r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3537658770790ad6cf0d727f0c0acd2
8365cadda05ef27b2ebd627d545e31886b512bde
df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4019
Expires: Wed, 26 Oct 2022 04:55:40 GMT
Date: Wed, 26 Oct 2022 03:48:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3635
Cache-Control: max-age=110585
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:31:46 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3622
Cache-Control: max-age=110572
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 10:31:33 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10497
Expires: Wed, 26 Oct 2022 06:43:38 GMT
Date: Wed, 26 Oct 2022 03:48:41 GMT
Connection: keep-alive
jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html
142.250.74.161200 OK 16 kB URL HTTP/1.1 jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4098)
Hash 93077d37a8abbe699f5ec45691e1bb18
444fad13c45305f28d2f7d0f382e20eefeebf05b
d2e70da7341c6845cdbf03ec7a8ea6d8a71b1d3455f401fd984354c6b413f4ef
Analyzer Verdict Alert fortinet Phishing
GET /2009/09/katie-holmes-spending-time-with-suri.html HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 26 Oct 2022 03:48:41 GMT
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 17 Aug 2022 17:06:01 GMT
ETag: W/"2329d2ac8aa99a8624d9bc91d068a44bb0abe05853929da55b740c06ec76993e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15999
Server: GSE
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: thliLPpFJqVaYJM7bV2zX3vWB06YkNT7UqPGP1rPNVF3TxFODPC6UIKNgb2DC9OXGQRzXtGSEPo=
x-amz-request-id: KPPPD95D793QD9P4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 03:39:03 GMT
age: 578
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 03:48:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 937
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 26 Oct 2022 03:48:41 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
www.google.com/buzz/api/button.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 58dc36fb23d2dcf3ccb3668bf07b59c4
6936e4038682706c7733477ac62ef3e448949edb
66bccd3fa212c7a2ac4d60e86e024e101f80f11ccc3a3556d113140aafd6662d
GET /buzz/api/button.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Wed, 26 Oct 2022 03:48:41 GMT
Server: sffe
Content-Length: 1579
X-XSS-Protection: 0
mm.chitika.net/eminimalls/mm.js
143.204.55.92301 Moved Permanently 167 B URL HTTP/1.1 mm.chitika.net/eminimalls/mm.js
IP 143.204.55.92:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/mm.js HTTP/1.1
Host: mm.chitika.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://mm.chitika.net/eminimalls/mm.js
X-Cache: Redirect from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0cypg-Nahr0n00q-GF89shheh_dcZ_hGjK-U0bEAROHXN_ryNLPkRw==
scripts.chitika.net/eminimalls/amm.js
143.204.55.20301 Moved Permanently 167 B URL HTTP/1.1 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://scripts.chitika.net/eminimalls/amm.js
X-Cache: Redirect from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h-22Xnvjn-np8YdKjXMa1XcT_XtFcepTdy7wr_x_j9tuyHUrgtEJFg==
jeannytsy.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 jeannytsy.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 24 Oct 2022 02:32:18 GMT
Expires: Mon, 31 Oct 2022 02:32:18 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 23 Oct 2022 19:50:36 GMT
Content-Type: text/javascript
Age: 177383
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f7b568c3c43cd9f2b2abe5816de7a8d1
2f3b066aa3febbd5b0613645c5d8af22287c3231
0e576c9caee6ebb401da941d49bf8989c6a4189f5cbd0ad006b2882d5b0c5fa9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
142.250.74.65404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Wed, 26 Oct 2022 03:48:41 GMT
expires: Wed, 26 Oct 2022 03:48:41 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fea5b602f1a33e8dc8cf6506e5986020
e433be69624802f82437d4ee87346ecabfcd5a77
210f5bfc7835b83fde64af18bf1bb553c14043be55ae445c941e6a91de4b867e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fea5b602f1a33e8dc8cf6506e5986020
e433be69624802f82437d4ee87346ecabfcd5a77
210f5bfc7835b83fde64af18bf1bb553c14043be55ae445c941e6a91de4b867e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2216895134-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2216895134-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 083268f093ceb61c3a61a818f199d053
97e2062e29efe96089c3e98a5e50f29cdcb05464
6dccb46111dff2073ee44dd7c4b0093f39d28ebc62ec17917c6ce6f8d42dba13
GET /static/v1/widgets/2216895134-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56821
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 02:07:25 GMT
expires: Tue, 24 Oct 2023 02:07:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Oct 2022 00:51:25 GMT
content-type: text/javascript
age: 178876
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 06:44:47 GMT
expires: Sat, 21 Oct 2023 06:44:47 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Oct 2022 00:50:45 GMT
content-type: text/css
age: 421434
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.105200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:57:04 GMT
expires: Wed, 26 Oct 2022 19:57:04 GMT
cache-control: public, max-age=604800
last-modified: Wed, 19 Oct 2022 04:53:18 GMT
content-type: image/gif
age: 546697
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bp2.blogger.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
142.250.74.174301 Moved Permanently 297 B URL HTTP/1.1 bp2.blogger.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 57bffaa6d93aabe0d805655a31ac39c4
3a0a5e5fce62d17edc9e0a93aa1b442a2d9191bc
bb1bc8d8eb8e8655af5a60073d98653cc0d0d0938ce02dafad8dae602ed787f6
GET /_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg HTTP/1.1
Host: bp2.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 297
X-XSS-Protection: 0
Date: Wed, 26 Oct 2022 03:00:07 GMT
Expires: Fri, 25 Nov 2022 03:00:07 GMT
Cache-Control: public, max-age=2592000
Content-Type: text/html; charset=UTF-8
Age: 2914
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash d70fcc84d705c565b31a5835c0938d5b
d28e5dc9fcc6239d67986df3205468072023d2d7
1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 23 Oct 2022 07:26:05 GMT
expires: Mon, 23 Oct 2023 07:26:05 GMT
cache-control: public, max-age=31536000
age: 246156
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.130200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.130:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Tue, 25 Oct 2022 11:58:00 GMT
Expires: Tue, 08 Nov 2022 11:58:00 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 57041
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bdv.bidvertiser.com/BidVertiser.dbm?pid=411938%26bid=1024752
54.241.51.109200 OK 87 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=411938%26bid=1024752
IP 54.241.51.109:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 6c60754af27389e2778b3584bf10f3a1
196be0cdc74708ee01c01f86a648c16573e18fc6
ff2485a3dc35082ae7e3799388665929ffd72227191bf24b7c01033bfe19ddd9
GET /BidVertiser.dbm?pid=411938%26bid=1024752 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/html
Connection: close
Content-Length: 87
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 302730f3d7a555e92a8eb18a18b1f6dd
121f4e2db1652c28963d7c5d21da7ddd68bf15ab
1af15e18b397b4d2212951e156be2d4ddabf483f736b494342f82ab8f9b6a68f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
142.250.74.161200 OK 3.9 kB URL HTTP/2 1.bp.blogspot.com/_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 70x80, components 3\012- data
Hash acfc3a38984e4ca7fec11b9007ad1afc
e961218b503f812db85de665d4b3aaa750e0c1cd
ab2a695cc8bf4ae5f4da8d38841a82fb200017668e0e3c7fdd76a19fd6abb05c
GET /_jFbqtsH14W8/SFfMLRjweXI/AAAAAAAAACY/OX0OYLJLPHY/S220-s80/0017_kfli_02.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="0017_kfli_02.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3877
x-xss-protection: 0
date: Wed, 26 Oct 2022 03:00:07 GMT
expires: Tue, 25 Oct 2022 02:32:19 GMT
cache-control: public, max-age=86400, no-transform
age: 2914
etag: "v26"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=1412683674746141522&zx=ba14c436-4d33-40a3-8888-d96f07a671c2 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 26 Oct 2022 03:48:41 GMT
last-modified: Wed, 26 Oct 2022 03:48:41 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 302730f3d7a555e92a8eb18a18b1f6dd
121f4e2db1652c28963d7c5d21da7ddd68bf15ab
1af15e18b397b4d2212951e156be2d4ddabf483f736b494342f82ab8f9b6a68f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash bf6d374b357a4d053ecc19c80c13e6e3
c2d8d2ab748641610ac7c39b6aeb47977eb8d4f9
16865ed6d1fd394cb6b570e4043f501bf68ba87abd563b170a72fa622cce7786
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154428
Date: Wed, 26 Oct 2022 03:48:41 GMT
Etag: "63586655-1d7"
Expires: Thu, 27 Oct 2022 22:42:29 GMT
Last-Modified: Tue, 25 Oct 2022 22:42:29 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DykNd835EKplMqvUa136-KXI9Y855RAPuWAV0HYZDCa3H5KpMQX5xg==
scripts.chitika.net/eminimalls/amm.js
143.204.55.20200 OK 0 B URL HTTP/2 scripts.chitika.net/eminimalls/amm.js
IP 143.204.55.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/amm.js HTTP/1.1
Host: scripts.chitika.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Fri, 19 Apr 2019 16:37:52 GMT
server: AmazonS3
date: Wed, 26 Oct 2022 03:00:08 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s8TRY8zRnZWd_7y5Fn2YfElQbIcKCJoHaimEyLWsch0cbceN8wF1DA==
age: 3079
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 863827257cfa134022b0459df9771216
5a0587a17322fd329dd854e154efd0dc6e7182ee
1c72dbc13a8b8fd5d56d6d16affd08e2d6db5502f24d513b81466d94b48a66db
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117725
Date: Wed, 26 Oct 2022 03:48:41 GMT
Etag: "6357d6f6-1d7"
Expires: Thu, 27 Oct 2022 12:30:46 GMT
Last-Modified: Tue, 25 Oct 2022 12:30:46 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DTHjujgWaQ5eHPkOcTkqmVtVDNgRhf9Mp53GU2u4Zw0PVO8EnNGlTw==
mm.chitika.net/eminimalls/mm.js
143.204.55.92301 Moved Permanently 0 B URL HTTP/2 mm.chitika.net/eminimalls/mm.js
IP 143.204.55.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eminimalls/mm.js HTTP/1.1
Host: mm.chitika.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://chitika.net/index.html
date: Tue, 25 Oct 2022 19:01:14 GMT
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zMRSTtUrknuDoIfjJy2yrqwzWZtcfPDNIOPXEHkzN7qpHGnDLO2tDQ==
age: 31648
X-Firefox-Spdy: h2
photoserver.ws/images/J7rK4ec124a37b7c8.jpg
64.70.19.203200 OK 478 B URL HTTP/1.1 photoserver.ws/images/J7rK4ec124a37b7c8.jpg
IP 64.70.19.203:0
ASN #3561 CENTURYLINK-LEGACY-SAVVIS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa86f8a7448401cfee04397b3fcc55b1
d6d241098a23efede5ac01efe7e3c5f69ae92989
131d29852592b7b5ea2ff4466a0ab4f688d36a7e815071703f86052dea6cf7f3
GET /images/J7rK4ec124a37b7c8.jpg HTTP/1.1
Host: photoserver.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 478
Connection: keep-alive
Allow: GET,HEAD
www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
52.128.23.153302 Found 0 B URL HTTP/1.1 www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
IP 52.128.23.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.6.39-0+deb8u1
Location: http://www.globetrackr.com/?f
Set-Cookie: SRV=lander06|Y1iuH|Y1iuH; path=/
X-DIS-Request-ID: 9716d1f5db80fc85962885a1eddf73e8
www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc4d1c.jpg
47.246.44.231200 OK 45 kB URL HTTP/1.1 www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc4d1c.jpg
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 333x483, components 3\012- data
Hash e9d302ca7f62bd61b1399f0cda113d27
ef1e2a0f2cb67b92bf7dda36d4f16e3f4d175734
57376264b101dd434df7ac46e25839b22067023b3d775b9753815f1e5f4eb5a7
GET /showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc4d1c.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 45193
Connection: keep-alive
Date: Tue, 25 Oct 2022 17:16:14 GMT
Last-Modified: Sun, 27 Sep 2009 01:05:21 GMT
ETag: "4abeba51-b089"
Expires: Tue, 25 Oct 2022 17:46:14 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666718219
Via: cache12.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache7.se1[34,34,200-0,M], cache2.se1[37,0]
Age: 37902
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 26 Oct 2022 03:48:41 GMT
X-Swift-CacheTime: 221298
Timing-Allow-Origin: *
EagleId: 2ff62c9616667561218013363e
www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
142.250.74.65404 Not Found 117 B URL HTTP/1.1 www.gmodules.com/ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 50e010e6df7baa397fb4070b6553cff8
fe7f8b322f493e27d54136a1d3d562d8c2afbab7
e69da6f4387d34867cfdf001ad4ede46f8e78ddd3d4cceb1535b7cf6f3c84932
GET /ig/ifr?url=http://www.google.com/coop/api/003542675522332864959/cse/t9qafwvjcxq/gadget&synd=open&w=320&h=75&title=JeannyTSY+site%2C+Health+%26+Beauty&border=%23ffffff%7C3px%2C1px+solid+%23999999&output=js HTTP/1.1
Host: www.gmodules.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 117
Server: GSE
www.google.com/buzz/api/button.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 58dc36fb23d2dcf3ccb3668bf07b59c4
6936e4038682706c7733477ac62ef3e448949edb
66bccd3fa212c7a2ac4d60e86e024e101f80f11ccc3a3556d113140aafd6662d
GET /buzz/api/button.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Wed, 26 Oct 2022 03:48:41 GMT
Server: sffe
Content-Length: 1579
X-XSS-Protection: 0
www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.221.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 26 Oct 2022 03:48:41 GMT
Connection: keep-alive
Content-Length: 0
www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cdcd1e.jpg
47.246.44.231200 OK 40 kB URL HTTP/1.1 www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cdcd1e.jpg
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 333x480, components 3\012- data
Hash 1a2da79337b8f31b1c645e469ea8367c
d9a66da2f9e0479ff511225960b8ff2fada205b2
48e78cdbea7a7017f93f83c71550d7355197b7fcaf19bb682f541f30d7cdcdef
GET /showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cdcd1e.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 40419
Connection: keep-alive
Date: Wed, 26 Oct 2022 03:15:30 GMT
Last-Modified: Sun, 27 Sep 2009 01:05:21 GMT
ETag: "4abeba51-9de3"
Expires: Wed, 26 Oct 2022 03:45:30 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666754175
Via: cache11.l2de2[0,0,200-0,H], cache26.l2de2[5,0], cache3.se1[127,127,200-0,M], cache3.se1[131,0]
Age: 1946
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 26 Oct 2022 03:48:41 GMT
X-Swift-CacheTime: 257254
Timing-Allow-Origin: *
EagleId: 2ff62c9716667561218024714e
www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc431b.jpg
47.246.44.231200 OK 69 kB URL HTTP/1.1 www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc431b.jpg
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x640, components 3\012- data
Hash 7967cd637dda49074a3344419f8f7d0f
ea9347a11d6adab34625ba955661f98482cabde4
a0022a97d1ce32b09996deae661eb93be5b0a2184b36d6772bb2f2ec11c70b51
GET /showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc431b.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 68580
Connection: keep-alive
Date: Tue, 25 Oct 2022 23:52:41 GMT
Last-Modified: Sun, 27 Sep 2009 01:05:21 GMT
ETag: "4abeba51-10be4"
Expires: Wed, 26 Oct 2022 00:22:41 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666742006
Via: cache14.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache1.se1[124,123,200-0,M], cache5.se1[126,0]
Age: 14115
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 26 Oct 2022 03:48:41 GMT
X-Swift-CacheTime: 245085
Timing-Allow-Origin: *
EagleId: 2ff62c9916667561218024749e
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2660
Cache-Control: max-age=139809
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:38:51 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.globetrackr.com/?f
52.128.23.153200 OK 773 B IP 52.128.23.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d8f7063ad69d6c7a76db9eb227cfb46
4f258985802a709b4e301fc8a8111274bb610b27
e97d05836d4e298fb115e318ac80920de10a6bcd7d2f0e621a5ff1fa8fc619f2
GET /?f HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 26 Oct 2022 03:48:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
X-DIS-Request-ID: a09b6a37e38832632be2dd4c9c966c0b
P3P: CP="NON DSP COR ADMa OUR IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Encoding: gzip
farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
143.204.48.75301 Moved Permanently 167 B URL HTTP/1.1 farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
IP 143.204.48.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /6170/6180570556_15a926428e_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fx9R26Y_r7zLJlAdFmJ4YVAZVnvkMFg454GzLliF57JHv3Yn2yyJfA==
farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
143.204.48.75301 Moved Permanently 167 B URL HTTP/1.1 farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
IP 143.204.48.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /6177/6180570362_3eeacc7e9f_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sjm1nBuT7If4dL8iNgAgr_a6NgaOjVX37nb2avm9UZAa5uIf4hDjTw==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6349
Cache-Control: max-age=108235
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:52:37 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html&layout=standard&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: V6OwNLo66cLOMwptC4MrMsAq07vTEOThSe5YWqcRl+vFHgQhWbx78fy3K/EVzt+Ric2FGVX/CXDfbJrgYy15VQ==
content-length: 0
date: Wed, 26 Oct 2022 03:48:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.blogger.com/img/logo-16.png
142.250.74.105200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 142.250.74.105:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 21 Oct 2022 07:12:16 GMT
Expires: Fri, 28 Oct 2022 07:12:16 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 20 Oct 2022 14:00:42 GMT
Content-Type: image/png
Age: 419786
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2660
Cache-Control: max-age=139809
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:38:51 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
photoserver.ws/images/J7rK4ec124a37b7c8.jpg
64.70.19.203200 OK 478 B URL HTTP/1.1 photoserver.ws/images/J7rK4ec124a37b7c8.jpg
IP 64.70.19.203:0
ASN #3561 CENTURYLINK-LEGACY-SAVVIS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa86f8a7448401cfee04397b3fcc55b1
d6d241098a23efede5ac01efe7e3c5f69ae92989
131d29852592b7b5ea2ff4466a0ab4f688d36a7e815071703f86052dea6cf7f3
GET /images/J7rK4ec124a37b7c8.jpg HTTP/1.1
Host: photoserver.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 478
Connection: keep-alive
Allow: GET,HEAD
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
52.128.23.153302 Found 0 B URL HTTP/1.1 www.globetrackr.com/dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png
IP 52.128.23.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynimg/7ac238d585a683763774e47104eb2b34/150-FFFFFF-F0FFFF-A2C257-5-5/display.png HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.6.33-0+deb8u1
Location: http://www.globetrackr.com/?f
Set-Cookie: SRV=lander04|Y1iuH|Y1iuH; path=/
X-DIS-Request-ID: d9e4dd279ea4cae76300186683e54d6c
www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc531d.jpg
47.246.44.231200 OK 76 kB URL HTTP/1.1 www.chinadaily.com.cn/showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc531d.jpg
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x640, components 3\012- data
Hash fabaad1dfb1fe4041f8a9e7a858fac84
4272835cd2370159330e21430c47c6b066f7a055
eaa4175c646f0fdaad711a0790d6c96157d1a1bd6c2ee679b66cfd45d9b30fd2
GET /showbiz/images/attachement/jpg/site1/20090922/00221917dec40c22cc531d.jpg HTTP/1.1
Host: www.chinadaily.com.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpeg
Content-Length: 76516
Connection: keep-alive
Date: Wed, 26 Oct 2022 03:47:57 GMT
Last-Modified: Sun, 27 Sep 2009 01:05:21 GMT
ETag: "4abeba51-12ae4"
Expires: Wed, 26 Oct 2022 04:17:57 GMT
Cache-Control: max-age=1800
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1666756122
Via: cache16.l2de2[383,412,200-0,H], cache21.l2de2[414,0], cache1.se1[537,536,200-0,M], cache5.se1[538,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Wed, 26 Oct 2022 03:48:42 GMT
X-Swift-CacheTime: 259200
Timing-Allow-Origin: *
EagleId: 2ff62c9916667561218024748e
push.services.mozilla.com/
52.40.161.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.161.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JiZTDjYMI9ZqlhylLQkraQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NeSgOlpsYYEt9Jj9O7C5JqEw8ko=
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fjeannytsy.blogspot.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 493486
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
astore.amazon.com/jeannytsy-20
176.32.98.40503 Service Unavailable 355 B URL HTTP/1.1 astore.amazon.com/jeannytsy-20
IP 176.32.98.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a7a05cd0f47c4f23d59495171f351044
9a0d9cb2b0ef898dcd9b830de013f8e0179752d0
dfaf45c94689a50d29235179fb5ee1006ba62e7c2e0d1ca56d966cd95ce31a65
GET /jeannytsy-20 HTTP/1.1
Host: astore.amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 503 Service Unavailable
Date: Wed, 26 Oct 2022 03:48:42 GMT
Server: Server
Vary: Content-Type,Accept-Encoding,User-Agent
Last-Modified: Thu, 05 Jul 2018 20:40:47 GMT
ETag: "209-570468fd9f1c0-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
x-amz-rid: 0NEZCEF0KXJYR9QWE3YR
Content-Length: 355
Content-Type: text/html
rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.132.238301 Moved Permanently 163 B URL HTTP/1.1 rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.132.238:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c4bede7d6b8e56951ae0c0e194153af0
f11f69eaee4f3cd0c75d0f41f1f1d213a359d5b7
b691e78554674f4bb12223fcd4d40aa99c80a83f96d7c251eb116afb33c5fe8a
GET /e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: rcm.amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Server
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html
Content-Length: 163
Connection: keep-alive
Location: https://rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
www.globetrackr.com/?f
52.128.23.153200 OK 773 B IP 52.128.23.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d8f7063ad69d6c7a76db9eb227cfb46
4f258985802a709b4e301fc8a8111274bb610b27
e97d05836d4e298fb115e318ac80920de10a6bcd7d2f0e621a5ff1fa8fc619f2
GET /?f HTTP/1.1
Host: www.globetrackr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
X-DIS-Request-ID: 505a1107d3adb531a1bbdef51550c4ad
P3P: CP="NON DSP COR ADMa OUR IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Encoding: gzip
g-ecx.images-amazon.com/images/G/01/website/errors/503/generic.png
143.204.46.75200 OK 59 kB URL HTTP/1.1 g-ecx.images-amazon.com/images/G/01/website/errors/503/generic.png
IP 143.204.46.75:0
File type PNG image data, 500 x 300, 8-bit grayscale, non-interlaced\012- data
Hash f35d39ee1e85e39903dc0827a71779ba
ad136867ba8b419326f7c9e6e3b6135c7cf67cb3
8bc31ae58bf472efcde19f7495d4d392bd96936df12edc386db7e296001c8618
GET /images/G/01/website/errors/503/generic.png HTTP/1.1
Host: g-ecx.images-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://astore.amazon.com/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 58733
Connection: keep-alive
Server: Server
X-Amz-IR-Id: 64bd2b94-856a-4749-992b-1425b6dc7885
Surrogate-key: x-cache-607 /images/G/01/website/errors/503/generic
Timing-Allow-Origin: https://www.amazon.com
Edge-Cache-Tag: x-cache-607,/images/G/01/website/errors/503/generic
Access-Control-Allow-Origin: *
Last-Modified: Sat, 16 Jul 2011 00:20:23 GMT
X-Nginx-Cache-Status: HIT
Accept-Ranges: bytes
Date: Wed, 26 Oct 2022 03:00:13 GMT
Expires: Thu, 27 Oct 2022 02:16:30 GMT
Cache-Control: max-age=86400,public
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GbcNDD-a2ye5ymlxlf0qypNR2oaWa3Rpq5wg-W_la_DQDvUbcXWL3A==
Age: 5118
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f7d5a805746e2bc18d72a296102e8339
9387d72aa7f0b3e510efe8cc219081159885ec4e
747fc06e0d5f6233852c9c4b68f1679966ac7c86211b285db4c3b5d18bd036b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5630
Cache-Control: max-age=93093
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "635760c1-13a"
Expires: Thu, 27 Oct 2022 05:40:15 GMT
Last-Modified: Tue, 25 Oct 2022 04:06:25 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314
jeannytsy.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 jeannytsy.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: jeannytsy.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/2009/09/katie-holmes-spending-time-with-suri.html
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 26 Oct 2022 03:48:42 GMT
Date: Wed, 26 Oct 2022 03:48:42 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 17 Aug 2022 17:06:01 GMT
ETag: W/"2329d2ac8aa99a8624d9bc91d068a44bb0abe05853929da55b740c06ec76993e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
143.204.48.75200 OK 70 kB URL HTTP/2 farm7.static.flickr.com/6177/6180570362_3eeacc7e9f_z.jpg
IP 143.204.48.75:0
File type JPEG image data, baseline, precision 8, 533x400, components 3\012- data
Hash 9dab6c080903da1a48ad70aaf8171b7f
adcb5dd270ee52e7f00c4eb0cc8acd1d0d3b73ca
a3ab4811dbc98f56896ab944e773555f978f8b3cb2cc8c4079c38af5c01ff6cd
GET /6177/6180570362_3eeacc7e9f_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
date: Mon, 24 Oct 2022 02:31:01 GMT
edge-control: public, max-age=31536000
surrogate-control: public, max-age=31536000
cache-control: public, max-age=31536000
expires: Tue, 24 Oct 2023 02:31:01 GMT
imagewidth: 533
imageheight: 400
last-modified: Tue, 12 Feb 2019 09:33:51 GMT
etag: "ab27c5a1ccf92200d29859be6c15f45b.1"
streaming: false
origintype: X
server: Jubilee
quote: "I'm not a kid anymore, I'm one of you, one of the X-Men. It means more to me than anything in the world."
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
powered-by: Mutation/1.0
hiring: Change the world of photography with us. https://www.flickr.com/jobs/
ourvalues: Deliver Awesome (#3 of 5)
x-request-id: 9df56e7f
x-frame-options: DENY
p3p: CP="This is not a P3P policy. We respect your privacy."
x-env: a=live, b=jubilee, c=21738c41, e=b1cfc1fdb4a90fbd7ed7449176940c7c057c6af1
x-ttfb: 0.1718
x-ttdb-l: 69602
mib: 2
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ugtRVhHLUa3kkHi3cV61m5kGB5QP0k1cf9g1EYEIDPMGDcT0LaDQ3A==
age: 177461
X-Firefox-Spdy: h2
www4.clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
172.67.26.162301 Moved Permanently 185 B URL HTTP/1.1 www4.clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
IP 172.67.26.162:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a107aba61c93cdf7882a9c6750a4b8fc
8b9bea8c8373e3f0386e14134443c1873e3cf219
69758c97903bb258a8ccdea130baf19bb258861c475667b5320454d143bcbd3a
GET /counter/index2.php?url=http://jeaanyTSY.blogspot.com HTTP/1.1
Host: www4.clustrmaps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: http://clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
CF-Cache-Status: DYNAMIC
Set-Cookie: __cflb=02DiuG7P9ht1hwNUmckP7z8exG1gkXfLWtZFqFHV1JGtt; SameSite=Lax; path=/; expires=Thu, 27-Oct-22 02:48:42 GMT; HttpOnly
Server: cloudflare
CF-RAY: 760037c69ad60b59-OSL
farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
143.204.48.75200 OK 32 kB URL HTTP/2 farm7.static.flickr.com/6170/6180570556_15a926428e_z.jpg
IP 143.204.48.75:0
File type JPEG image data, baseline, precision 8, 533x400, components 3\012- data
Hash 50f7d87f0f602ffc228c33c8c026df54
b601c5b902412c2c95c9231bdb6c490017bdc115
00f5921f06f011369e9a7356dd2efc582500c4c9d4b1329038fc9ac0f10ca646
GET /6170/6180570556_15a926428e_z.jpg HTTP/1.1
Host: farm7.static.flickr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
date: Mon, 24 Oct 2022 02:31:01 GMT
edge-control: public, max-age=31536000
surrogate-control: public, max-age=31536000
cache-control: public, max-age=31536000
expires: Tue, 24 Oct 2023 02:31:01 GMT
imagewidth: 533
imageheight: 400
last-modified: Thu, 11 Apr 2019 22:02:35 GMT
etag: "ec5461f0192fe74517e16b45b6c3ce1c.1"
streaming: false
origintype: X
server: Jubilee
quote: "I'm not a kid anymore, I'm one of you, one of the X-Men. It means more to me than anything in the world."
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
powered-by: Mutation/1.0
hiring: Change the world of photography with us. https://www.flickr.com/jobs/
ourvalues: Grow Together (#1 of 5)
x-request-id: 7fabbf16
x-frame-options: DENY
p3p: CP="This is not a P3P policy. We respect your privacy."
x-env: a=live, b=jubilee, c=4cf206a9, e=b1cfc1fdb4a90fbd7ed7449176940c7c057c6af1
x-ttfb: 0.23
x-ttdb-l: 72354
mib: 2
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CveTlGrxQl6x39dFW0xOzyFzaOkHVOX02MHfJ38WzuPeQufGD3lDHA==
age: 177461
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 488 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Hash fc9a0981e00ffe21902b8d9ce3808937
daf72ca268a8e1ee8198664110f098a0109ed39c
698333640a85101155ac5918aa63a4836f41e940bef2fa1e3ab4cf361ee3aae4
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D1412683674746141522%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D5378162810086309282%26origin%3Dhttp://jeannytsy.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 26 Oct 2022 03:48:42 GMT
location: https://www.blogger.com/followers.g?blogID=1412683674746141522&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3YTlkMjgiByMzMzY2OTkqByNGRkZGRkYyByNmZjY2OTk6ByM3YTlkMjhCByMzMzY2OTlKByM3YTlkMjhSByMzMzY2OTlaC3RyYW5zcGFyZW50&pageSize=21&postID=5378162810086309282&origin=http%3A%2F%2Fjeannytsy.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-bN_sG4D4wAd1DOTHVhTeGQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 488
server: GSE
set-cookie: __Host-GAPS=1:PYauPOUyp9vbQ4rn3Fo_TfquTU33VQ:4EupSEhCD3a9fMUM;Path=/;Expires=Fri, 25-Oct-2024 03:48:42 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
192.229.233.25200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 5d0940862723a20bb4f2dab2b7af9bb4
c1aab96ed293f46fb5a53aa6b1109dd280c430b3
dbe59da44cbbbc83c10daf0c0a53d1c4c53105f82b77fecd0beb84a67c13525a
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 493485
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Wed, 26 Oct 2022 03:48:42 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
192.229.233.25200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401)
Hash b50f912e0a65c3b77c131fcb005702e1
e5f14c4424cfc884f127b83a19c035bb2a14d91e
ee1c07313336a3d9f216f01365553e0094c36a4997ceef98f5ce5e60eda30a15
GET /widgets/follow_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 493480
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 26 Oct 2022 03:48:43 GMT
Etag: "d054dcf1d4f9930ca9bb4901678a35a7+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 15129
platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
192.229.233.25200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash dcb83b699eb06319b25d6358a99ebf24
b3e7a54a54ff64f7ab997a0695eb3edec5efc180
ca69f6c092f02935c8dbf6bd7ba33325e6343052396cff6b4e08f544194a5a16
GET /widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 493485
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 26 Oct 2022 03:48:43 GMT
Etag: "5f5bf2b99100f854c01f4f321282f861+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:24 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.132.238302 Found 298 B URL HTTP/1.1 rcm.amazon.com/e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.132.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9ab9e8a24c52b3ead6ffc16fbacaf1e9
6bf08741cd846da21e7935cf78e60dae9f7993e5
e033a5d4fa26a931213949d2f163163ed721a30f8bd9b9ef1470650ab09c3727
GET /e/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: rcm.amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Wed, 26 Oct 2022 03:48:42 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 298
Connection: keep-alive
x-amz-rid: KWV4TVA3QNR420WZCVBV
Location: https://ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=300; includeSubDomains; preload
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120111%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120111%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120111%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 03:48:42 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 26 Oct 2022 03:48:43 GMT
content-length: 43
x-transaction-id: 822427e2c4736d44
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 16ab450eb1f052d68a390c96f491f99063f6b144e5fa317b7bd834bfb5ac1146
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120112%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120112%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F2009%2F09%2Fkatie-holmes-spending-time-with-suri.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1666756120112%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5056a6b049464f25171ce6fe2628ec90c91fc94c HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jeannytsy.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 03:48:42 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 26 Oct 2022 03:48:43 GMT
content-length: 43
x-transaction-id: f13332bf7b745eb6
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 16ab450eb1f052d68a390c96f491f99063f6b144e5fa317b7bd834bfb5ac1146
X-Firefox-Spdy: h2
clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
172.67.26.162200 OK 16 kB URL HTTP/1.1 clustrmaps.com/counter/index2.php?url=http://jeaanyTSY.blogspot.com
IP 172.67.26.162:0
File type PNG image data, 180 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 8722c0356b939d30628e9be4c8b54b12
1a2ecbad833dea5c9f383b497d4e10f9aaa9924d
92d65fe96da997d56acb1bd906081322de4d098fa5dc1b99b52b5b0a40359823
GET /counter/index2.php?url=http://jeaanyTSY.blogspot.com HTTP/1.1
Host: clustrmaps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 03:48:43 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
CF-Cache-Status: DYNAMIC
Set-Cookie: PHPSESSID=592bqn71mcqialv4kmgl5gd4kb; path=/
__cflb=02DiuHcKAbFByoMNpCm2pwEYdkg7AhCZEfbHUhwYLRieG; SameSite=Lax; path=/; expires=Thu, 27-Oct-22 02:48:43 GMT; HttpOnly
Server: cloudflare
CF-RAY: 760037c7f8940b41-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b1248426e14ddfef947b16ba9273ee31
9e28b2d58cb43b8c13bfe931922be7dcb5e9452e
69c36d6d31ee1ef00925fb2404294e54b163f04713567b8fe7e05b7f4b2672d5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114577
Date: Wed, 26 Oct 2022 03:48:43 GMT
Etag: "6357b7f2-1d7"
Expires: Thu, 27 Oct 2022 11:38:20 GMT
Last-Modified: Tue, 25 Oct 2022 10:18:26 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jNI46_5d61Al5BaT_lgsFzFXo4aLQcAbOZYYG9vPsDYFOJFfUuZT4Q==
Age: 4794
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4479
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4479
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4479
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4479
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4479
Expires: Wed, 26 Oct 2022 05:03:22 GMT
Date: Wed, 26 Oct 2022 03:48:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qxBQMJAnYNJVLBf5LSOTC7v3hPl9sh-G-OIqrK7d5KpdVITaQCcGMA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:47:18 GMT
age: 21685
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffefed59982fc01dd8df2f14cea499ca
abab3e94679d0c3e2cbecbda2e9a789a7fe17873
0c9e876f3f638aa4148aecdd77722e5091a2bb47ac30e4367505a1ebe39535d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9355
x-amzn-requestid: eb558ca7-8a59-4135-85c8-f0fd5afd30fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ35EV2oAMF_4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585698-0ea5ca6a1f03dd6174ac208c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:20 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kCkZee35C72NmGRZ7BNRLkag29lRxJV0VHDycTNZOJXhosKdjsOxPg==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:52:53 GMT
age: 21350
etag: "abab3e94679d0c3e2cbecbda2e9a789a7fe17873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 09cb7bc8ddfe92c1130dbabd27512fc4
b8eec3e24a3960e1a65b8ae69a0e9648275d7af7
cd6b9cc817d8ce64a8a8f51cbee96343fc26b51d9f2dc8f905303c3c28f5b6da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2792ca2-a8f4-4e81-bcd4-6622a0af2bb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6737
x-amzn-requestid: 7cc81b57-158b-4304-95dc-c0373f710537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alL-kFQPoAMFt7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635859f6-5b43711d2040d32f7a7cfcbd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:49:42 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v7QWR9jPfLG67Woq6TFAFpG2j82t7l2RCYtg_WXBZcgEIR7WuLrwuQ==
via: 1.1 94be61e339880d0097634de6934f7710.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:52:53 GMT
etag: "b8eec3e24a3960e1a65b8ae69a0e9648275d7af7"
content-type: image/jpeg
age: 21350
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 77f26048280036eede4e216d7ac2ed6f
619dff28900195c0d76692c6695c610c57fde4f2
d17b83d8de3794b198bd371579ca3447639f53121eb463b6eb0a766fe7f0103c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4eccb336-aab3-4c45-986e-3d5c068fa95f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4545
x-amzn-requestid: 79cb9387-d637-49b8-9a2d-6d372c793b79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2hFLUoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568f-4b5bd9d432820d313641ce7c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AZtv67bO63atc0XPPRa8j0DVq8srEip-Ucqx5OE2RdEcNrZuJOeOBw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:05:36 GMT
age: 20587
etag: "619dff28900195c0d76692c6695c610c57fde4f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:34:40 GMT
age: 11643
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3465df02-acc8-43a4-a5c3-59b1bf712976.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3465df02-acc8-43a4-a5c3-59b1bf712976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 436153885058f9c28db0d54be5e2ee3a
d450385633ace2a527c3d2d32bac6be767c2f368
d5942480d96b983a893dc4ea7c96ce56f470179a0660ac8a02bf87c48f26062d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3465df02-acc8-43a4-a5c3-59b1bf712976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7459
x-amzn-requestid: b541ff98-ec10-48a0-a13d-34543890042e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2GGc7IAMFdsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568d-639b4ffe29e953df6df418d1;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QqEGrgwaiWAvQ2ujEXejHvqQFqQyr_9Lwf-VYoWx917dL7EuJZs4Jw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:05:36 GMT
age: 20587
etag: "d450385633ace2a527c3d2d32bac6be767c2f368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
52.46.135.132200 200 45 kB URL HTTP/1.1 ws-na.assoc-amazon.com/widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr
IP 52.46.135.132:0
File type HTML document, ASCII text, with very long lines (574)
Hash 9bf6eb9596d62a24522aec7dc0be159b
68686bf7aaea44fbc61f80c0c3ee302dac2d47d8
7b9036c90593a99cc3f2a1980796d447bb301fd61ea96b14522447ef9c73c9b7
GET /widgets/cm?t=jeannytsy-20&o=1&p=14&l=ur1&category=apparel&f=ifr HTTP/1.1
Host: ws-na.assoc-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 200
Date: Wed, 26 Oct 2022 03:48:43 GMT
Server: Server
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
p3p: policyref="http://www.amazon.com/w3c/p3p.xml",CP="CAO DSP LAW CUR ADM IVAo IVDo CONo OTPo OUR DELi PUBi OTRi BUS PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA HEA PRE LOC GOV OTC "
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 44564
Vary: User-Agent
Connection: close
Content-Type: text/html;charset=UTF-8
images-na.ssl-images-amazon.com//images/G/01/rcm/160x600.gif
151.101.85.16200 OK 26 kB URL HTTP/2 images-na.ssl-images-amazon.com//images/G/01/rcm/160x600.gif
IP 151.101.85.16:0
File type GIF image data, version 89a, 160 x 600\012- data
Hash b6ed46533669416573eac5b20561e34c
858e890bca84ab071dcae697bc6669f158667993
c6ada18b92c5b860b82e659246ad1053457d5deb186bf2373f8cc34fed99985d
GET //images/G/01/rcm/160x600.gif HTTP/1.1
Host: images-na.ssl-images-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
x-amz-ir-id: 6f1f318d-63a5-4e59-b6f6-3355e823dc85
expires: Wed, 07 Sep 2022 12:36:51 GMT
cache-control: max-age=86400,public
timing-allow-origin: https://www.amazon.com
access-control-allow-origin: *
last-modified: Tue, 04 Feb 2014 16:08:40 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
date: Wed, 26 Oct 2022 03:48:43 GMT
age: 65322
x-served-by: cache-iad-kjyo7100068-IAD, cache-bma1645-BMA
x-cache: HIT from fastly, HIT from fastly
server-timing: provider;desc="fy"
content-length: 26205
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 77d025205d8e2d8d2900950340c1e16a
29f037feb4ef54e0775e1991dc2b6b1c2166db65
15a81205a75f887e73d5f86b056fac3f034c0dc3710ba04c6ae48a23dbe57992
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112980
Date: Wed, 26 Oct 2022 03:48:44 GMT
Etag: "6357b698-1d7"
Expires: Thu, 27 Oct 2022 11:11:44 GMT
Last-Modified: Tue, 25 Oct 2022 10:12:40 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6ZLgmoXbmSEzLZdA4VfhugkIOV13CUhHd5MFsmgjUNWUGp6zy3FPKg==
Age: 3544
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 77d025205d8e2d8d2900950340c1e16a
29f037feb4ef54e0775e1991dc2b6b1c2166db65
15a81205a75f887e73d5f86b056fac3f034c0dc3710ba04c6ae48a23dbe57992
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113965
Date: Wed, 26 Oct 2022 03:48:44 GMT
Etag: "6357b698-1d7"
Expires: Thu, 27 Oct 2022 11:28:09 GMT
Last-Modified: Tue, 25 Oct 2022 10:12:40 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hkLWv1ALBgQXsOXODXNy_O_-h9TuRWaC7PQ9Hum3xAVwKaPvbuK5hA==
Age: 4530
fls-na.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1666756120859&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D
52.94.237.66200 OK 43 B URL HTTP/1.1 fls-na.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1666756120859&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D
IP 52.94.237.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1666756120859&logType=banner_impressions&p=%7B%22mobile_supported%22%3A%22true%22%2C%22action%22%3A%22onload%22%2C%22adunit_type%22%3A%22banners%22%2C%22adunit_properties%22%3A%7B%22height%22%3A%22%24%7Bheight%7D%22%2C%22width%22%3A%22%24%7Bwidth%7D%22%2C%22category%22%3A%22%24%7Bcampaigns%7D%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22%24%7Blinkid%7D%22%2C%22region%22%3A%22US%22%7D%2C%22logType%22%3A%22banner_impressions%22%7D HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: 52ab9ea1-767d-425a-8e64-3ee2ccfcd09c
Content-Type: image/gif
Content-Length: 43
Date: Wed, 26 Oct 2022 03:48:43 GMT
fls-na.amazon-adsystem.com/1/associates-ads/1/OP/?cb=1666756120861&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D
52.94.237.66200 OK 43 B URL HTTP/1.1 fls-na.amazon-adsystem.com/1/associates-ads/1/OP/?cb=1666756120861&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D
IP 52.94.237.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/?cb=1666756120861&p=%7B%22program%22%3A%221%22%2C%22tag%22%3A%22jeannytsy-20%22%2C%22linkCode%22%3A%22ur1%22%2C%22refUrl%22%3A%22http%3A%2F%2Fjeannytsy.blogspot.com%2F%22%2C%22panda%22%3Atrue%7D HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws-na.assoc-amazon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: 014826e6-e1f0-40b9-84e4-52fec5b2035f
Content-Type: image/gif
Content-Length: 43
Date: Wed, 26 Oct 2022 03:48:43 GMT
chitika.net/index.html
143.204.55.92200 OK 0 B IP 143.204.55.92:0
GET /index.html HTTP/1.1
Host: chitika.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jeannytsy.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 23 Feb 2022 00:46:50 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 25 Oct 2022 17:33:45 GMT
etag: W/"4a6dbd4a93e749e7d05a562308c95a32"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BN2qqMj2GJT9CrYQOrUAc41P9p-6Y-l2KTyukYPxR5YramTm8GPSDA==
age: 36897
X-Firefox-Spdy: h2