112.127:0
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:41 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: c2fe46815dfc46c24f9dd4b6409884ad
tr.outbrain.com/unifiedPixel?marketerId=00167ee73e829c1bac94c42f341c6ea4f9&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Froselinlin.com%2F&optOut=false&bust=01842140865055436&referrer=
64.202.112.127200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00167ee73e829c1bac94c42f341c6ea4f9&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Froselinlin.com%2F&optOut=false&bust=01842140865055436&referrer=
IP 64.202.112.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=00167ee73e829c1bac94c42f341c6ea4f9&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Froselinlin.com%2F&optOut=false&bust=01842140865055436&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:41 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: b5a2fe328d4420ab45b443f0bf3c6103
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.99200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.99:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:48:49 GMT
expires: Fri, 02 Feb 2024 00:48:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 27112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.99200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.99:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 17:23:05 GMT
expires: Thu, 01 Feb 2024 17:23:05 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 53856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d5aa8840f812da83fc823da528a74c1a
9e7bad3462506164bd4bdb87a761352ef8131ba9
abaa07021a967e89f7786ac14efa3ce48f24e4c032376a36421cca12f5ecaeeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/js/ld/ld.js
178.250.0.130200 OK 15 kB URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.0.130:0
Hash f42f0443dab4935e0243c00483d884fe
2d767b489ae0f31d529529e5625bd499a25b90c8
0f2a7961e3eb9938448d4c7580df4a835fa3fcd1431b193bf38ff6ad4a5e5369
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:20:41 GMT
content-type: text/javascript
last-modified: Mon, 02 Jan 2023 16:36:54 GMT
etag: W/"63b30826-aae4"
expires: Fri, 03 Feb 2023 08:20:41 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:41 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=_MGbZ180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cFR6bWVrRmxNbzFjWiUyQmVYTktZWlhN; expires=Tue, 27 Feb 2024 08:20:42 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 311169
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.artfut.com/static/tagtag.min.js?campaign_code=b36162f539
104.26.0.109200 OK 30 kB URL HTTP/2 www.artfut.com/static/tagtag.min.js?campaign_code=b36162f539
IP 104.26.0.109:0
File type C source, ASCII text, with very long lines (13176)
Hash e0dcc12b28c49840112a1a3b07373fca
63c8f4245ad42d23c4dc7b30541548464b582eee
cae2acf91a80c025ab81786aa24bbdcbf5d9e5441ee720addeb5b17e2c9f8783
GET /static/tagtag.min.js?campaign_code=b36162f539 HTTP/1.1
Host: www.artfut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:37 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 10 Jan 2023 12:34:15 GMT
etag: W/"63bd5b47-d05"
expires: Thu, 02 Feb 2023 08:40:37 GMT
cache-control: max-age=1200, public
pragma: public
x-frame-options: SAMEORIGIN
content-encoding: gzip
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4ViqiBFQhUQge63VQZqENUAv%2B7YTTsOyfcHat0G9hr%2BQishiYL54WKx7QeyHkQ41o%2FTIQVdaSpwUzAaS%2FBrQ2ZzkmHeaeml05MnjNj6GHw4jPWIwtTukZOwOEbS13ES"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793182333f67b500-OSL
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/iframe
142.250.74.109200 OK 1.8 kB URL HTTP/2 accounts.google.com/o/oauth2/iframe
IP 142.250.74.109:0
Hash 0db366cb5199eb88d35cbab1d5bf5bc0
47f67062e281e1d9a11aabcb24b1a5844f019159
5195c922e900fabce64462cc606dc9163fc1eef788337fcd51f7bc337a6c5f92
GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 08:20:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport, script-src 'nonce-cOdSSgMQgoSpaJiJ1OLTZw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:42 GMT
Last-Modified: Thu, 02 Feb 2023 07:25:58 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
www.artfut.com/static/tracking.min.js?campaign_code=b36162f539
104.26.0.109200 OK 7.3 kB URL HTTP/2 www.artfut.com/static/tracking.min.js?campaign_code=b36162f539
IP 104.26.0.109:0
Hash ac5b85b8a2ce172e2742a911d1becb6a
5b6beda836b42fabd8a5fec420563006da614ca4
56e140861614828fc8fe625a5f14ecebfd8b923d2333badd249ec89f8ee7f18a
GET /static/tracking.min.js?campaign_code=b36162f539 HTTP/1.1
Host: www.artfut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 10 Jan 2023 12:34:15 GMT
etag: W/"63bd5b47-6306"
expires: Thu, 02 Feb 2023 08:40:40 GMT
cache-control: max-age=1200, public
pragma: public
x-frame-options: SAMEORIGIN
content-encoding: gzip
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U7T4g7XChG8PJyKIX8CZvKUUt34ge1pSORaSeMU6xq5d7RGet5T0%2BTdkKqoqvkhoF2oRDaMLOFLEYcKDQyBnachuHmIkL4Wblphjli3c%2FjYeXBTb55otIzSwvTrQLf28"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793182473c27b500-OSL
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.244200 OK 948 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.244:0
File type JSON data\012- , ASCII text, with very long lines (1932)
Hash bdf41e03db725e66ee384c74450d42e0
94cbd3228a699a0b86f869e2e1e1a2c3f6fc385b
644af7069546634f8c2048d81869c9ed96f0cc55ef42ea2ee968bb475c6d6ba4
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:42 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 52328
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=437178503914371&ev=PageView&dl=https%3A%2F%2Froselinlin.com%2F&rl=&if=false&ts=1675326067645&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675326067644.498873655&it=1675326066964&coo=false&eid=PageViewdghiq6g0d81675326066&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=437178503914371&ev=PageView&dl=https%3A%2F%2Froselinlin.com%2F&rl=&if=false&ts=1675326067645&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675326067644.498873655&it=1675326066964&coo=false&eid=PageViewdghiq6g0d81675326066&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=437178503914371&ev=PageView&dl=https%3A%2F%2Froselinlin.com%2F&rl=&if=false&ts=1675326067645&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675326067644.498873655&it=1675326066964&coo=false&eid=PageViewdghiq6g0d81675326066&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 08:20:42 GMT
X-Firefox-Spdy: h2
roselinlin.com/image/catalog/activity/v9jczYGWf81605856634.jpg
54.230.111.113200 OK 3.8 kB URL HTTP/2 roselinlin.com/image/catalog/activity/v9jczYGWf81605856634.jpg
IP 54.230.111.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e1ca3bdff6067a416218f9df2059697b
2db89887fedc3c7459db2ad73d82e47de32995d5
a24fca207b1b03c1100ac6e40722afa1686196017e6401886dd25436b52e12c2
GET /image/catalog/activity/v9jczYGWf81605856634.jpg HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969__UDF43_9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.2.265997604.1675326065; mirage_cid=t20qzfbhf6.1675326065; mirage_sid={%22sid%22:%228w6kzsxmh5.1675326065%22%2C%22timestamp%22:1675326067675}; __uid=66bamjjcx626; ftr_ncd=6; _gid=GA1.2.791303227.1675326067; _gat=1; G_ENABLED_IDPS=google; outbrain_cid_fetch=true; _fbp=fb.1.1675326067644.498873655
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3784
date: Tue, 10 Jan 2023 04:20:14 GMT
last-modified: Wed, 25 Nov 2020 10:42:30 GMT
etag: "e1ca3bdff6067a416218f9df2059697b"
cache-control: public, max-age=2592000
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ah0x1-B7NgTnBZoJS5AoICO0SFVGebw3wodw-ElunoS7s9wvjBPvxw==
age: 2001629
X-Firefox-Spdy: h2
d2q8lslmdp9f7.cloudfront.net/library/20211021/170646_909458/buBjhy5JLhv8K1uyUlscGFFRwb491MM5.gif
143.204.42.83200 OK 125 kB URL HTTP/2 d2q8lslmdp9f7.cloudfront.net/library/20211021/170646_909458/buBjhy5JLhv8K1uyUlscGFFRwb491MM5.gif
IP 143.204.42.83:0
File type GIF image data, version 89a, 500 x 500\012- data
Size 125 kB (125219 bytes)
Hash 903f644582368377eb70a97c31f0c0c9
91e8944eaf9190438ca776d70df3d99c72e7aac1
84a0e3a73a50fe84de0fd9f7b0e2673f41326b15048e994514d76c93ff24b5c3
GET /library/20211021/170646_909458/buBjhy5JLhv8K1uyUlscGFFRwb491MM5.gif HTTP/1.1
Host: d2q8lslmdp9f7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 125219
x-amz-replication-status: COMPLETED
last-modified: Thu, 21 Oct 2021 09:06:48 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 23:59:18 GMT
etag: "903f644582368377eb70a97c31f0c0c9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nFfLp0U5ccpV5ekadndaWVk5eyAcnZg8FKCri_4faG6X9Owhb6i7oA==
age: 86115
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130023843-1&cid=265997604.1675326065&jid=1986759941&gjid=1439135551&_gid=791303227.1675326067&_u=aCDAAEACQAAAACAAI~&z=1653351089
64.233.162.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130023843-1&cid=265997604.1675326065&jid=1986759941&gjid=1439135551&_gid=791303227.1675326067&_u=aCDAAEACQAAAACAAI~&z=1653351089
IP 64.233.162.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-130023843-1&cid=265997604.1675326065&jid=1986759941&gjid=1439135551&_gid=791303227.1675326067&_u=aCDAAEACQAAAACAAI~&z=1653351089 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://roselinlin.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 08:20:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/check_goals?license_id=12657117
23.36.79.17200 OK 0 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/check_goals?license_id=12657117
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3.3/customer/action/check_goals?license_id=12657117 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://secure.livechatinc.com/
Origin: https://secure.livechatinc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type
access-control-allow-origin: https://secure.livechatinc.com
vary: Accept-Encoding
content-length: 0
date: Thu, 02 Feb 2023 08:20:43 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/check_goals?license_id=12657117
23.36.79.17200 OK 2 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/check_goals?license_id=12657117
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /v3.3/customer/action/check_goals?license_id=12657117 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer dal:b4NeLXklQDeL_P6uL5K1Ew
Content-Length: 71
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
content-type: application/json
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 2
date: Thu, 02 Feb 2023 08:20:43 GMT
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1b131fb3a2ea7333ebcf23bbd789bc3
529931c15b9a5f80744333e45bdc30bb86328892
2ec73d15eca4ec5fd076718c8a44c087beada6149842d380a7ed3a11bf204287
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5216
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:43 GMT
Last-Modified: Thu, 02 Feb 2023 06:53:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 6389e83ac5a9a909d05d231a8b630898
5a1da18e0c4347093df645dffb3e3da49cd073d8
053664a542f89433f168dac53b2e81e6b405ebda56e5f10b45a80e330410a4a8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117821
Date: Thu, 02 Feb 2023 08:20:43 GMT
Etag: "63da8f71-1d7"
Expires: Fri, 03 Feb 2023 17:04:24 GMT
Last-Modified: Wed, 01 Feb 2023 16:12:33 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nTVyDvBxyIm3M93wqhAIdM7dykMYlKGvdbcx3lBccgeVWBrlhc8GCQ==
Age: 3111
sslwidget.criteo.com/event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:42 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 14425358
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
95368e3cfc0c4581a28fe5b757c0c587-aac473ea903c.cdn.forter.com/prop.json
54.158.164.13200 OK 2 B URL HTTP/1.1 95368e3cfc0c4581a28fe5b757c0c587-aac473ea903c.cdn.forter.com/prop.json
IP 54.158.164.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /prop.json HTTP/1.1
Host: 95368e3cfc0c4581a28fe5b757c0c587-aac473ea903c.cdn.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:43 GMT
Server: Apache
Last-Modified: Mon, 26 Dec 2022 12:09:02 GMT
ETag: "2-5f0ba00447b29"
Accept-Ranges: bytes
Content-Length: 2
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Access-Control-Allow-Origin: https://roselinlin.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type, x-csrf-token
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Connection: close
Content-Type: application/json
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/products/%5Bname%5D-66f46dc7e79ea500.js
143.204.55.3200 OK 25 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/products/%5Bname%5D-66f46dc7e79ea500.js
IP 143.204.55.3:0
Hash adb5e716e8df924d04640919651fe7df
6cb2b8108fe12c0a4edf28106bf7e145158eba64
9a463057f047d2fdf19d8139e95712deeadc527a47104f0333e4541e9f728b1b
GET /prod/cmall-front/_next/static/chunks/pages/products/%5Bname%5D-66f46dc7e79ea500.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: 1RLh09WGWmhihqGimA19N0vzYZWvrRRL
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 08:08:52 GMT
etag: W/"fc17b3ff2c18c6c402e4fa3dbd611b7b"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RmzWHHXPCamZREkej8fvwti7AEH5mlX3d-d6SO0yj6gAVFr7JdhJag==
age: 87325
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0607ff003b897f89a1081e5338bf44d
76de9c48d09fd14b70f42850f018e9d91be01412
3e665bd18b9a4a71896b0452597fce3f01f1a9a65496e9016a6644fe0c66c82f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4808
Cache-Control: max-age=111950
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:43 GMT
Etag: "63da71e1-1d7"
Expires: Fri, 03 Feb 2023 15:26:33 GMT
Last-Modified: Wed, 01 Feb 2023 14:06:25 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/b337d6271cceb256.css
143.204.55.3200 OK 5.9 kB URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/b337d6271cceb256.css
IP 143.204.55.3:0
File type ASCII text, with very long lines (26741)
Hash e26d604f9dd8719e28a4d8c249ad5386
a1613cca52ca17b6ef7b317974cdff22c5aabb45
42a54f28db40f1f4cc61994bac8a23b208ff8073e0f24332a68446ad197bd10e
GET /prod/cmall-front/_next/static/css/b337d6271cceb256.css HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: XEbY0wa8XSabb9IhbByu4mrhQQbLdyJE
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 08:20:43 GMT
etag: W/"46df09a850da5d160be3e4c362f957d5"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j-Ta3QfBB3jcHdvQHHQ0F3yF3QCtveY3k_f41kYkSCobYY4VNp_O4A==
age: 57210
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
Hash 94e3e8d9ff3eee40e2eaa6b41b08dba4
f9a50ae760f225227828adacfd426207cd68572c
c672b362cb472d5e6464049333b81d8f4ac2b2acd9073f67cb6ce1af5ea1083f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 296323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 632 B IP 178.250.2.146:0
Hash ce54e5cb6d1529e49dd0cb8102f71081
a512bf14537fed6050d2a91162d8572b1cd09d19
e17ecc2a18bbba3018e5875a32623b91f0332a563d58d7c9ca9fb1ba33e837ac
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=_MGbZ180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cFR6bWVrRmxNbzFjWiUyQmVYTktZWlhN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Rmc6A180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cWhxdWUzbmZ3ekdGclQ2VE1VWms4MA; expires=Tue, 27 Feb 2024 08:20:43 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 346623
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
jingwei.harborcdn.com/v1/dot/topic/bury-log-web
35.80.172.88200 OK 204 B URL HTTP/2 jingwei.harborcdn.com/v1/dot/topic/bury-log-web
IP 35.80.172.88:0
File type gzip compressed data, max compression\012- data
Hash 6688d9c828cd940322e3b7e1b0208be5
c8e7ccda524dc3c600afd416f591a9b2446cb0b7
59e9c39c1e60fde820be9320093f9fa5bc4a0f2f4df52be98383314c0cb86902
POST /v1/dot/topic/bury-log-web HTTP/1.1
Host: jingwei.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1303
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/json;charset=UTF-8
server: nginx/1.14.0 (Ubuntu)
access-control-allow-origin: https://roselinlin.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: X-Tingyun-Data
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 379488505b2527d02937abafeca61d7a
f97662e43f6a31181834e3b08db491abc02ae012
ef9ada271c5ee232f4b8237409bf5543b052db272a20693f1d7c259d091c9323
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF9ADA271C5EE232F4B8237409BF5543B052DB272A20693F1D7C259D091C9323"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5007
Expires: Thu, 02 Feb 2023 09:44:10 GMT
Date: Thu, 02 Feb 2023 08:20:43 GMT
Connection: keep-alive
cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326068727
34.225.5.197200 OK 20 B URL HTTP/1.1 cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326068727
IP 34.225.5.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326068727 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://roselinlin.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Thu, 02 Feb 2023 08:20:43 GMT
Transfer-Encoding: chunked
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:43 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 918955
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash cd23c3f93e23a261d897f5cb6d9088b6
03c0b0f45c06b8650abf92047c393902106bd2cf
8eb76c3e07e90551163289e4b05de3981276ade959547c960a49d1f825b99946
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164496
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63db47ad-1d7"
Expires: Sat, 04 Feb 2023 06:02:20 GMT
Last-Modified: Thu, 02 Feb 2023 05:18:37 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2qmh2ATWshIW7sLiCOCWTeQyNQr05JEaVU_4ufy2Gl3L7oncxocXEA==
Age: 2623
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw
216.58.211.2302 Found 2.0 kB URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw
IP 216.58.211.2:0
Hash 774ae60fb732582fa20b92598f0b9e06
b6912e9423977d078e05e3965c51aee5547e7e4c
1b06125b3bb82220557700bb88786428f90bec0894f33561f9802bc6119ba2be
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm=&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw&google_tc=
date: Thu, 02 Feb 2023 08:20:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 08:35:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-p8Sw1Kh9D5wnMbssOKHwA30JWl4oukPnV2zYcw
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-p8Sw1Kh9D5wnMbssOKHwA30JWl4oukPnV2zYcw
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-p8Sw1Kh9D5wnMbssOKHwA30JWl4oukPnV2zYcw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Thu, 02 Feb 2023 08:20:44 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 08:20:44 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3416
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 07:23:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-c9oGZah9D5wnMbssOKHwA30JWl7emC05_vDP0Q
23.38.200.22200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-c9oGZah9D5wnMbssOKHwA30JWl7emC05_vDP0Q
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-c9oGZah9D5wnMbssOKHwA30JWl7emC05_vDP0Q HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3183276443580258000V10; Expires=Fri, 02 Feb 2024 08:20:44 GMT; domain=.media.net; Path=/;
data-c-ts=1675326044;Expires=Sat, 04 Mar 2023 08:20:44 GMT;path=/;domain=.media.net;
data-c=k-c9oGZah9D5wnMbssOKHwA30JWl7emC05_vDP0Q~~3;Expires=Sat, 04 Mar 2023 08:20:44 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 02 Feb 2023 08:20:44 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 08:20:44 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm=&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw&google_tc=
216.58.211.2302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm=&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw&google_tc=
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash cc8dd2adecc876f72c24fbfd0fd95c1c
d10de446c5c6759910eac848f87b1404d9e01c43
53010e1d2d25288a724d81d3d1ee68081a7aabab7d6609bfe4d25fcd77935e7a
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_cm=&google_hm=ay1uejJHcWFoOUQ1d25NYnNzT0tId0EzMEpXbDU0TWx2MzZOcWx2dw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_error=3
date: Thu, 02 Feb 2023 08:20:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.244307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 468b726d-73f3-4acf-9576-6e1eada5eef8
Set-Cookie: uuid2=6701611230660113825; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 08:20:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-f8_UqKh9D5wnMbssOKHwA30JWl4lC22-JVeQmw&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-f8_UqKh9D5wnMbssOKHwA30JWl4lC22-JVeQmw&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-f8_UqKh9D5wnMbssOKHwA30JWl4lC22-JVeQmw&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 54ab5e55007c9747024b4f039df5ce6b
Content-Type: image/gif
cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326069279
34.225.5.197200 OK 20 B URL HTTP/1.1 cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326069279
IP 34.225.5.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/prop.json?_=1675326069279 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://roselinlin.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Thu, 02 Feb 2023 08:20:44 GMT
Transfer-Encoding: chunked
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 07:58:40 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: W86pKvkd4SGoZBSqIdWrqeuglXiU2htoSUBz9XZ2mUUYXibIVXY5UQ==
Age: 1324
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 23692097ca31908592060984aae6cc6e
3e06e4c092a9d9dd647d76ee58291528934df221
d7c4a696b9dd736862a5065352d3c9b37ae045a08452e40df7edf46c249983b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2176
Cache-Control: max-age=164421
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63db4922-139"
Expires: Sat, 04 Feb 2023 06:01:05 GMT
Last-Modified: Thu, 02 Feb 2023 05:24:50 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg
52.28.31.160302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg
IP 52.28.31.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg
set-cookie: tuuid=d055b00b-ec3e-438c-a41a-0acb0fa8ee60; Expires=Wed, 03 May 2023 08:20:44 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675326044; Expires=Wed, 03 May 2023 08:20:44 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7b444f635e1777bea65b8efe5a06f628
0fb353800d4ea14eaf162f8dd485467619e89911
e4bbe85a350b9351967c02c38bcf9022bdad7d65bb7dadffa0991fe2b2ed4519
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 281
Cache-Control: max-age=111382
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63da8159-1d7"
Expires: Fri, 03 Feb 2023 15:17:06 GMT
Last-Modified: Wed, 01 Feb 2023 15:12:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 95d5233f09dd79c056a0c2188fb60340
b94f720ba6bd1fa3ede025e8c37eb5aee8ecd21c
2f77c24cd8f7df8e3c27b629a67adf25c33d68588969889f9b14224fd5a0a797
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6599
Cache-Control: max-age=116623
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63da7d24-1d7"
Expires: Fri, 03 Feb 2023 16:44:27 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aaa7b61d8ac1f6808fd6e2f665d2c19e
9c07288ce99e1d262382e55db985e2cc207bd107
f13310af6517c6586346bc0cd0a405ec866427fc14a8e47ea118e52e6ccc3c0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2979
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 07:31:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.89.210.244302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.89.210.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 4a0537b9-6928-4217-8b7d-944e3f94deac
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cm.adform.net/pixel?adform_pid=15&adform_pc=k-kOSmZKh9D5wnMbssOKHwA30JWl68n4o-EewpmA
37.157.4.28200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-kOSmZKh9D5wnMbssOKHwA30JWl68n4o-EewpmA
IP 37.157.4.28:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-kOSmZKh9D5wnMbssOKHwA30JWl68n4o-EewpmA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 10 Apr 2019 10:06:26 GMT
etag: "5cadc022-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k--Svrm6h9D5wnMbssOKHwA30JWl4IAQLygp8pmw
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k--Svrm6h9D5wnMbssOKHwA30JWl4IAQLygp8pmw
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k--Svrm6h9D5wnMbssOKHwA30JWl4IAQLygp8pmw HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k--Svrm6h9D5wnMbssOKHwA30JWl4IAQLygp8pmw&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFxy22MCELkwqmhxVs6rpmBE2qBqm5cFEgEBAQHD3GPlYwAAAAAA_eMAAA&S=AQAAApdPNgVF0upVfrg9qZlJdA4; Expires=Fri, 2 Feb 2024 14:20:44 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg
52.28.31.160200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg
IP 52.28.31.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-evY8Mqh9D5wnMbssOKHwA30JWl7q9tw2w6vdcg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-D-O3iqh9D5wnMbssOKHwA30JWl4XK8sQFkIiDw
185.86.139.57200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-D-O3iqh9D5wnMbssOKHwA30JWl4XK8sQFkIiDw
IP 185.86.139.57:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-D-O3iqh9D5wnMbssOKHwA30JWl4XK8sQFkIiDw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Thu, 02 Feb 2023 08:20:44 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=2113061671676867691; expires=Mon, 04 Mar 2024 08:20:44 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Mon, 04 Mar 2024 08:20:44 GMT; domain=smartadserver.com; path=/
csync=79:k-D-O3iqh9D5wnMbssOKHwA30JWl4XK8sQFkIiDw; expires=Fri, 02 Feb 2024 08:20:44 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 376568ad565582b9a012526b079e1d15
8a3d0933e4ad5e6b4942abc856e2b06bd518cb86
8638da6b826ab2e28955fa6963b3fbac2fb85c937e5eb0e629b8a10b3e029498
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5543
Cache-Control: max-age=170313
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63db52fe-1d7"
Expires: Sat, 04 Feb 2023 07:39:17 GMT
Last-Modified: Thu, 02 Feb 2023 06:06:54 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3a24f73634f4c175fcf8afe66522d4c5
b6be0ef8b424d88db88206728b3edfb6e2af45f4
0b3ac603508f11a804d8b65f369965f3f2685378a8e498c7148b541391966736
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109117
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63da629b-1d7"
Expires: Fri, 03 Feb 2023 14:39:21 GMT
Last-Modified: Wed, 01 Feb 2023 13:01:15 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1y_zQ84fBbf5cc4mQzoVvu_yu38aX7dgq3i92Ig_1ZqY-hjVCNzRbg==
Age: 5886
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b25c0f844f5cc973e73f71b344c6e09b
79a931b20eb2766183009bbd57da7138c1c5220d
dc24b977b845733a94a211ec98790faad7e8b75189357f9466afa34a8e73a57b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2625
Cache-Control: max-age=93569
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63da329c-1d7"
Expires: Fri, 03 Feb 2023 10:20:13 GMT
Last-Modified: Wed, 01 Feb 2023 09:36:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
widget.us.criteo.com/event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5706)
Hash 2f6ec1134a65f59d3a7e4c5d7152da66
2ca9be34b18df86896d8b5364dda738904788bfb
eb914318b9d6ae18f791b2354409861759cf544ccdb3da084772a20e95a9c946
GET /event?a=60011&v=5.13.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=13qtAV9DM3owRWtwZnNyTjNheFFMOXFMaWdKeVdMZlJnTURyJTJGeDFvWEMlMkZ1NGdXVHBIM01RU2sxUUQwd0RNTDU4Vm9yNjltaG1FN1ppU2NHbWl0NFdsbU9QMFFRdjFsUUM2U04xT1RjN3dXa1ZKc2hNQURxQ0tzMG9uU2xpUllKNXU2TFNtUEJwJTJGVFhaelRhUzVpNWFlYXVSQ3clM0QlM0Q&tld=roselinlin.com&fu=https%253A%252F%252Froselinlin.com%252F&dtycbr=70276 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 12986419
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg
172.64.154.237302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg
IP 172.64.154.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg&C=1
cf-ray: 793182612faeb527-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9tyXAgmCLvmces-VLdjNgAA; Path=/; Domain=casalemedia.com; Expires=Fri, 02 Feb 2024 08:20:44 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1853; Path=/; Domain=casalemedia.com; Expires=Wed, 03 May 2023 08:20:44 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1853; Path=/; Domain=casalemedia.com; Expires=Wed, 03 May 2023 08:20:44 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3QzLB4uh9coHbZiyEaZCQiv%2F8ezQ1ptieDuHCUwJJiTffW9nTutAlLYnRhXeP7Dc8az7JCzZX0VQYww%2BrwC8Nr%2FxCjkUVbyQFtPDe6GJEL6tEyFjVfe3FSSZ6LBHx4DpFeHg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-aOtc96h9D5wnMbssOKHwA30JWl46HtCyZK4_wg&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-aOtc96h9D5wnMbssOKHwA30JWl46HtCyZK4_wg&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-aOtc96h9D5wnMbssOKHwA30JWl46HtCyZK4_wg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.250.119.25302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.250.119.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-061dae83e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=89232601511925693032740949752472478604; Max-Age=15552000; Expires=Tue, 01 Aug 2023 08:20:44 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: C6bNIvmdTdY=
Content-Length: 0
Connection: keep-alive
ad.yieldlab.net/m?dt_id=8664&ext_id=k-eWGJSqh9D5wnMbssOKHwA30JWl7xz2qjob1-MQ
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-eWGJSqh9D5wnMbssOKHwA30JWl7xz2qjob1-MQ
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-eWGJSqh9D5wnMbssOKHwA30JWl7xz2qjob1-MQ HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Wed, 01 Feb 2023 08:20:44 GMT
Date: Thu, 02 Feb 2023 08:20:44 GMT
Connection: keep-alive
Set-Cookie: id=331c7ede-9554-431a-b457-fef87d444870; Path=/; Domain=prod.svc.y6b.de; Expires=Fri, 02-Feb-2024 08:20:44 GMT; Max-Age=31536000; Secure; SameSite=None
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA&KRTB&23144-uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA&KRTB&23286-uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA&KRTB&23287-uid:k-lqIzOah9D5wnMbssOKHwA30JWl7Jgou3dkslHA; domain=pubmatic.com; secure; expires=Sat, 04-Mar-2023 08:20:43 GMT; path=/
PugT=1675326043; domain=pubmatic.com; secure; expires=Sat, 04-Mar-2023 08:20:43 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=451563,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793182608f3fb518-OSL
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.250.119.25200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.250.119.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0227c85fb.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: vvRepf31T+M=
Content-Length: 59
Connection: keep-alive
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg&C=1
172.64.154.237200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg&C=1
IP 172.64.154.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-t72XTqh9D5wnMbssOKHwA30JWl7SIQN7Il0uvg&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 43
cf-ray: 793182619856b527-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mc%2BfHI3hr%2FjXo4yeCUnTKAzIYCt5dbwqy1vit%2FmPn9m%2FISpkYix%2BE7BQM6PDeBpskJC9W6Xh1BmpXnIo3g7uDOX3y7tkKVDELdJOOxsf0ke579ElyrabIIsPTMc%2B4iXPCrKG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 06:42:37 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YXlgHDpNh30L6-wY11TwPytfxQ64XKjQ7BXmRwx3Hf9OYQsyGxbChQ==
Age: 5887
wzstatic1.streamoptim.com/stream-harbor.js?shop=https://roselinlin.com/
54.230.111.77200 OK 41 kB URL HTTP/2 wzstatic1.streamoptim.com/stream-harbor.js?shop=https://roselinlin.com/
IP 54.230.111.77:0
Hash d3d362583724c9b5cb32234458073988
abc112098aa9edf45b0b1ac410a2c05afba4f164
7d0d90d77d8c3523cd46261990899015ae9cc8aee10168b61d685711907d52dc
GET /stream-harbor.js?shop=https://roselinlin.com/ HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 01 Feb 2023 08:42:46 GMT
last-modified: Wed, 02 Nov 2022 01:46:34 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4_kWKctWpXLeXxQuBvqMNzW9DhbOlIFfQA1UPewI1Ag7PhWVBDePeg==
age: 85070
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aaa7b61d8ac1f6808fd6e2f665d2c19e
9c07288ce99e1d262382e55db985e2cc207bd107
f13310af6517c6586346bc0cd0a405ec866427fc14a8e47ea118e52e6ccc3c0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2979
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 07:31:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
x.bidswitch.net/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30
3.64.156.82302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30
IP 3.64.156.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=548b7a25-d2af-4085-a44e-c7a6e4d1f510; path=/; expires=Fri, 02-Feb-2024 08:20:44 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675326044; path=/; expires=Fri, 02-Feb-2024 08:20:44 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675326044; path=/; expires=Fri, 02-Feb-2024 08:20:44 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675326044; path=/; expires=Fri, 02-Feb-2024 08:20:44 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=499269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793182612e08b515-OSL
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-TfkPBah9D5wnMbssOKHwA30JWl4nVtzZ_qGlxg
3.74.100.208204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-TfkPBah9D5wnMbssOKHwA30JWl4nVtzZ_qGlxg
IP 3.74.100.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-TfkPBah9D5wnMbssOKHwA30JWl4nVtzZ_qGlxg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 08:20:44 GMT
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 849964
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 514c6ec712a6ff3469e9cece4e7dc68b
b84c1e1f5b73aca2e478e23b3fab25d4396c362e
96ba19441a3cdab95e9e7eab342b70b75fba690450c32320cc0c469c6ca05788
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101398
Date: Thu, 02 Feb 2023 08:20:44 GMT
Etag: "63da5483-1d7"
Expires: Fri, 03 Feb 2023 12:30:42 GMT
Last-Modified: Wed, 01 Feb 2023 12:01:07 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gk_CO5sk8bd0doLdNhJUPN_ij_eHEm8DHVhexemydZD5xg9SHxnPMg==
Age: 1775
sync.outbrain.com/cookie-sync?p=criteo&uid=k-Q2ALWah9D5wnMbssOKHwA30JWl7T6yRtvtAyzQ
64.202.112.127200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-Q2ALWah9D5wnMbssOKHwA30JWl7T6yRtvtAyzQ
IP 64.202.112.127:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash f5e8ba17a27272e9373f1b72d96a956e
f7f9eef52c2d795b1f188c893d382c87a6c50a50
3ee607d4860d05c6743a989864d280191837110eae9aa4a362a6bb242f0d2294
GET /cookie-sync?p=criteo&uid=k-Q2ALWah9D5wnMbssOKHwA30JWl7T6yRtvtAyzQ HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: fe6a76b3ee94acb7798eac7592bea262
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-X2dRIah9D5wnMbssOKHwA30JWl7V0eZFlgwYgQ
185.255.84.152200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-X2dRIah9D5wnMbssOKHwA30JWl7V0eZFlgwYgQ
IP 185.255.84.152:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-X2dRIah9D5wnMbssOKHwA30JWl7V0eZFlgwYgQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=af71e1d1b0c300838bc742a4134a12fb; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 08:20:44 GMT
content-length: 49
x-envoy-upstream-service-time: 3
server: ayl-lb-fra02
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30
3.64.156.82200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30
IP 3.64.156.82:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-_1eKiqh9D5wnMbssOKHwA30JWl6o_l1Dse_TBQ&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-Opd856h9D5wnMbssOKHwA30JWl4nOhBKdeUOzA&pn_id=criteo&ext=1
52.209.250.172200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-Opd856h9D5wnMbssOKHwA30JWl4nOhBKdeUOzA&pn_id=criteo&ext=1
IP 52.209.250.172:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-Opd856h9D5wnMbssOKHwA30JWl4nOhBKdeUOzA&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gf247a2c6c3c24008c6a%7C1675326044528%7C0%7C; Domain=.yieldmo.com; Expires=Fri, 02-Feb-2024 08:20:44 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-Opd856h9D5wnMbssOKHwA30JWl4nOhBKdeUOzA; Domain=ads.yieldmo.com; Expires=Fri, 02-Feb-2024 08:20:44 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 005622e59568cb632684a1cd2880c97e
31333726c45ed676daec90ecde21654791c06a9d
02b0023deb129dda05ec64f305ddd4f0aba5a3d0e7bf91a099f6acc1de7b15a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 08:20:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:29:42 GMT
Expires: Thu, 02 Feb 2023 21:29:42 GMT
ETag: "31333726c45ed676daec90ecde21654791c06a9d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 43030f3d6872c114931f12d793a3bb17
81918b93fe2b78d40334c184571e20ae2f9d68d8
c988d04156ff1363a4e3272dc0cfc9b2c8624d5743ce8c3ea722ba02a0041f85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 06:41:03 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KAvNUKkrsAyYXgng9T1vmge5LkR9_uBLwPaa0sMnbBPyH6JraoYj2A==
Age: 5981
e1.emxdgt.com/put?d=d53&uid=k-GDBFsqh9D5wnMbssOKHwA30JWl7kWQthn2MBiUJ34UjW76wN
3.75.3.113204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-GDBFsqh9D5wnMbssOKHwA30JWl7kWQthn2MBiUJ34UjW76wN
IP 3.75.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-GDBFsqh9D5wnMbssOKHwA30JWl7kWQthn2MBiUJ34UjW76wN HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Thu, 02 Feb 2023 08:20:44 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b06cec089acd318019e1e0ca74cce574
4af9a1240f73eea11ad968ccd73f702a75e68147
7e6819de8b1bfcb09cea8470e011c63b8016a251c85ac20151c225db675006cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4037
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:20:44 GMT
Last-Modified: Thu, 02 Feb 2023 07:13:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json
34.225.5.197204 No Content 0 B URL HTTP/1.1 cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json
IP 34.225.5.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://roselinlin.com/
Origin: https://roselinlin.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Content-Length: 0
Date: Thu, 02 Feb 2023 08:20:44 GMT
Connection: keep-alive
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
34.255.170.214204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 34.255.170.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 08:20:44 GMT
set-cookie: _kuid_=PWuo5lkK; Expires=Tue, 01-Aug-23 08:20:44 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n008-dub-prod.krxd.net
x-request-time: D=29 t=1675326044
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 08:20:44 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 390040
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json
34.225.5.197200 OK 20 B URL HTTP/1.1 cdn0.forter.com/aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json
IP 34.225.5.197:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
POST /aac473ea903c/95368e3cfc0c4581a28fe5b757c0c587/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 26
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://roselinlin.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
Expires: -1
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Content-Length: 20
ETag: W/"14-Y53wuE/mmbSikKcT/WualL1N65U"
Date: Thu, 02 Feb 2023 08:20:44 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash ecd871d8916f59e97f89bbbbd55a9945
c404b05bed522e1232a55085dfe1a8a67c55b0b7
f8fc02b888e0a346b95f3b8d87c4b055ea8412f116565a9dd32a71fae768c2fb
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "F8FC02B888E0A346B95F3B8D87C4B055EA8412F116565A9DD32A71FAE768C2FB"
Last-Modified: Wed, 01 Feb 2023 20:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3029
Expires: Thu, 02 Feb 2023 09:11:13 GMT
Date: Thu, 02 Feb 2023 08:20:44 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
18.188.123.24200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 18.188.123.24:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:45 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 7d87b131-a2d2-11ed-a88f-0000ac17024f
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.2.151:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 358991
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
roselinlin.com/rest/product-keywords/related-searches
54.230.111.113200 OK 0 B URL HTTP/2 roselinlin.com/rest/product-keywords/related-searches
IP 54.230.111.113:0
GET /rest/product-keywords/related-searches HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:40 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"d858d6040ffb15bfeab7926ea1224467dabf581c"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 025ZVt-JydF18jgatrIiYfqzczp4O2rG80ScpVd2KfZbpJC3hWTIsQ==
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/464.2cadd2f8292fa207.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/464.2cadd2f8292fa207.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/chunks/464.2cadd2f8292fa207.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: zHWbq6NZwzM8r4whzy21Air.V.sE58qg
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:37 GMT
etag: W/"baf6696e083ee0cdddc8b92d0651874b"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f-xUD2amVA5VAijNMklBU-UuXUCRhYZiqDdscH99fX2FxfMeEcjiKA==
age: 139979
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/log.js
54.230.111.77200 OK 0 B URL HTTP/2 wzstatic1.streamoptim.com/log.js
IP 54.230.111.77:0
GET /log.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 01 Feb 2023 08:42:46 GMT
last-modified: Mon, 25 Jul 2022 03:48:52 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GJxd3qhzGdWmRBjUs-tF15uwHtynnmNT3No4bnTERWuNhJPYgZmWBQ==
age: 85074
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-1E2oY6h9D5wnMbssOKHwA30JWl4v5uDYF2M5VQ
52.206.50.209200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-1E2oY6h9D5wnMbssOKHwA30JWl4v5uDYF2M5VQ
IP 52.206.50.209:0
GET /sync?UICR=k-1E2oY6h9D5wnMbssOKHwA30JWl4v5uDYF2M5VQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
at.alicdn.com/t/font_1199517_i448p0pizvd.js
47.246.44.252200 OK 0 B URL HTTP/2 at.alicdn.com/t/font_1199517_i448p0pizvd.js
IP 47.246.44.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
GET /t/font_1199517_i448p0pizvd.js HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
date: Mon, 15 Aug 2022 08:16:45 GMT
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Origin
x-oss-request-id: 62FA00EDBB83833736D26AE8
etag: W/"D50F5FFB9662B60ACC4F079E02C3C9FD"
last-modified: Fri, 24 Dec 2021 11:12:11 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1121390269737962638
x-oss-storage-class: Standard
cache-control: max-age=63072000
content-md5: 1Q9f+5ZitgrMTweeAsPJ/Q==
x-oss-server-time: 58
ali-swift-global-savetime: 1660551405
via: cache7.l2us1[0,0,200-0,H], cache11.l2us1[2,0], cache7.se1[0,0,200-0,H], cache7.se1[1,0]
age: 14774632
x-cache: HIT TCP_MEM_HIT dirn:3:356194578
x-swift-savetime: Wed, 11 Jan 2023 03:05:57 GMT
x-swift-cachetime: 50217048
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9b16753260372608216e
content-encoding: gzip
X-Firefox-Spdy: h2
jingwei.harborcdn.com/v1/dot/topic/bury-log-web
35.80.172.88200 OK 0 B URL HTTP/2 jingwei.harborcdn.com/v1/dot/topic/bury-log-web
IP 35.80.172.88:0
POST /v1/dot/topic/bury-log-web HTTP/1.1
Host: jingwei.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2205
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/json;charset=UTF-8
server: nginx/1.14.0 (Ubuntu)
access-control-allow-origin: https://roselinlin.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: X-Tingyun-Data
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-uKxgY6h9D5wnMbssOKHwA30JWl7Vvds1yzPMlw
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-uKxgY6h9D5wnMbssOKHwA30JWl7Vvds1yzPMlw
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-uKxgY6h9D5wnMbssOKHwA30JWl7Vvds1yzPMlw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:20:44 GMT
x-fastly-to-nlb-rtt: 23808
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_error=3
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_error=3
IP 178.250.2.151:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-nz2Gqah9D5wnMbssOKHwA30JWl54Mlv36Nqlvw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 233640
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
roselinlin.com/rest/ab-test/product-image
54.230.111.113200 OK 0 B URL HTTP/2 roselinlin.com/rest/ab-test/product-image
IP 54.230.111.113:0
GET /rest/ab-test/product-image HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid:
x-utm-source:
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969___9ck
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:38 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"2820cc6a0ad4e046532779dbf8e2dbf40be96a0d"
set-cookie: x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; expires=Thu, 28-Mar-2024 08:20:38 GMT; Max-Age=36288000; path=/
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PyBO1jg1o8lChDlZTu_Gj5jagdqL7PYvzpMugIRE5l9tKjg3-xJx_Q==
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Heb9Kqh9D5wnMbssOKHwA30JWl7d8oBzf6BEEV9VbXHAd4QP
54.93.70.97200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Heb9Kqh9D5wnMbssOKHwA30JWl7d8oBzf6BEEV9VbXHAd4QP
IP 54.93.70.97:0
GET /usersync/push?partner=criteo&partnerId=k-Heb9Kqh9D5wnMbssOKHwA30JWl7d8oBzf6BEEV9VbXHAd4QP HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:44 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%227cf164a0-a2d2-11ed-909b-092802ecfb6c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 08:20:44 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%227cf164a0-a2d2-11ed-909b-092802ecfb6c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 08:20:44 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%227cf164a0-a2d2-11ed-909b-092802ecfb6c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 08:20:44 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%227cf164a0-a2d2-11ed-909b-092802ecfb6c%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Thu, 16 Feb 2023 08:20:44 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-Heb9Kqh9D5wnMbssOKHwA30JWl7d8oBzf6BEEV9VbXHAd4QP%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Thu, 16 Feb 2023 08:20:44 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=roselinlin.com&sn=FirefoxSyncframe&so=0&topUrl=roselinlin.com&info=Rmc6A180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cWhxdWUzbmZ3ekdGclQ2VE1VWms4MA&idsd=1664113103,-466541342&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=roselinlin.com&sn=FirefoxSyncframe&so=0&topUrl=roselinlin.com&info=Rmc6A180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cWhxdWUzbmZ3ekdGclQ2VE1VWms4MA&idsd=1664113103,-466541342&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=onetag&domain=roselinlin.com&sn=FirefoxSyncframe&so=0&topUrl=roselinlin.com&info=Rmc6A180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lDU0wlMkZEMzFPdEtjSTBqZWNXaFd4cWhxdWUzbmZ3ekdGclQ2VE1VWms4MA&idsd=1664113103,-466541342&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=roselinlin.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:42 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1309899
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/995-3c999fd74367267c.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/995-3c999fd74367267c.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/chunks/995-3c999fd74367267c.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: .NqI2mPRcReR1tEf7QdPPVofJZfKmnk1
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:34 GMT
etag: W/"bf5740ac59f9189d3acdb073ae26a79d"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I9sJv7u1oJAEDdXpG5rnYrHXTQF6qRClRFAj-6A4amPNzFZhItcG7Q==
age: 40242
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
www.artfut.com/static/crossdevice.min.js?campaign_code=b36162f539
104.26.0.109200 OK 0 B URL HTTP/2 www.artfut.com/static/crossdevice.min.js?campaign_code=b36162f539
IP 104.26.0.109:0
GET /static/crossdevice.min.js?campaign_code=b36162f539 HTTP/1.1
Host: www.artfut.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 10 Jan 2023 12:34:15 GMT
etag: W/"63bd5b47-6042"
expires: Thu, 02 Feb 2023 08:40:40 GMT
cache-control: max-age=1200, public
pragma: public
x-frame-options: SAMEORIGIN
content-encoding: gzip
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UGryFk140w1vA4YdHUNRk%2F4RezM6wkzgmm6v7PgzkmGmseC9QA6dYRWaKEylcJUQedHX29OoBDOWXJM8VrXb192rtPQxzmGo%2F8bvOb%2FnYs2w56Ep2%2Bys%2Bc6q3%2BcuYhue"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793182473c2ab500-OSL
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/641.bcc2f1e92adea73b.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/641.bcc2f1e92adea73b.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/chunks/641.bcc2f1e92adea73b.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 01 Feb 2023 04:58:15 GMT
last-modified: Wed, 01 Feb 2023 02:24:25 GMT
etag: W/"1b8cfa60edb7bda3a9d245b3d3cefb3c"
x-amz-version-id: aeqUIYABFd44gXG3TjfMkuzRfydYMVZl
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3VIawx4bGFKPYY76AO7Yz3oR4OXPC3gIy1x8_ixiJWwsiJWcDtkS7Q==
age: 98544
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
jingwei.harborcdn.com/v1/dot/topic/bury-log-web
35.80.172.88200 OK 0 B URL HTTP/2 jingwei.harborcdn.com/v1/dot/topic/bury-log-web
IP 35.80.172.88:0
POST /v1/dot/topic/bury-log-web HTTP/1.1
Host: jingwei.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1097
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/json;charset=UTF-8
server: nginx/1.14.0 (Ubuntu)
access-control-allow-origin: https://roselinlin.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: X-Tingyun-Data
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.119200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.119:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:41 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 67817
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/css/8a1bb0862d2956b9.css HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: gnd5aq5KDYomHbbw1O_8r7BBfBk3srx1
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 08:20:43 GMT
etag: W/"753aed8c8418ed850847e53242a5e180"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _OJ5CDr4q7ziI-d2l7Zuf7KuJqaRKzmzwU7ev0lSAHSMddVNL8VePQ==
age: 90445
access-control-allow-origin: *
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/index-4b655e265d933e1b.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/pages/index-4b655e265d933e1b.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/chunks/pages/index-4b655e265d933e1b.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: lk_.V78ci0hgIrMGL6.kZnWOkerBLqIa
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 23:35:39 GMT
etag: W/"2a94ab67a01ae49acb30a698c5d7c592"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vxE4zai5mVTKkW0XnjM-Gg2plgtWonXRTIjqcGIdeOKJ_fUsgCLuMA==
age: 91720
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/783-227a64690e1b6e21.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/chunks/783-227a64690e1b6e21.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/chunks/783-227a64690e1b6e21.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
x-amz-version-id: 6acFMrLu4.QLtqJSYs82qe4rjjGBmedv
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 06:02:23 GMT
etag: W/"f804557ac2ca138de731b5570cc3673e"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iYPk52oa4RqAHZFldfk7BHVNxDnt_4ImkfF4saSK25SPjGW4-iAcHg==
age: 20355
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
jingwei.harborcdn.com/v1/dot/topic/bury-log-web
35.80.172.88200 OK 0 B URL HTTP/2 jingwei.harborcdn.com/v1/dot/topic/bury-log-web
IP 35.80.172.88:0
POST /v1/dot/topic/bury-log-web HTTP/1.1
Host: jingwei.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1322
Origin: https://roselinlin.com
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:43 GMT
content-type: application/json;charset=UTF-8
server: nginx/1.14.0 (Ubuntu)
access-control-allow-origin: https://roselinlin.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: X-Tingyun-Data
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=roselinlin.com&origin=onetag
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=roselinlin.com&origin=onetag
IP 178.250.0.157:0
GET /syncframe?topUrl=roselinlin.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 08:20:41 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=7d66e142-2cad-48e8-8c15-97d107d4e7ca; expires=Tue, 27 Feb 2024 08:20:40 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 807721
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
roselinlin.com/rest/customer/channel_tag
54.230.111.113200 OK 0 B URL HTTP/2 roselinlin.com/rest/customer/channel_tag
IP 54.230.111.113:0
GET /rest/customer/channel_tag HTTP/1.1
Host: roselinlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roselinlin.com/
Authorization: un-exist
x-currency-code: USD
x-language-id: 5
from-edm:
utm-medium:
client-os: pc
site-domain: roselinlin.com
forter-token:
x-real-origin: https://roselinlin.com
is_abandon: 1
x-sub-email:
x-mirage-cid: t20qzfbhf6.1675326065
x-utm-source: none
x-test-preview: -1
Connection: keep-alive
Cookie: currency=USD; language=5; language-code=en; ignore_ip_detect=1; _gcl_au=1.1.549610653.1675326063; pt_29s8mlic=deviceId%3D673b6194-4dbe-4598-b503-5da3f06bf2ea%26sessionId%3Da82a32bc-e27e-44ad-b723-85f3f3b29fd4%26accountId%3D%26vn%3D1%26pvn%3D1%26sact%3D1675326062936%26; pt_s_29s8mlic=vt=1675326062936&cad=; forterToken=95368e3cfc0c4581a28fe5b757c0c587_1675326062969__UDF43_9ck; x-default-country=%7B%22id%22%3A160%2C%22value%22%3A%22Norway%22%2C%22iso_code_3%22%3A%22NOR%22%2C%22state%22%3A%22%22%2C%22city%22%3A%22%22%7D; UTM_SOURCE_DATA={%22utm_source%22:%22none%22%2C%22utm_medium%22:%22none%22%2C%22utm_campaign%22:%22none%22%2C%22utm_term%22:%22none%22%2C%22utm_content%22:%22none%22}; UTM_SOURCE_ARRAY=[]; __ukey=66bamj0ix819; _ga_ELE9BG19M0=GS1.1.1675326065.1.0.1675326065.0.0.0; _ga=GA1.2.265997604.1675326065; mirage_cid=t20qzfbhf6.1675326065; mirage_sid={%22sid%22:%228w6kzsxmh5.1675326065%22%2C%22timestamp%22:1675326067675}; __uid=66bamjjcx626; ftr_ncd=6; _gid=GA1.2.791303227.1675326067; _gat=1; G_ENABLED_IDPS=google; outbrain_cid_fetch=true; _fbp=fb.1.1675326067644.498873655
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 08:20:42 GMT
server: openresty
vary: Accept-Encoding
cache-control: private, must-revalidate
etag: W/"9128476885dc2dc3d935359324aabaed644a9531"
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BLYFNskRhJXs2CFBsHz4OBf9a5JrlxyXD1uPyAxX5pVhPOtWI-Gi8A==
X-Firefox-Spdy: h2
cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_buildManifest.js
143.204.55.3200 OK 0 B URL HTTP/2 cmall-static-resource.harborcdn.com/prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_buildManifest.js
IP 143.204.55.3:0
GET /prod/cmall-front/_next/static/9ababf26e442e5a14145ff07065b4430e907a417/_buildManifest.js HTTP/1.1
Host: cmall-static-resource.harborcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roselinlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 01 Feb 2023 04:58:12 GMT
last-modified: Tue, 17 Jan 2023 05:58:18 GMT
etag: W/"2855938cd2cd1dc27b5483659e99e0a6"
x-amz-version-id: Z1CiJUKY76k0BuKe2bCao1bnNIpKhAK8
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OfzevHNgCGqieYewe6BoHTFZ5ArjMaiylx1YIA4TbO7uxFGKYh2upQ==
age: 98546
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2