Overview

URLwww.mail3.staffupdate.net/45p59p1040q1904m176/1f7a1/16f80.html
IP 184.170.255.239 (United States)
ASN#46562 PERFORMIVE
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-30 00:02:41 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (61)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
cdn.cookielaw.org (7) 502 2014-05-20 23:23:17 UTC 2022-11-29 06:42:33 UTC 104.16.148.64
s.pinimg.com (2) 732 2018-07-08 20:06:47 UTC 2020-05-03 19:20:21 UTC 151.101.84.84
c.tvpixel.com (1) 8255 2018-09-25 06:23:22 UTC 2020-04-29 03:39:45 UTC 54.230.111.73
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.sectigo.com (8) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
ocsp.pki.goog (17) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
d3n78nkjl8tizo.cloudfront.net (32) 0 2022-11-04 12:24:43 UTC 2022-11-28 15:59:46 UTC 143.204.42.132 Unknown ranking
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-29 08:33:49 UTC 142.250.74.110
vars.hotjar.com (1) 1014 2020-11-05 16:23:46 UTC 2022-11-29 09:37:23 UTC 143.204.55.105
connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 31.13.72.12
bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2020-04-20 20:17:24 UTC 13.107.21.200
s.yimg.com (3) 375 2012-05-21 13:25:46 UTC 2020-03-08 23:51:03 UTC 188.125.94.204
www.ojrq.net (2) 8784 2017-08-21 02:02:26 UTC 2022-11-29 07:21:04 UTC 34.95.127.121
d3ss0gp3e5d7m3.cloudfront.net (17) 0 2022-11-03 14:25:39 UTC 2022-11-28 15:59:46 UTC 143.204.42.134 Unknown ranking
tr.snapchat.com (5) 978 2017-04-26 06:25:03 UTC 2022-05-17 21:54:32 UTC 35.190.43.134
stitchfix.rg35.net (2) 138725 2019-11-28 13:28:10 UTC 2022-11-29 21:06:36 UTC 54.228.173.33
9942532.fls.doubleclick.net (2) 145922 No data No data 142.250.74.70
servedby.flashtalking.com (3) 684 2012-12-27 17:42:00 UTC 2019-10-14 15:42:45 UTC 104.88.10.141
analytics.tiktok.com (5) 1182 No data No data 95.101.10.129
pixel.mathtag.com (4) 1199 2013-01-18 22:11:55 UTC 2020-02-13 09:24:21 UTC 23.38.200.207
q.quora.com (1) 3239 2018-08-31 02:53:50 UTC 2022-11-29 06:55:58 UTC 44.194.108.63
l.hrzn-nxt.com (1) 28045 2020-04-23 12:59:52 UTC 2022-11-29 09:02:41 UTC 54.230.111.28
alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2020-05-14 09:57:02 UTC 151.101.129.140
p.tvpixel.com (3) 1352 2018-06-23 02:04:13 UTC 2022-11-29 09:17:18 UTC 44.207.129.127
c.hrzn-nxt.com (1) 28870 2020-03-08 15:04:46 UTC 2022-11-29 09:02:41 UTC 54.230.111.19
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-29 09:35:58 UTC 142.250.74.106
stats.g.doubleclick.net (1) 96 2013-06-10 20:21:11 UTC 2022-11-29 09:50:49 UTC 74.125.131.156
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-29 07:36:52 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-29 05:51:44 UTC 34.117.237.239
geolocation.onetrust.com (1) 802 2018-09-01 13:33:45 UTC 2022-11-29 07:20:08 UTC 104.18.26.85
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-29 09:16:29 UTC 142.250.74.132
js.adsrvr.org (1) 1664 2014-10-28 22:25:15 UTC 2020-02-11 15:39:45 UTC 143.204.45.46
data.adxcel-ec2.com (1) 3678 2017-11-12 15:04:00 UTC 2022-11-29 09:29:27 UTC 34.204.227.63
web.chtbl.com (2) 10377 2018-12-20 07:17:21 UTC 2019-03-01 11:29:48 UTC 143.204.55.125
sp.analytics.yahoo.com (2) 816 2014-02-20 00:23:24 UTC 2020-02-06 05:43:37 UTC 212.82.100.181
assets.stitchfix.com (3) 126162 No data No data 54.230.111.92
sessions.bugsnag.com (2) 793 2017-12-08 07:32:15 UTC 2022-11-29 07:15:48 UTC 35.190.88.7
www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-11-29 08:15:17 UTC 142.250.74.163
www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2020-04-27 13:44:50 UTC 151.101.1.140
adservice.google.com (3) 76 2021-02-20 16:10:48 UTC 2022-11-29 09:56:39 UTC 142.250.74.2
ct.pinterest.com (7) 852 2015-03-12 08:12:48 UTC 2019-06-15 13:15:46 UTC 2.18.172.195
insight.adsrvr.org (1) 631 2014-03-25 22:33:59 UTC 2022-11-29 05:52:39 UTC 15.197.193.217
www.mail3.staffupdate.net (2) 0 2022-05-12 23:30:52 UTC 2022-11-18 14:52:04 UTC 184.170.255.239 Unknown ranking
ocsp.sca1b.amazontrust.com (7) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-29 06:48:06 UTC 142.250.74.168
unpkg.com (2) 11693 2016-01-07 23:26:01 UTC 2022-11-29 06:09:35 UTC 104.16.122.175
d.impactradius-event.com (1) 2612 2017-02-01 08:42:43 UTC 2022-11-29 06:29:28 UTC 35.186.249.72
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2020-04-26 08:32:02 UTC 54.230.111.113
googleads.g.doubleclick.net (2) 42 2021-02-20 15:43:32 UTC 2022-11-29 09:14:37 UTC 216.58.207.194
ext.chtbl.com (1) 10687 No data No data 143.204.55.110
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-29 05:48:55 UTC 34.102.187.140
sc-static.net (1) 1183 2022-01-24 20:13:30 UTC 2022-11-29 05:07:53 UTC 54.230.82.240
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
res.cloudinary.com (4) 2520 2012-10-03 08:31:44 UTC 2020-04-25 16:54:56 UTC 151.101.129.137
www.stitchfix.com (3) 72743 2018-11-21 12:26:28 UTC 2020-05-05 13:30:05 UTC 143.204.55.63
adservice.google.no (3) 96969 2018-06-19 23:38:38 UTC 2020-05-14 07:59:11 UTC 142.250.74.98
sb.scorecardresearch.com (1) 134 2021-05-18 20:09:14 UTC 2022-11-29 09:02:13 UTC 143.204.55.25
ocsp.digicert.com (12) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.191.251.76
8611748.fls.doubleclick.net (1) 145431 2018-06-28 01:31:50 UTC 2019-11-19 04:53:39 UTC 142.250.74.70

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-30 2 www.mail3.staffupdate.net/45p59p1040q1904m176/1f7a1/16f80.html Phishing
2022-11-30 2 www.mail3.staffupdate.net/45p59p1040q1904m176/1f7a1/16f80.html Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 184.170.255.239
Date UQ / IDS / BL URL IP
2022-12-01 16:08:58 +0000 0 - 0 - 1 www.mail3.staffupdate.net/153v167/114el1a2b/2 (...) 184.170.255.239
2022-11-30 00:02:41 +0000 0 - 0 - 2 www.mail3.staffupdate.net/45p59p1040q1904m176 (...) 184.170.255.239
2022-11-14 15:58:20 +0000 0 - 0 - 1 www.mail3.staffupdate.net/caideh10c5/197bk1fb (...) 184.170.255.239
2022-09-21 00:34:57 +0000 0 - 0 - 2 www.mail3.staffupdate.net/142/156/113dv1933o2 (...) 184.170.255.239
2022-09-12 13:42:58 +0000 0 - 0 - 2 www.mail3.staffupdate.net/147v15b/1142n1916s2 (...) 184.170.255.239


Last 5 reports on ASN: PERFORMIVE
Date UQ / IDS / BL URL IP
2023-01-31 06:09:03 +0000 0 - 2 - 2 www.sc3-1.us1.maxmail-us.com/2f9p30di4ddck4ae (...) 184.170.255.209
2023-01-31 05:08:12 +0000 0 - 0 - 2 www.cpe2.floodermax.com/63/77p4b9aw17ah76/d35 (...) 104.200.146.14
2023-01-31 01:16:20 +0000 0 - 0 - 2 www.cpe1.floodermax.com/249/25di4d77y397/255m (...) 107.181.162.228
2023-01-30 20:46:21 +0000 0 - 0 - 2 cpe2.floodermax.com/pub/unsubscribe.php?g=336 (...) 104.200.146.14
2023-01-30 20:36:22 +0000 0 - 0 - 2 www.mail1.staffupdate.net/17bz18f/1176/1aed/2 (...) 184.170.254.3


Last 5 reports on domain: staffupdate.net
Date UQ / IDS / BL URL IP
2023-01-30 20:36:22 +0000 0 - 0 - 2 www.mail1.staffupdate.net/17bz18f/1176/1aed/2 (...) 184.170.254.3
2022-12-01 16:08:58 +0000 0 - 0 - 1 www.mail3.staffupdate.net/153v167/114el1a2b/2 (...) 184.170.255.239
2022-11-30 01:26:01 +0000 0 - 0 - 2 www.mail1.staffupdate.net/2e2t2f6k12ddj1badw4 (...) 184.170.254.3
2022-11-30 00:02:41 +0000 0 - 0 - 2 www.mail3.staffupdate.net/45p59p1040q1904m176 (...) 184.170.255.239
2022-11-18 00:01:43 +0000 0 - 0 - 2 www.mail1.staffupdate.net/14fo163o114az1a09/2 (...) 184.170.254.3


No other reports with similar screenshot

JavaScript

Executed Scripts (73)

Executed Evals (27)
#1 JavaScript::Eval (size: 115) - SHA256: d8b609e15a1d911936743b699c69d060538eea2b845acc01f622f17be472f997
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(49)) return google_tag_manager["GTM-7RWHC"].macro(50) + 1
})();
#2 JavaScript::Eval (size: 115) - SHA256: b945c7363bf85de1a31a66bf2524840a37afa5183399101eb0dc16b12c8b3a8d
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(69)) return google_tag_manager["GTM-7RWHC"].macro(70) + 1
})();
#3 JavaScript::Eval (size: 220) - SHA256: 98cf567e9fdfb00d320c77ce794ac6d47053fb024ec9652437011c49c47f6356
(function() {
    var a;
    return a = void 0 != google_tag_manager["GTM-7RWHC"].macro(22) ? google_tag_manager["GTM-7RWHC"].macro(23) : void 0 != google_tag_manager["GTM-7RWHC"].macro(24) ? google_tag_manager["GTM-7RWHC"].macro(25) : null
})();
#4 JavaScript::Eval (size: 115) - SHA256: 3bf919f1b51082fb3743c6cae959a7f8ecee959c49cab7606a8039f3c5a8b1c3
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(44)) return google_tag_manager["GTM-7RWHC"].macro(45) + 1
})();
#5 JavaScript::Eval (size: 115) - SHA256: c9f76aa51f670cc02ebbb1bf875fdcf0d23c7c6dbcd65dc7f2c3c154f2ad3a2e
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(54)) return google_tag_manager["GTM-7RWHC"].macro(55) + 1
})();
#6 JavaScript::Eval (size: 115) - SHA256: 1138bd7455717b734ba88ba9bb377f9ea3f3493b06550b90b3ae04d4a642ebd5
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(64)) return google_tag_manager["GTM-7RWHC"].macro(65) + 1
})();
#7 JavaScript::Eval (size: 126) - SHA256: 2d3f6330223f0d5100eb554100f23a777b154bb86d4ab29a455804e129799977
(function() {
    var a;
    return a = void 0 == google_tag_manager["GTM-7RWHC"].macro(73) ? "" : google_tag_manager["GTM-7RWHC"].macro(74)
})();
#8 JavaScript::Eval (size: 131) - SHA256: 098f4d5167d34be2a3e731ece2dd454aff3ecd6a387fe5c12a4dae5c7d6c8fd8
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(80)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(81))
})();
#9 JavaScript::Eval (size: 66) - SHA256: ccad00d2bc8c9482c194c783c235dec803ef52524bc00f8cda3bb2fe9f9e4587
(function() {
    var a = window.location.href.split("?")[0];
    return a
})();
#10 JavaScript::Eval (size: 220) - SHA256: d66f90dbfc9b5fe6ab28e83609b9af4708d784e797b864db09b050f9119cf2ca
(function() {
    var a;
    return a = void 0 != google_tag_manager["GTM-7RWHC"].macro(14) ? google_tag_manager["GTM-7RWHC"].macro(15) : void 0 != google_tag_manager["GTM-7RWHC"].macro(16) ? google_tag_manager["GTM-7RWHC"].macro(17) : null
})();
#11 JavaScript::Eval (size: 220) - SHA256: b3da09b8615351e1801712dda22309c18975ee8b68597557c2ddf94073d55541
(function() {
    var a;
    return a = void 0 != google_tag_manager["GTM-7RWHC"].macro(26) ? google_tag_manager["GTM-7RWHC"].macro(27) : void 0 != google_tag_manager["GTM-7RWHC"].macro(28) ? google_tag_manager["GTM-7RWHC"].macro(29) : null
})();
#12 JavaScript::Eval (size: 131) - SHA256: 4114499f0b669fd6e7def3dd2be0682fd9beec460a652ed1ee3e6ceb62fae579
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(66)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(67))
})();
#13 JavaScript::Eval (size: 54) - SHA256: 5d0167a74e25fd37571a01a274d49c368c7436a36bbdc7d976922066a98f1cf3
(function() {
    return window.location.hash.substr(1)
})();
#14 JavaScript::Eval (size: 131) - SHA256: 5c4ff2d8828fe1da20a74ac7c7316c39e793439dcc1cb4842ba6e4221e58b63b
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(51)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(52))
})();
#15 JavaScript::Eval (size: 115) - SHA256: 86a6e89e7644490a1b034917cf54ab81d3c48b574cd798b6d5c9726749af1b1f
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(59)) return google_tag_manager["GTM-7RWHC"].macro(60) + 1
})();
#16 JavaScript::Eval (size: 129) - SHA256: daacf031f5473b9248677dc1ca98b0bf845f99db286feec5ccc11ba581544dcd
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(4)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(5))
})();
#17 JavaScript::Eval (size: 129) - SHA256: a168a4655bc590b460b213a6346e780144786b6a7e01ceb9a1c8c47205412bb7
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(8)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(9))
})();
#18 JavaScript::Eval (size: 220) - SHA256: 2b8b529ea1e63530e2b01265d8b94c4a20b59029c422a32279cf665e93cb7ba4
(function() {
    var a;
    return a = void 0 != google_tag_manager["GTM-7RWHC"].macro(18) ? google_tag_manager["GTM-7RWHC"].macro(19) : void 0 != google_tag_manager["GTM-7RWHC"].macro(20) ? google_tag_manager["GTM-7RWHC"].macro(21) : null
})();
#19 JavaScript::Eval (size: 131) - SHA256: ca6e35041217444d337f8625b0fdcbdb88cf5c50ff9156987fbd6c5d39348469
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(56)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(57))
})();
#20 JavaScript::Eval (size: 113) - SHA256: ba578855ec11eb4c16e104afed521a32ad839daca7d20276a3b729dd96536ac3
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(6)) return google_tag_manager["GTM-7RWHC"].macro(7) + 1
})();
#21 JavaScript::Eval (size: 131) - SHA256: cf9e959c912a4d927d96b8e31377347919ab06c18bc4d3ac1d84c58a8c55de20
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(46)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(47))
})();
#22 JavaScript::Eval (size: 131) - SHA256: 88e0725413fe9e78f53acde3c7b042e08fef2555456072d454767dad5b56d7d6
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(61)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(62))
})();
#23 JavaScript::Eval (size: 113) - SHA256: b0f1e07a274312cb34bf95588b8a453894fd77bb9c37762a0e0afdbebfb876c2
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(2)) return google_tag_manager["GTM-7RWHC"].macro(3) + 1
})();
#24 JavaScript::Eval (size: 131) - SHA256: 2d41c11203cbbb919751db19041b58cc371f7c6c87eda132c4b326b49779fc80
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(71)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(72))
})();
#25 JavaScript::Eval (size: 115) - SHA256: 42ab6b1979f1b491a45ce0501f0be7e44c2fc011fd9b31c936bc71d9e8b4beeb
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(78)) return google_tag_manager["GTM-7RWHC"].macro(79) + 1
})();
#26 JavaScript::Eval (size: 115) - SHA256: d20cb3aed49cd10c32854de0e956883c1d34fcf5a120a8b38d768d75747fc2db
(function() {
    if (0 <= google_tag_manager["GTM-7RWHC"].macro(10)) return google_tag_manager["GTM-7RWHC"].macro(11) + 1
})();
#27 JavaScript::Eval (size: 131) - SHA256: 8746448f6b68b83254fbb37f5d6b217ab329e2b029761d08b184fb419456e23f
(function() {
    return parsefloat(google_tag_manager["GTM-7RWHC"].macro(12)) + parsefloat(google_tag_manager["GTM-7RWHC"].macro(13))
})();

Executed Writes (0)


HTTP Transactions (212)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5831
Expires: Wed, 30 Nov 2022 01:39:39 GMT
Date: Wed, 30 Nov 2022 00:02:28 GMT
Connection: keep-alive

                                        
                                            GET /45p59p1040q1904m176/1f7a1/16f80.html HTTP/1.1 
Host: www.mail3.staffupdate.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         184.170.255.239
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 30 Nov 2022 00:02:28 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Location: https://www.mail3.staffupdate.net/45p59p1040q1904m176/1f7a1/16f80.html
Content-Length: 278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   278
Md5:    5569f40ee6ba50df0ecb781ce1c6c8e4
Sha1:   18dafbe45733b2ebf87b552c9e057706c52682ee
Sha256: 374f3afb53754720aa03bfb58c24f07de8c4c33bf41058d61f151bae456f9f9c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Accept-Ranges: bytes
Age: 1190
Cache-Control: public, max-age=1209600
Date: Wed, 30 Nov 2022 00:02:28 GMT
Etag: "638651c5-37"
Last-Modified: Tue, 29 Nov 2022 18:39:01 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 55


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   55
Md5:    9f073354411bbaf7a319b1519f10b4b7
Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68
Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 23:19:38 GMT
cache-control: public,max-age=3600
age: 2570
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3039
Expires: Wed, 30 Nov 2022 00:53:07 GMT
Date: Wed, 30 Nov 2022 00:02:28 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: uSyykEAJQGM4ZtQaReoZsApxFWu4K9AE21BpV0O1nCuAhWUx6/f0kPAChMxoXwQxw6ZBUuvgjAc=
x-amz-request-id: FQCVRHS12F2CAD8T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 23:45:39 GMT
age: 1010
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 30 Nov 2022 00:02:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 23:08:56 GMT
cache-control: public,max-age=3600
age: 3213
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B56B7D4B220544E1CDA8EFF50CD704A30612D855950AB1B88B94B8C9A6F4585A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13091
Expires: Wed, 30 Nov 2022 03:40:40 GMT
Date: Wed, 30 Nov 2022 00:02:29 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6099
Cache-Control: max-age=125157
Date: Wed, 30 Nov 2022 00:02:29 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:48:26 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yMavNW5oDmtjibSYmnO0mg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.191.251.76
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aQvT81rIcL8f5v/IoWwNfVvCrgA=

                                        
                                            GET /45p59p1040q1904m176/1f7a1/16f80.html HTTP/1.1 
Host: www.mail3.staffupdate.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         184.170.255.239
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 30 Nov 2022 00:02:29 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 154
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   154
Md5:    17cd9c2f7cef8f4fe0cecb7d2004fcc8
Sha1:   04b9ef28fa726469fb376ec808bf47843c965615
Sha256: 7f6e5e5317f048ccd0c36ca988543905fad774fe67c0d98cc945b0e39a6474bb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8055
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8055
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8055
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:02:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 6659
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7971
Md5:    9e135c29a8769eb12ef8c26f99097400
Sha1:   87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d
Sha256: ce41ff79c382efc54aa2fd3ab64293d2d2b706a7f21585f4bd8bbcd9a3566126
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7f230eb-6b67-4a80-b973-d8ea78fe73ae.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12853
x-amzn-requestid: 25e4402d-98d0-4c38-a927-397c37724bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhdpHAuIAMFweQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c57-506672a36959d9ea09ef5155;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHL2sFE-o1u5kEIUiabbP6u5CXr3ihI4mKiAVkfReyuJuTF5k5ktSg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:48 GMT
age: 8263
etag: "151b60134a66305bd72dbb3810f67a57720b2af1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12853
Md5:    e08af5b1d18986e112913c6e69cc8ce6
Sha1:   151b60134a66305bd72dbb3810f67a57720b2af1
Sha256: 555a62d98f4002ad187a6b480d534a1dbe3c64d1f4d17cffad2ab985c10ca462
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d64lSE184IwrwZKVC8KOUINEBclth9b7xRGV9T1uNfAptgXz0bxKhw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:14:25 GMT
age: 6486
etag: "05f46985ea4ace57460120876da8e19db08857b3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8885
Md5:    8825a2c5c0d98323f489e0b816b7f1d8
Sha1:   05f46985ea4ace57460120876da8e19db08857b3
Sha256: 1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13195
x-amzn-requestid: 1303b72c-fe18-46a3-b3c1-06f3b8550d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvHW6oAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1b3dbbb005a238117076d1f3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pw2Wm8mI8MxRAOVsdvvWLEuxPN5ffcgWBZ_KecuuS5stoTHF4hxECg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:49 GMT
age: 8262
etag: "6004b4b7afd22dded903f026d245bc90a6706767"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13195
Md5:    9fb14804c284e300f976848e30396e9c
Sha1:   6004b4b7afd22dded903f026d245bc90a6706767
Sha256: 1cf96b0b6c83f182d018fa4ffb9924038bf282755091e7bacff2a624220260d5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dTu4TnkeBj5Jm6nU8CA37pptq4F43BUYXcAJPcXro47W1MJriiVrcw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:35 GMT
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
age: 8276
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9670
Md5:    33ee67e62c49fc8d51f18df313002aac
Sha1:   3d8c927b6945d880f92d4e7a686cad5a9985e8ad
Sha256: ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7a6f598-362e-4a6c-ba04-330df636e33b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8498
x-amzn-requestid: f6b92060-88d4-49bd-b60e-94d99feca4e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYiBaGPOIAMFu1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867d3c-331dacfb087d23881924eef9;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:44:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Zv5zu1q8h4GFU6agEcDzSVFYuvF74qu7UBnovs3vH5jpu17cmyxjQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:50 GMT
age: 8261
etag: "127ac68bac21c88ffc6e09cc6666e93de4746a1f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8498
Md5:    f3c7e8351884491aeab9323c004bc3f3
Sha1:   127ac68bac21c88ffc6e09cc6666e93de4746a1f
Sha256: e6fa04c502105c43c85c00d39481d2598c6d8fd56540e10107b6668c51597ae4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 55
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92290
Date: Wed, 30 Nov 2022 00:02:31 GMT
Etag: "638556e5-1d7"
Expires: Thu, 01 Dec 2022 01:40:41 GMT
Last-Modified: Tue, 29 Nov 2022 00:48:37 GMT
Server: ECS (dcb/7EC7)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1EVQM5qkFhuqTRbGXHkiC2gf_nuhwCOm0uB1hje9n3TInUewJ1pigw==
Age: 3124


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   55
Md5:    9f073354411bbaf7a319b1519f10b4b7
Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68
Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
                                        
                                            GET /c/20445/1337566/8369?subId1=M11 HTTP/1.1 
Host: stitchfix.rg35.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mail3.staffupdate.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         54.228.173.33
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
date: Wed, 30 Nov 2022 00:02:31 GMT
content-length: 239
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fstitchfix.rg35.net%2Fc%2F20445%2F1337566%2F8369%3FsubId1%3DM11%26level%3D1%26srcref%3Dhttps%253A%252F%252Fwww.mail3.staffupdate.net%252F&cid=8369&tpsync=yes
set-cookie: AWSALB=v2De6LmtwtWzzKykstUHVXW9KehvWYJXBajt8QwWO9iQ3om+2s0VKrDZNYJ8P4Rmu9D+L29YyrHXloQpivOqcm7AEJFXuk6bKiLRM16EFkXMZ2m1RLgukm2leOT3; Expires=Wed, 07 Dec 2022 00:02:31 GMT; Path=/ AWSALBCORS=v2De6LmtwtWzzKykstUHVXW9KehvWYJXBajt8QwWO9iQ3om+2s0VKrDZNYJ8P4Rmu9D+L29YyrHXloQpivOqcm7AEJFXuk6bKiLRM16EFkXMZ2m1RLgukm2leOT3; Expires=Wed, 07 Dec 2022 00:02:31 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Wed, 30 Nov 2022 00:02:31 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   239
Md5:    910301f756f4981560773d5768106c28
Sha1:   52653e822f60d0dd680e70966194f4bfbfe4ddf6
Sha256: 415d5258d65dbb3cde8d9087aee52af89653ce9cbde17ec9b66beda6a0406750
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:31 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 17:55:44 GMT
Expires: Tue, 06 Dec 2022 17:55:43 GMT
Etag: "160979453f3fd95d913192795fce2738fd7f925e"
Cache-Control: max-age=582191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771f5092892eb4ed-OSL

                                        
                                            GET /p/?return=https%3A%2F%2Fstitchfix.rg35.net%2Fc%2F20445%2F1337566%2F8369%3FsubId1%3DM11%26level%3D1%26srcref%3Dhttps%253A%252F%252Fwww.mail3.staffupdate.net%252F&cid=8369&tpsync=yes HTTP/1.1 
Host: www.ojrq.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mail3.staffupdate.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         34.95.127.121
HTTP/2 302 Found
                                        
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Wed, 30 Nov 2022 00:02:31 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=49375a5d-7042-11ed-9ec9-d90eb3934b0f; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Tue, 19 Nov 2024 00:02:31 GMT; HttpOnly; SameSite=None
location: https://stitchfix.rg35.net/c/20445/1337566/8369?subId1=M11&level=1&srcref=https%3A%2F%2Fwww.mail3.staffupdate.net%2F&brwsr=49375a5d-7042-11ed-9ec9-d90eb3934b0f&brwsrsig=TbxVjGzoPVhPX6Qxks15iQsWXUTUV9
content-length: 0
date: Wed, 30 Nov 2022 00:02:31 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /c/20445/1337566/8369?subId1=M11&level=1&srcref=https%3A%2F%2Fwww.mail3.staffupdate.net%2F&brwsr=49375a5d-7042-11ed-9ec9-d90eb3934b0f&brwsrsig=TbxVjGzoPVhPX6Qxks15iQsWXUTUV9 HTTP/1.1 
Host: stitchfix.rg35.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mail3.staffupdate.net/
Connection: keep-alive
Cookie: AWSALB=v2De6LmtwtWzzKykstUHVXW9KehvWYJXBajt8QwWO9iQ3om+2s0VKrDZNYJ8P4Rmu9D+L29YyrHXloQpivOqcm7AEJFXuk6bKiLRM16EFkXMZ2m1RLgukm2leOT3; AWSALBCORS=v2De6LmtwtWzzKykstUHVXW9KehvWYJXBajt8QwWO9iQ3om+2s0VKrDZNYJ8P4Rmu9D+L29YyrHXloQpivOqcm7AEJFXuk6bKiLRM16EFkXMZ2m1RLgukm2leOT3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.228.173.33
HTTP/2 301 Moved Permanently
                                        
date: Wed, 30 Nov 2022 00:02:31 GMT
content-length: 0
location: https://www.stitchfix.com?irgwc=1&utm_source=impact&utm_campaign=Affiliate-partner%7Cimpact%7Cgn%7Call%7Call%7Cprospecting%7Call%7Cus%7C&utm_medium=Affiliate-partner&utm_content=Content&utm_term=My%20Education%20Discount&psid=20445&psn=My%20Education%20Discount&pcrn=Get%20%2420%20off%20your%20first%20Fix%20once%20you%20take%20the%20Style%20Quiz%21&pcid=8369&pcrid=1337566&click_id=woa1JFyx2xyNR7RVoXTXjwISUkA0eORFD1MORM0
set-cookie: AWSALB=3WbvMNFfYwaGbrVEUIwmYRIiy1fzZuLGHaAuTwrfuEk7S/mRoXtZDqF+a0vL2aWdFT/JspCtdj4fmIsULW1/P3RDVp3/zL/D37W9iHJWs0Eh8O9Qc4lAn+AN0643; Expires=Wed, 07 Dec 2022 00:02:31 GMT; Path=/ AWSALBCORS=3WbvMNFfYwaGbrVEUIwmYRIiy1fzZuLGHaAuTwrfuEk7S/mRoXtZDqF+a0vL2aWdFT/JspCtdj4fmIsULW1/P3RDVp3/zL/D37W9iHJWs0Eh8O9Qc4lAn+AN0643; Expires=Wed, 07 Dec 2022 00:02:31 GMT; Path=/; SameSite=None; Secure brwsr=49375a5d-7042-11ed-9ec9-d90eb3934b0f; Domain=.rg35.net; Path=/; Secure; Max-Age=62208000; Expires=Tue, 19 Nov 2024 00:02:31 GMT; HttpOnly; SameSite=None irld=L0CORK3zpcT8FQ%3AKUyiQyZXFz; Path=/; Secure; Max-Age=15552000; Expires=Mon, 29 May 2023 00:02:31 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Wed, 30 Nov 2022 00:02:31 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4274
Cache-Control: public, max-age=1209600
Date: Wed, 30 Nov 2022 00:02:31 GMT
Etag: "638650c5-37"
Last-Modified: Tue, 29 Nov 2022 18:34:45 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:31 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 17:55:44 GMT
Expires: Tue, 06 Dec 2022 17:55:43 GMT
Etag: "160979453f3fd95d913192795fce2738fd7f925e"
Cache-Control: max-age=582191,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771f50945a63b4ed-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=101785
Date: Wed, 30 Nov 2022 00:02:31 GMT
Etag: "63858830-1d7"
Expires: Thu, 01 Dec 2022 04:18:56 GMT
Last-Modified: Tue, 29 Nov 2022 04:18:56 GMT
Server: nginx
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Accept-Ranges: bytes
Age: 4908
Cache-Control: public, max-age=1209600
Date: Wed, 30 Nov 2022 00:02:32 GMT
Etag: "638651c4-37"
Last-Modified: Tue, 29 Nov 2022 18:39:00 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 55


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   55
Md5:    9f073354411bbaf7a319b1519f10b4b7
Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68
Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
                                        
                                            GET /assets/vendors~route~d_gateway_route~be1f2cad81.5917f.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 469
date: Mon, 14 Nov 2022 19:42:33 GMT
last-modified: Wed, 09 Nov 2022 19:43:18 GMT
etag: "87c16bd2203f128ef21d38702590dd5c"
cache-control: max-age=31104000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RBzCKBRDNm1t7mDOmcWB0_gZdabHRwh3FoUqTZiYkc_y16x3znKhUA==
age: 1311600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (469), with no line terminators
Size:   469
Md5:    87c16bd2203f128ef21d38702590dd5c
Sha1:   5cc202754f57c71f8f20ddabc28d18d1c9f073c7
Sha256: b013d834b76ba9abfc830469931675e8e01e6e4fc5b3c9f858fbf7e32fc0ecbc
                                        
                                            GET /gtm.js?id=GTM-7RWHC HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 00:02:32 GMT
expires: Wed, 30 Nov 2022 00:02:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 127361
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (35261)
Size:   127361
Md5:    046c1c58721cdb5d08e530ed1b556bca
Sha1:   73cf85da14e436d18f191d33bb78cfe851a1918b
Sha256: fe1aa4b74d730b86b7e987a4faefeca591b5a90faae376f5866abef6078b223b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/runtime.07ce0.js HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 29 Nov 2022 19:34:02 GMT
last-modified: Tue, 29 Nov 2022 19:27:16 GMT
etag: W/"fbbecac42b6234fcc83742fc65d3dd5b"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U-jIuqwQkwCax2TwFDuFBHZmur-l_XR3lcA9LxpMApg1ieqV7belgw==
age: 16111
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   72910
Md5:    ff12c58500ac5a9a50dd9df8cc708335
Sha1:   1b267be92d059744ca47db07956a45c0b38c20af
Sha256: 596ca99bea61eee94db8c2d2e43967409eeac67ab9b3b3a5d140f851fb1a1157
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125209
Date: Wed, 30 Nov 2022 00:02:32 GMT
Etag: "6385e3b1-1d7"
Expires: Thu, 01 Dec 2022 10:49:21 GMT
Last-Modified: Tue, 29 Nov 2022 10:49:21 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NF5b14uC0VOVsmH2yzYkxHo8jNLiQr6js-iJiEW97yslCZwRKMWK9w==

                                        
                                            GET /stitch-fix/video/upload/v1662745243/landing-pages/page-author-assets/1017/220901_Fall%20Hero%20Video_GN_V1_2.jpg HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.129.137
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: "5c712f66b66ff973b8e1e455371c20a3"
last-modified: Fri, 09 Sep 2022 17:41:16 GMT
date: Wed, 30 Nov 2022 00:02:33 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=13;cpu=12;start=2022-11-30T00:02:33.155Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 95489
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size:   95489
Md5:    5c712f66b66ff973b8e1e455371c20a3
Sha1:   f7fddae8e2e8770c7c1d0788aa9fd12dee09bba3
Sha256: 80ab5e4e8ca2602ee9b52743a1c8367da302d58b4c579360c229fed555248089
                                        
                                            GET /shared-ui-assets/fonts/brandon-text-medium.c2985fc6e64f7bc275fa92e54990f286.woff2 HTTP/1.1 
Host: assets.stitchfix.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://d3ss0gp3e5d7m3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

search
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/font-woff2
                                        
content-length: 41224
date: Sun, 06 Nov 2022 10:06:40 GMT
access-control-allow-origin: https://www.stitchfix.com
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
access-control-allow-credentials: true
last-modified: Mon, 24 Oct 2022 16:07:40 GMT
etag: "c2985fc6e64f7bc275fa92e54990f286"
cache-control: max-age=31104000
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QU15xHmXy5tYD0xqyS_FTkc289Txf40-m4cvZDBiDGTvDaV43rdeCQ==
age: 2037354
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 41224, version 0.0\012- data
Size:   41224
Md5:    c2985fc6e64f7bc275fa92e54990f286
Sha1:   40f0f16c27a816ce5059060f1b97a0db3d7fc59e
Sha256: e587e8599b9843fcdf143bc938aada57fc9da0d9f700ad9911f39a2f5b405a76
                                        
                                            GET /shared-ui-assets/fonts/brandon-text-regular.db51323fcdee0cdbc1999474dfdea6fd.woff2 HTTP/1.1 
Host: assets.stitchfix.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://d3ss0gp3e5d7m3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

search
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/font-woff2
                                        
content-length: 41408
date: Sat, 29 Oct 2022 10:50:02 GMT
access-control-allow-origin: https://www.stitchfix.com
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
access-control-allow-credentials: true
last-modified: Mon, 24 Oct 2022 16:07:41 GMT
etag: "db51323fcdee0cdbc1999474dfdea6fd"
cache-control: max-age=31104000
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l_VzJE85pvu6P3bYoOALfp5p83L-CohhwDZn4WgQeAxJ3pd8xEEneA==
age: 2725952
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 41408, version 0.0\012- data
Size:   41408
Md5:    db51323fcdee0cdbc1999474dfdea6fd
Sha1:   b6ee5ea37e792716372d02064c77f3d268064385
Sha256: 7a791ac7973df84658afba6c7d79a1c134f2aacdc8426d9eb6f231fcaa674781
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4600
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 00:02:33 GMT
Last-Modified: Tue, 29 Nov 2022 22:45:53 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4600
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 00:02:33 GMT
Last-Modified: Tue, 29 Nov 2022 22:45:53 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /cloudinary-video-player@1.9.0/dist/cld-video-player.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.122.175
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 30 Nov 2022 00:02:33 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"16219-gSbSIjGk8gDyU3l7w5tAPvyh2m4"
via: 1.1 fly.io
fly-request-id: 01G4Y73XVR51W242GNDAJJYKHT-fra
cf-cache-status: HIT
age: 15190143
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50a0c871b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65446), with no line terminators
Size:   22378
Md5:    6976b7171898a068d91111e09cae1419
Sha1:   5b63ef653510a469de9900285fa1ea8cc228a2a4
Sha256: 5b087f7597cdd091064c799685e04d71ffaaac53fa27ac9e75ab8a53886839d3
                                        
                                            GET /assets/images/apple-touch-icon-180x180.1rVIZ.png HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 4171
date: Mon, 14 Nov 2022 17:21:35 GMT
last-modified: Thu, 28 Oct 2021 18:50:22 GMT
etag: "7c89652c1ff2bfa18bc38fd840cfe65b"
cache-control: max-age=31104000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J7ByrXCNSz82RuIaIue4ecNTEpjmq728b6TfaioKX-n0G8Q--gXiyg==
age: 1320059
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size:   4171
Md5:    7c89652c1ff2bfa18bc38fd840cfe65b
Sha1:   9ad68e6bac3c29a4a56b7693e92e1f4ddbe642d9
Sha256: 30d5a44cb33a1d6c52e4ed1f55230c52994c2f7e7cf519cd9e4e0668c4ecac84
                                        
                                            GET /assets/images/favicon-16x16.3zYru.png HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 514
date: Wed, 23 Nov 2022 18:41:10 GMT
last-modified: Thu, 28 Oct 2021 18:50:25 GMT
etag: "e3ef9e01460acd8f68c0f23a8bb7f1e3"
cache-control: max-age=31104000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SE9z7RglAWHw9pkXu3qBnICyPOMYPphggs9Usf0qX3JB-IIGYak1vA==
age: 537684
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   514
Md5:    e3ef9e01460acd8f68c0f23a8bb7f1e3
Sha1:   acfbc96512873a947ee576dbe7abbc04dfce6c5a
Sha256: dcbe17c5c878024dfea24b6931744fd285c6ece8d136df3789673fe9a60b2faf
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498553/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_1.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 8484
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_1.webp"
etag: "e9cc62864b961e5a5671106ac0a75664"
last-modified: Tue, 20 Sep 2022 15:29:17 GMT
date: Sat, 29 Oct 2022 01:41:26 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9LphNjWWW8qZZ_H34uyKWiwJrIn5H9KTjHfGh-A-NpOmfnPfesVjEw==
age: 2758867
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   8484
Md5:    e9cc62864b961e5a5671106ac0a75664
Sha1:   b055441f036d694b1a0f64e2a9219f0b6d6b15fc
Sha256: 0c77cb50e559b1931b052c687969ee9c050b9e692acaff3ea7b8be31359c66ca
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/3_clubmon.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 448
content-disposition: inline; filename="3_clubmon.webp"
etag: "db95316387a7e65c351a793116429db2"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Sat, 05 Nov 2022 05:14:42 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o1EWEl2wKU2P-NL8GceInFnPgpEAeTQQXYnfGuhcpRpYESETdGL98g==
age: 2141271
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   448
Md5:    db95316387a7e65c351a793116429db2
Sha1:   495bbd15890b85cba8add3de10da287461731357
Sha256: 6b4361486424131e48e2649fb66d0b7c88883631aa38ca8cf0c07e05160acf21
                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 00:02:33 GMT
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Mon, 28 Nov 2022 02:38:19 GMT
etag: 0x8DAD0E99C9E3FDC
x-ms-request-id: c6fda8e2-501e-012c-2f87-031c8e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 79983
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50a1dd10b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    6ca9058d9138dc07d9a378e6f20a8b7b
Sha1:   ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
Sha256: 1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/4_columbia.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 600
content-disposition: inline; filename="4_columbia.webp"
etag: "f52b08496409d3de0881a660da4636ab"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Wed, 23 Nov 2022 11:56:05 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1xEjGSUjdx0jIdKfuOsowvAECe6Aq5Yl88mvqJo6X6YpjWkqs3LFvA==
age: 561988
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   600
Md5:    f52b08496409d3de0881a660da4636ab
Sha1:   5ce3751fe79d466caaf52955ab47684fb9861585
Sha256: 9f4e55164e3092a4227c3a34d28ba5a629a68c172fde3314993c4aff48c8e2c0
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/5_calvinklein.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 508
content-disposition: inline; filename="5_calvinklein.webp"
etag: "5fb4384d6bd2756f1e6ee3e6d8337510"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Sat, 05 Nov 2022 05:14:42 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d5LscJ_2xmytYHND84VDQuk_ahqvUn98BBm4aYuvdNGMj2yBaKOZ1Q==
age: 2141271
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   508
Md5:    5fb4384d6bd2756f1e6ee3e6d8337510
Sha1:   f068a7a52f3c94345bcaeb137140477243b14a53
Sha256: 167f21a801399902352b3dfb24fa449bff0255ac74a4f71ab729070b6579d5b3
                                        
                                            GET /assets/route.b9a38.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 14 Nov 2022 19:23:05 GMT
last-modified: Thu, 10 Nov 2022 17:39:00 GMT
etag: W/"adbe718d5ec7620256f018c81a7a5479"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2YWcwhJTmyYjSouAShJA0MSt-6gVhiDVG2uga0CYAN1eimbRv9nceQ==
age: 1312767
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   13866
Md5:    ec1a6d41879fb3781fe88e741b791ac7
Sha1:   046762f14757700c4b8f4a117cb698d6017fbd51
Sha256: 76cf6c54fd6518ba525385f8a615518c89e443adc9f6e4c91fbc903a6cdf9c13
                                        
                                            GET /consent/cmp.stub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 00:02:32 GMT
content-md5: fmld/hbHJY2/VR7APngRag==
last-modified: Mon, 28 Nov 2022 02:38:29 GMT
x-ms-request-id: 6478d9ae-d01e-0172-4f7b-03ef8d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 78882
expires: Thu, 01 Dec 2022 00:02:32 GMT
cache-control: public, max-age=86400
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f509a3facb523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/v1663689290/landing-pages/page-author-assets/1017/220920_Faherty.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 978
content-disposition: inline; filename="220920_Faherty.webp"
etag: "cf4cf0090ae041366131f1a447aea17a"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Tue, 01 Nov 2022 02:14:21 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o78hSG4lA_JtVYKJ2xrhVSrWNfzeoNLCxHvEJftStV_Q91TYMbouOA==
age: 2497692
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   978
Md5:    cf4cf0090ae041366131f1a447aea17a
Sha1:   e74fad6c8db9ea53cd2b555fe0a6e37ccf05b9d5
Sha256: d65542fb4840ead87283c101b98c7240915705a608260aec0fa17f33a10bf5b7
                                        
                                            GET /assets/route~d_gateway_route~about_r~2c8fee27a4.1c7f8.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 03 Nov 2022 16:59:58 GMT
last-modified: Wed, 02 Nov 2022 17:16:03 GMT
etag: W/"2b5a75067609d895fae6648c3cfe54ca"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7gSIvvtn-Ld8OIZ6HsaHWHy2MY4s-GfBlsrYlyc_6TzfVt_Vc6ux2w==
age: 2271754
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14533), with no line terminators
Size:   2508
Md5:    68733866623b92d1c840d0a666a75c10
Sha1:   f2bf8cf241d4b41ffe4a6f7a0e59a7f888a22d1d
Sha256: 465330b4fdbdb52ab2d19785433cc456a4bbba93c1cac19e2944251993f9c123
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 22:41:08 GMT
expires: Wed, 30 Nov 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 4885
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /stitch-fix/image/upload/q_auto:best/dpr_1.0/landing-pages/pages/US/gateway/Q3HowItWorks/hiw-stylist-selections.svg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 9072
content-disposition: attachment; filename="hiw-stylist-selections.svg"
content-encoding: gzip
etag: W/"3837242c5635c8b8d986c8c97c321f12"
last-modified: Tue, 22 Mar 2022 16:56:47 GMT
date: Fri, 11 Nov 2022 00:35:47 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cbnrg5taD5QJdJioZ1MJvL6IXj1RdXBjAnn63h1d7dXUl1TdNEIBvA==
age: 1639605
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   9072
Md5:    0c20f928912e39da09a9396416e49298
Sha1:   892abf3e76038a90697f3cc1b054e29cc00b63f1
Sha256: ac44a8f2b0837bda1e94bc4f36d86a5813a22eed7ee4764b955773dde26d89f6
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/1_nike.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 280
content-disposition: inline; filename="1_nike.webp"
etag: "7214334c8b2b5f5ed52475e5b85d5407"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Fri, 25 Nov 2022 10:32:08 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q4OgVIRBSy5QaBiqU_dBrR4D8hPkwRN5Nw06Zo5R9IGT3gsWWifgdQ==
age: 394225
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   280
Md5:    7214334c8b2b5f5ed52475e5b85d5407
Sha1:   e9941024a4327d297138c38b3e7fa2678bedbe59
Sha256: 9c7a1919e781d1f71aaea3238a032b648ab825eb085a0a8c953aeef12f56d8c7
                                        
                                            GET /stitch-fix/image/upload/q_auto:best/dpr_1.0/landing-pages/pages/US/gateway/Q3HowItWorks/hiw-personalized-shops.svg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 10424
content-disposition: attachment; filename="hiw-personalized-shops.svg"
content-encoding: gzip
etag: W/"97d3d92ca0d45543dc20b1152679a74a"
last-modified: Tue, 22 Mar 2022 16:56:47 GMT
date: Sun, 06 Nov 2022 02:41:27 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ioqeyv-KkQHoxE_02J-S-pcVwqegkw_G1HnK0nWJieWNveOgx0v09g==
age: 2064065
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   10424
Md5:    4f40feb0e198a144f6eb254a5450f9d8
Sha1:   d08f58e581efdc7cb952331a600bd1d7f8c36c56
Sha256: 0967c0854829ce4b5dafc93689306252837f405537b03e294c282b1ea9c32c61
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/2_underarmour.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 776
content-disposition: inline; filename="2_underarmour.webp"
etag: "6acef186a4f5a93693e0623f8604c5f3"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Mon, 07 Nov 2022 06:39:25 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lqohW9eIrecFOhEuKSa2HxqFzviLK7OvG7GSOLatMLf9emlyfcj_Bw==
age: 1963388
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   776
Md5:    6acef186a4f5a93693e0623f8604c5f3
Sha1:   7a5aaba99fcdf4343773243f478c8218cff6ab0c
Sha256: 7b4ca52d483e8af0ce849e796feb606e2acbe6838a7a2e69d98822eab844080d
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_540,f_webp/v1648156670/landing-pages/pages/US/gateway/Q3HowItWorks/stylist-desktop.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 34068
content-disposition: inline; filename="stylist-desktop.webp"
etag: "15ae93b737fc624e2e8d7cf74f89358a"
last-modified: Tue, 04 Oct 2022 18:02:04 GMT
date: Sun, 27 Nov 2022 09:39:07 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Md9XYvM5yNVjrPO8RVuqxHqbUC7KMD_56dyURG7_mp0sQnZ2WL6i_A==
age: 224606
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 540x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   34068
Md5:    15ae93b737fc624e2e8d7cf74f89358a
Sha1:   3b58d51f423ae20a343e2af00b58a6a6088cc171
Sha256: f6f290554ea6c29d9d087669871a6a5eb84d55e7cec119807ff23d9f501b35c5
                                        
                                            GET /shared-ui-assets/js/visitor-uuid.d44a9450eb565a5f3f6e.js HTTP/1.1 
Host: assets.stitchfix.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stitchfix.com/?irgwc=1&utm_source=impact&utm_campaign=Affiliate-partner%7Cimpact%7Cgn%7Call%7Call%7Cprospecting%7Call%7Cus%7C&utm_medium=Affiliate-partner&utm_content=Content&utm_term=My%20Education%20Discount&psid=20445&psn=My%20Education%20Discount&pcrn=Get%20%2420%20off%20your%20first%20Fix%20once%20you%20take%20the%20Style%20Quiz%21&pcid=8369&pcrid=1337566&click_id=woa1JFyx2xyNR7RVoXTXjwISUkA0eORFD1MORM0
Connection: keep-alive
Cookie: visitor_uuid=be254c60-6226-4959-9582-86cb8bf3cca5; _stitchfix_session=UVYrbWdhMVlPZTdZd2x5eDcrUnB5V1Z5Q3EwNHY3OS9Uek84bVlDSjhNcHlVRXNXTy9LMkxMNkkxbGplc25SQkxDZFZXUTNVR1RvNzlLcC9sWDhoU3ZESUtBVnFvUE1qd0VsNy96aEt3TW5wNmJ0Vy9ESGdWaXIwMWlkbEVaWUxycFJVaFJEa2I5N1RiaWNYN0FMcThnPT0tLVdjUVJWSEpvV2ZoRzBEdWhUYlBZYUE9PQ%3D%3D--07a09d7fbb508fd6a8b87cbcbc279218d6fa0912
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 16 May 2022 13:28:39 GMT
last-modified: Wed, 05 Jan 2022 20:30:00 GMT
etag: W/"3825ccea03d3645f20a00c8f00cac13d"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _s5BEJDegeRhLW4k-Pe70KtMbcvDBRmmEklopMFaMeDqlxGCQ-wzHg==
age: 17058835
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2129
Md5:    83192185f8b3da44fc655d4e7e5f5685
Sha1:   776648347b0b6aed922b4f8bc81925fde826b19e
Sha256: cf9580197190bb054b512191daf40fadd38afceb391553806bbb8ccf3f756f32
                                        
                                            GET /assets/route~d_gateway_route~about_r~7750823154.a029c.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 03 Nov 2022 16:59:59 GMT
last-modified: Wed, 02 Nov 2022 18:50:03 GMT
etag: W/"212a36e14724ddebea7a9a938ca7a02e"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LQIuryUIxTfoaDC31OYduxMGsJqlaH5cvNsJn1hz7rl8AAqcVq3RSw==
age: 2271754
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22373), with no line terminators
Size:   3807
Md5:    88bdbfb3aa9c40e2c1d4a83fcfee77b4
Sha1:   da7186dc926a6cbcb42cff26583831af47707092
Sha256: 01291afe64a19dc3376b92e9561a7ef27f18341b9451146ad151f563a85f4ace
                                        
                                            GET /?irgwc=1&utm_source=impact&utm_campaign=Affiliate-partner%7Cimpact%7Cgn%7Call%7Call%7Cprospecting%7Call%7Cus%7C&utm_medium=Affiliate-partner&utm_content=Content&utm_term=My%20Education%20Discount&psid=20445&psn=My%20Education%20Discount&pcrn=Get%20%2420%20off%20your%20first%20Fix%20once%20you%20take%20the%20Style%20Quiz%21&pcid=8369&pcrid=1337566&click_id=woa1JFyx2xyNR7RVoXTXjwISUkA0eORFD1MORM0 HTTP/1.1 
Host: www.stitchfix.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mail3.staffupdate.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.63
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 30 Nov 2022 00:02:32 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer-when-downgrade
content-security-policy-report-only: object-src 'none'; script-src 'strict-dynamic' 'report-sample' 'unsafe-inline' 'unsafe-eval' http: https: 'nonce-19LdVbTGO+kPn93S6Rfu5Q=='; base-uri 'self'; report-uri https://www.stitchfix.com/dynamic-shock/security/csp_reports?action_name=show&browser_type=Firefox&controller_name=pages&logweasel_id=01GK2XF6TFNY0FS07VE9FJ4ZKB-DYNAMIC_SHOCK-WEB
content-security-policy: frame-ancestors 'self' https://support.stitchfix.com https://support.stitchfix.co.uk;
content-language: en-US
content-encoding: br
etag: W/"a0eb7732f6f5a3c54df0c5f916bbccf5"
cache-control: max-age=0, private, must-revalidate
set-cookie: visitor_uuid=be254c60-6226-4959-9582-86cb8bf3cca5; domain=.stitchfix.com; path=/; expires=Sun, 30 Nov 2042 00:02:32 GMT; secure _stitchfix_session=UVYrbWdhMVlPZTdZd2x5eDcrUnB5V1Z5Q3EwNHY3OS9Uek84bVlDSjhNcHlVRXNXTy9LMkxMNkkxbGplc25SQkxDZFZXUTNVR1RvNzlLcC9sWDhoU3ZESUtBVnFvUE1qd0VsNy96aEt3TW5wNmJ0Vy9ESGdWaXIwMWlkbEVaWUxycFJVaFJEa2I5N1RiaWNYN0FMcThnPT0tLVdjUVJWSEpvV2ZoRzBEdWhUYlBZYUE9PQ%3D%3D--07a09d7fbb508fd6a8b87cbcbc279218d6fa0912; domain=.stitchfix.com; path=/; secure; HttpOnly
x-request-id: 01GK2XF6TFNY0FS07VE9FJ4ZKB-DYNAMIC_SHOCK-WEB
x-runtime: 0.020838
strict-transport-security: max-age=63072000; includeSubDomains
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Llr_VR26zKcZOEFPknjzi_9G5xxcpftamTdlJWSuW59L0V92Vz1nmg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (56617)
Size:   43265
Md5:    874ea123b693bd244d4bf878499555bf
Sha1:   0f27a2338327d4c1601983b3302d6a0dd5c7d09b
Sha256: 91fd4795c7b32c8222d08acf9e57d0f435545bc4cbeeac65fdc7efd40b39b18e
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/14_marinelayer.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 828
content-disposition: inline; filename="14_marinelayer.webp"
etag: "466a38a7238f9e86d31f2be4871c5b7b"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Mon, 31 Oct 2022 06:39:11 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pkZBYHxb7Zs4Zbrq2_ddLILZrnppWoM5b6k-9RCIKzvgr3mMK10kQQ==
age: 2568202
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   828
Md5:    466a38a7238f9e86d31f2be4871c5b7b
Sha1:   330734c60ce043e390dd68772788586e985acebc
Sha256: 78588ff13741451079bd4de8a72aa1f3285225894b70a5ee528c4af47017cd5f
                                        
                                            GET /assets/vendors~main.fd04e.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 03 Nov 2022 16:59:58 GMT
last-modified: Wed, 02 Nov 2022 20:28:50 GMT
etag: W/"7ba5130e1b9eb9456b8fdd3efe7ae953"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iIWcKPhA-GQ-poftTJ59foroKZxhGBSZRTDP560bNXDt1_F0nswOtw==
age: 2271755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   18120
Md5:    56b99007c7f688d95cd5dbeb1258e2d4
Sha1:   3f77c88a94fe3f62046beab81a9dfbd1c3b68705
Sha256: 655e3b7a18a1dbd3558e5b324ab33c8a56b8a420da0847fc1557efe4cf091eeb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:33 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 21:46:57 GMT
Expires: Tue, 06 Dec 2022 21:46:56 GMT
Etag: "79be3c0701be5c3de2e6e0ce2d4af049f3ddcd86"
Cache-Control: max-age=596062,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771f50a23dccb4ed-OSL

                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/v1663689303/landing-pages/page-author-assets/1017/220920_UGG.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 854
content-disposition: inline; filename="220920_UGG.webp"
etag: "3ac840388d4ac34541f5f56d88e3acfb"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Mon, 07 Nov 2022 06:39:25 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 89hHTDcEZOWyVwMg5huEaii3BCVBR6TqdKEap-x6lptE430R0xP1FA==
age: 1963388
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   854
Md5:    3ac840388d4ac34541f5f56d88e3acfb
Sha1:   efb9cb27eace0d33f868a09de7bff4a0dc72c0dc
Sha256: 0deab28345aff7d3e5bc9a2f431b9d91d2afef0ce92cb10d2498327acdc109c6
                                        
                                            GET /assets/main.8df8a.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 03 Nov 2022 16:59:58 GMT
last-modified: Wed, 02 Nov 2022 17:15:48 GMT
etag: W/"d2384cd35e3925709e0f983656ba7296"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EO-CCbO29GVW_YdArHgdQGo5DEtkY2iljlowFMNMrYrCmnYS1EmK_g==
age: 2271755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7643), with no line terminators
Size:   2378
Md5:    9fd5a54207e4ed8401ad820f82e375a0
Sha1:   728c80265cd9df16cf39084fe1178be03dd385b6
Sha256: 86b3e29ccf6e5b8438e29ba2f1d1b000d2172fa098964cb99f9adba4509cdcce
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/v1663689319/landing-pages/page-author-assets/1017/220920_Free%20People_V2.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 480
content-disposition: inline; filename="220920_Free People_V2.webp"
etag: "55febdc4e9a266f21cd9aa92a5e483e5"
last-modified: Thu, 29 Sep 2022 21:01:31 GMT
date: Fri, 04 Nov 2022 10:50:42 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zilKIUo0hliHnr4AOB0-J1_JeOJsZbO3lVytI5YkpQ-rh9EDlyPIaA==
age: 2207511
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   480
Md5:    55febdc4e9a266f21cd9aa92a5e483e5
Sha1:   6abae0c507aed5c7b42d8e5f6f9ae0d44411f1a0
Sha256: 132dcd872ae96c61aaab951f0a9cd2e8dc2cabcd13067269926146b346f22372
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/19_vans.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 610
content-disposition: inline; filename="19_vans.webp"
etag: "61fc6f0d0ba10165f3b9e66d097fb6f8"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Sat, 12 Nov 2022 09:38:36 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 61fk-eN0IDCt4BfUFDfSH6gpa0x-uxKcR8vffI5X8IELo7ypw2t3Nw==
age: 1520637
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   610
Md5:    61fc6f0d0ba10165f3b9e66d097fb6f8
Sha1:   bd5501e505e8c01551e4b17f3158336e4e59a6e8
Sha256: 0b111eca881233c34f23a1c867f17efa1a593cbe1bc1f0400b71fddd013c7092
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/20_sperry.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 710
content-disposition: inline; filename="20_sperry.webp"
etag: "a25b3dbcc0032473c511548f389a9eaf"
last-modified: Thu, 29 Sep 2022 21:01:31 GMT
date: Sun, 06 Nov 2022 02:41:27 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zXp7u2aQWVQ_c6mA2pZIwjXQMRBXHWycJ9jsI_M8XKTcecG8TDYBsA==
age: 2064066
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   710
Md5:    a25b3dbcc0032473c511548f389a9eaf
Sha1:   f318c9234c810be0415ffe10aca4d58e44fbf12a
Sha256: 470b5906d6717f02ad77150573a7b7f6f2bcacb0f750ac6db54b5b71e2f58504
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/21_vineyard.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 890
content-disposition: inline; filename="21_vineyard.webp"
etag: "2d1d3ad4f3426bdb5075cac076b44369"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Fri, 04 Nov 2022 09:35:36 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cyzEN76a9Uajn5owraNwCeoY7ZhsoMGo1-GECDngkRMfDitTlDZuvA==
age: 2212017
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   890
Md5:    2d1d3ad4f3426bdb5075cac076b44369
Sha1:   86be9c16bd0ce0614d554637d564ee2c789866c5
Sha256: fb67d8ee9e3cddbbd843ebe93d6e99a5f67a481f13dd368929476aaa065bacc6
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/22_vince.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 360
content-disposition: inline; filename="22_vince.webp"
etag: "2ffb998921b8e11cf02128c68d55721b"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Tue, 01 Nov 2022 02:14:20 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RY5CRhc3ExTTjVizyJp2qrc3FomJUyTGCq929eIwohHF9gv5I3wE4w==
age: 2497693
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   360
Md5:    2ffb998921b8e11cf02128c68d55721b
Sha1:   8e5fd0b651208f86fe3f0c9294ed7008a6ae3846
Sha256: b26039e0e1c6d9102f094ce89e02e315ed8e7f19d4730903ccd8ee37c4f42fe1
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/23_barbour.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 408
content-disposition: inline; filename="23_barbour.webp"
etag: "1417a9f611f69ad8e12108c0757a1983"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Wed, 02 Nov 2022 01:39:11 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mXlL-R5Z2WG9gaCLHNrTXUUPXNepZWM3SE5Hpk4o5Wxy_G9hbmvfGA==
age: 2413402
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   408
Md5:    1417a9f611f69ad8e12108c0757a1983
Sha1:   f00aa94b6ed24207823777b899c5b7fff8096eca
Sha256: 9fe2247f706347855c21f1d07782f7ebdb499e0cba8b17c2495f5cb7041eec00
                                        
                                            GET /assets/vendors~route~d_gateway_route~2fea2d0ef4.5166d.css HTTP/1.1 
Host: d3ss0gp3e5d7m3.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.134
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 03 Nov 2022 16:59:58 GMT
last-modified: Wed, 02 Nov 2022 17:16:24 GMT
etag: W/"12088466013a4d036121de9b36cc6885"
cache-control: max-age=31104000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WrVpcooHrKDJ2R5m-yOKXRnONgWyhAOijgrbo0hc6eh7v2YFZYI5yA==
age: 2271755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1144), with no line terminators
Size:   1116
Md5:    04fcf9eea0988613b86ad82e1c43c38f
Sha1:   9907573c908949f987b8b3db196e6053549ba58a
Sha256: 9d40c413a16c9f990787bc5f84639ce778e1e74a065e884268b9a03d7693efb2
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/v1663689368/landing-pages/page-author-assets/1017/220920_Madwell.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 918
content-disposition: inline; filename="220920_Madwell.webp"
etag: "585f713fca40558641839f4a34967b5c"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Thu, 03 Nov 2022 01:17:09 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f5UMnpWhIPd8egcqVvv0zECFJC7uD7-GV6cA1T4YkgjS5opjZEBWxg==
age: 2328324
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   918
Md5:    585f713fca40558641839f4a34967b5c
Sha1:   07df0edfa5d3210dad270b2eb3b9c2d67b19e821
Sha256: a10afb7f36d92da22b32e1272bdcbb6a7771d1fa2afe255bfd21c31ff15492be
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/26_adidas.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 592
content-disposition: inline; filename="26_adidas.webp"
etag: "fd0a25c0035ecc67b4eb1bf7173258dd"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Thu, 24 Nov 2022 07:47:45 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uLe6TDG-eQfUH9wiMw7tgSjzf3JPOMF3HqhxT1kK2UvIhb74poTeVQ==
age: 490488
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   592
Md5:    fd0a25c0035ecc67b4eb1bf7173258dd
Sha1:   6c12dcbbe8f3205a8501ca39257ed61335b2a79f
Sha256: e221986bbbfeb43dba691239100a66c65ff12de79b1e242529ff01bf4c375dfb
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/27_sanctuary.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 312
content-disposition: inline; filename="27_sanctuary.webp"
etag: "8989cc90d9881cd08285990fbff691d1"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Thu, 03 Nov 2022 01:50:02 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1UYgE06Nj8JImBrXNrKwWeBoBSUeB6_DmlQdvjO9LoHeEIBx6R7PzA==
age: 2326351
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   312
Md5:    8989cc90d9881cd08285990fbff691d1
Sha1:   d479e0e0ca2d209385e1b31697e18f8438904206
Sha256: 83f8349332ad39762264a09d8fe68ebebdeee35a8b5773cf846b94a408c8335f
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/28_bonobos.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 512
content-disposition: inline; filename="28_bonobos.webp"
etag: "7880a83ef92c3b2035cde7e7eecceb0c"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Sat, 26 Nov 2022 07:36:02 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zunFKQvn8Qqf_bGxzZncK9gAhv9vHUyfG4tpwrsPViA4pQ1mxVon5Q==
age: 318391
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   512
Md5:    7880a83ef92c3b2035cde7e7eecceb0c
Sha1:   77198ac05883a4ad235fcfce3e58f68ac79a15a4
Sha256: 7c4fc63730205f7b7d8481ef7222d69a7f9c261e0eb62a86405d2bb9dfafbc67
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/28_frame.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 310
content-disposition: inline; filename="28_frame.webp"
etag: "07dd96b1d0df01446044eb0cf16baa9c"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Wed, 02 Nov 2022 01:39:11 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IvVYeqsAPoDZ4SHfqykbDrs3ZrwJeOiiddNhrKsx-XG_k-WQ3UHjrA==
age: 2413402
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   310
Md5:    07dd96b1d0df01446044eb0cf16baa9c
Sha1:   4634de84a6a4c01ef2154f808b7a90d79725715a
Sha256: 883dd772d82fa149491272ce154c07af24f88b5572fb8e44d10ff46c118fd1d7
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/29_girlfriend.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 846
content-disposition: inline; filename="29_girlfriend.webp"
etag: "a0b15443fa9206fbf8a700880efe1c34"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Sun, 30 Oct 2022 07:04:46 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FVhrKW4XqbnZ7RdvB-eNTmboxSB2cQ8bG2tyCkHib7XbVzU941poRw==
age: 2653067
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   846
Md5:    a0b15443fa9206fbf8a700880efe1c34
Sha1:   3ab544fef492d4932de8261a91a418cd7d94aa87
Sha256: fbf1f3e962f118b41aaca6cf029bf33cd14c171e138e6065b0b0db946fdb44ca
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/30_callaway.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 542
content-disposition: inline; filename="30_callaway.webp"
etag: "227647314742c8c3aa952fca01dd998c"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Sun, 13 Nov 2022 01:06:43 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SuKPF25_42Vp9ocUU7ZPVxTsNlBrTvUCRFsyx_fWBSJ6i3e27U-Kxg==
age: 1464950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   542
Md5:    227647314742c8c3aa952fca01dd998c
Sha1:   b0bd5cc0bf2375998944431eede0aba28636709d
Sha256: 86f39c4bc299255c7a8d0c4d11e2e6aedb5823cc5c3030d2bc3ea00e2d1c646f
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/GoToMarket/logos/32_ralphlauren.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 648
content-disposition: inline; filename="32_ralphlauren.webp"
etag: "416344c2cc4d0791558d05f827682d1e"
last-modified: Thu, 29 Sep 2022 21:01:30 GMT
date: Mon, 14 Nov 2022 04:31:36 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: slekQV687rbcWFdKEtTOpOdL_Dz02lHQaYowC9GP1nYlUwVJkcQivA==
age: 1366257
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   648
Md5:    416344c2cc4d0791558d05f827682d1e
Sha1:   fb1eb2e269b5f816f30729f4a2d15fb091480f59
Sha256: 2adb7457141a4a0660211fdd0c0a1b8ee186503f233881b623ed2e46d404856c
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_120,f_webp/landing-pages/pages/US/gateway/Q3HowItWorks/logos/11_farmrio.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 826
content-disposition: inline; filename="11_farmrio.webp"
etag: "79d593516aedf1a36022f10a9655dea2"
last-modified: Thu, 29 Sep 2022 21:01:29 GMT
date: Wed, 02 Nov 2022 02:31:22 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8UQprDGoYR-HOYnr0G-Td8PWLWLhuHl-8x5X4ZM5GN9NBPgtzbeK6w==
age: 2410271
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   826
Md5:    79d593516aedf1a36022f10a9655dea2
Sha1:   d6d3f09a937971550e0642c5218f648cac973617
Sha256: 33fe6d7da84c2cb913e94dd098f9e7df1851e89340bdd1ac7d4ca32bef61a71c
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498566/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_2.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 4734
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_2.webp"
etag: "6aeffdd3def016d2a5cd98a164354496"
last-modified: Tue, 20 Sep 2022 15:29:17 GMT
date: Tue, 01 Nov 2022 02:14:20 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hM2GLyK5Nis69WXXYJ3hLeusRvp_1AVWBhXWH7d-T-lq-E93LQ8azg==
age: 2497694
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   4734
Md5:    6aeffdd3def016d2a5cd98a164354496
Sha1:   4555b6b2422408370be6480d3c4f89fceb29c7be
Sha256: 97dfec2ad47a84acd5794232e76aeac85aa13fa94bfb433bf13c5e4604bf4e59
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498575/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_3.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 9850
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_3.webp"
etag: "01a2eb991df734f41f4cc861ca5000f8"
last-modified: Tue, 20 Sep 2022 15:29:19 GMT
date: Wed, 23 Nov 2022 08:22:33 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vm0bQMDvH_xPD-tJGmRlVz20gEc8JZuvjen4hGqPwxLekNHQX7a75g==
age: 574801
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9850
Md5:    01a2eb991df734f41f4cc861ca5000f8
Sha1:   eb2934da82b5d731c3c064b9d20bf605094572b4
Sha256: 9501891acc5cc07edce945e87ac0cc6d1c0052c12d0c7739210b43aa0199e93c
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498578/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_4.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 4720
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_4.webp"
etag: "0dc1116ac811f64ba3234f41557a0dc2"
last-modified: Tue, 20 Sep 2022 15:29:19 GMT
date: Wed, 02 Nov 2022 02:09:12 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jtSvP5Rw1jCgdcINMebIPX_Y25QvwhjnabI3TeQzrani7ISAvDN0_Q==
age: 2411602
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   4720
Md5:    0dc1116ac811f64ba3234f41557a0dc2
Sha1:   a0cd31cc4641f1d1d466fec42fd00d9c169a5436
Sha256: bc4238d69cf20c98d2bab1c247d1b901e0368ec5d94f3bb32e50a085a66656f8
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498587/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_5.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 8736
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_5.webp"
etag: "b1aff7e75d44b8e0172708734e4a24b6"
last-modified: Tue, 20 Sep 2022 15:29:22 GMT
date: Thu, 10 Nov 2022 03:31:57 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pPugHNqTKFhFxMVi0f-AVXvmT8jpJjGTJbmMblow9WO9KE5MiPnRpQ==
age: 1715437
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   8736
Md5:    b1aff7e75d44b8e0172708734e4a24b6
Sha1:   b3e70327dd366d99fd38f3b4be88fd42dd9e5249
Sha256: af58eb4ba2c0bcb12dd4d7f784f4374a76d1e763cf1213e820edb14fad29091f
                                        
                                            GET /stitch-fix/image/upload/q_auto,c_fit,w_196,h_296,f_webp/v1662498594/landing-pages/page-author-assets/1017/220901_BUSINESS%20LINE%20CAROUSEL_GN_V1_6.jpg HTTP/1.1 
Host: d3n78nkjl8tizo.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.42.132
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 14486
content-disposition: inline; filename="220901_BUSINESS LINE CAROUSEL_GN_V1_6.webp"
etag: "d707f776a6c55f7bcbebdc14f67c7527"
last-modified: Tue, 20 Sep 2022 15:29:22 GMT
date: Fri, 04 Nov 2022 09:35:36 GMT
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PqDGIM7UvZhQusIVucNvf05uQhrnDUYz_wtw0A2zVxFwSPYxObAYjA==
age: 2212018
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 196x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   14486
Md5:    d707f776a6c55f7bcbebdc14f67c7527
Sha1:   19de6bf2d4020a68406200918903d5810e8169d9
Sha256: e25946858a9e6e97be0741123a65b9859b59e4d489b59f61c7cda9e1819a14f9
                                        
                                            GET /consent/a8a1d6cf-f58b-450c-91ff-8511bb43ff37/a8a1d6cf-f58b-450c-91ff-8511bb43ff37.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 30 Nov 2022 00:02:34 GMT
content-length: 1429
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: uoGGNmZnLVViHSgv8xgV9A==
last-modified: Mon, 20 Jun 2022 23:15:37 GMT
etag: 0x8DA5312C941734C
x-ms-request-id: 2f3adc2d-b01e-000b-741b-85c092000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 15907
expires: Thu, 01 Dec 2022 00:02:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50a2edd9b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3481), with no line terminators
Size:   1429
Md5:    ba81863666672d55621d282ff31815f4
Sha1:   3da6000ce25d6adfff649896750c7fe7d89e8fb9
Sha256: c86a4968ac286f87420c3cff0acc4a3a840cf6f13db684c9709c24bc51c6038c
                                        
                                            GET /event/js?mt_pp=1&mt_adid=250511 HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.207
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 2506
Access-Control-Allow-Origin: *
Server: MT3 169 32252b7 master iad-pixel-x7 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 30 Nov 2022 00:02:33 GMT
Date: Wed, 30 Nov 2022 00:02:34 GMT
Connection: keep-alive
Set-Cookie: uuid=427e6386-9d9a-4d00-bcb6-2052c86477af; domain=.mathtag.com; path=/; expires=Thu, 28-Dec-2023 00:02:34 GMT; SameSite=None; Secure


--- Additional Info ---
Magic:  ASCII text
Size:   2506
Md5:    02401223851265611bbd36b74db4eb82
Sha1:   1cd00cfcb08e1824b1d7c27372ee3de9766f7326
Sha256: 3a0fa15eb4584a86a4b0e23249cdb115b044d8be8bdb6ff4ddf5dc28b417dbaf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS / HTTP/1.1 
Host: sessions.bugsnag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://www.stitchfix.com/
Origin: https://www.stitchfix.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.190.88.7
HTTP/2 200 OK
                                        
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Wed, 30 Nov 2022 00:02:34 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:34 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 21:46:57 GMT
Expires: Tue, 06 Dec 2022 21:46:56 GMT
Etag: "79be3c0701be5c3de2e6e0ce2d4af049f3ddcd86"
Cache-Control: max-age=596061,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771f50a2ae0db4ed-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:34 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 21:46:57 GMT
Expires: Tue, 06 Dec 2022 21:46:56 GMT
Etag: "79be3c0701be5c3de2e6e0ce2d4af049f3ddcd86"
Cache-Control: max-age=596061,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771f50a3eec8b4ed-OSL

                                        
                                            HEAD /stitch-fix/raw/upload/v1662677561/landing-pages/page-author-assets/1017/StitchFix_W7_Womens_30s_16x9_R7a_EndA_NoSubtitles_Website_No_Endcard.vtt HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         151.101.129.137
HTTP/2 200 OK
content-type: text/vtt
                                        
etag: "9cbd73b4cd2604c9805163d0d4772aa7"
last-modified: Thu, 08 Sep 2022 22:52:42 GMT
date: Wed, 30 Nov 2022 00:02:34 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=5;cpu=1;start=2022-11-30T00:02:34.276Z;desc=hit,rtt;dur=10
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary
content-length: 1458
X-Firefox-Spdy: h2

                                        
                                            GET /css?family=Fira+Sans HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 00:02:34 GMT
date: Wed, 30 Nov 2022 00:02:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   69208
Md5:    8277807aa4d2bf11ae28c76f4b42bba4
Sha1:   bc9de51aa0dbdb40e3a7d300b52b63b5aae5cdb8
Sha256: dee48272235c9a4bc373487698da28158c42026b8c6dac59ec024e5869244021
                                        
                                            POST / HTTP/1.1 
Host: sessions.bugsnag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 5c2a9cb6edac4fdbaa195dfaf0b9b177
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-11-30T00:02:32.530Z
Content-Length: 465
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         35.190.88.7
HTTP/2 202 Accepted
content-type: application/json
                                        
access-control-allow-origin: *
bugsnag-session-uuid: 07893f13-1617-4572-a4b7-ac9fd15422dc
date: Wed, 30 Nov 2022 00:02:34 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   21
Md5:    1807ffa1d44e667592a0f91c668ba65b
Sha1:   4d48849fa0f6917c9c57ed958680e9a1e722382b
Sha256: 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
                                        
                                            POST /graphql-api/api/graphql HTTP/1.1 
Host: www.stitchfix.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json; version=1;
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stitchfix.com/?irgwc=1&utm_source=impact&utm_campaign=Affiliate-partner%7Cimpact%7Cgn%7Call%7Call%7Cprospecting%7Call%7Cus%7C&utm_medium=Affiliate-partner&utm_content=Content&utm_term=My%20Education%20Discount&psid=20445&psn=My%20Education%20Discount&pcrn=Get%20%2420%20off%20your%20first%20Fix%20once%20you%20take%20the%20Style%20Quiz%21&pcid=8369&pcrid=1337566&click_id=woa1JFyx2xyNR7RVoXTXjwISUkA0eORFD1MORM0
content-type: application/json
x-csrf-token: er+DONpQPCcS9UqUaSC7CC2w5qi8sxyAATniZo9zkJS9+MxYC17O0o/ogzh9/W31+BtbI2vg/ZcCDgFvPn+Ryg==
apollographql-client-name: dynamic-shock:web
apollographql-client-version: $CIRCLE_SHA1
x-request-id: 01GK2XF72JD75H85WXXHMNMW9R-DYNAMIC_SHOCK_WEB-JS
Origin: https://www.stitchfix.com
Content-Length: 1061
Connection: keep-alive
Cookie: visitor_uuid=be254c60-6226-4959-9582-86cb8bf3cca5; _stitchfix_session=UVYrbWdhMVlPZTdZd2x5eDcrUnB5V1Z5Q3EwNHY3OS9Uek84bVlDSjhNcHlVRXNXTy9LMkxMNkkxbGplc25SQkxDZFZXUTNVR1RvNzlLcC9sWDhoU3ZESUtBVnFvUE1qd0VsNy96aEt3TW5wNmJ0Vy9ESGdWaXIwMWlkbEVaWUxycFJVaFJEa2I5N1RiaWNYN0FMcThnPT0tLVdjUVJWSEpvV2ZoRzBEdWhUYlBZYUE9PQ%3D%3D--07a09d7fbb508fd6a8b87cbcbc279218d6fa0912; _ga_X5DKPDYPM7=GS1.1.1669766552.1.0.1669766552.0.0.0; _ga=GA1.1.152735401.1669766552; _dd_s=rum=0&expire=1669767452285
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         143.204.55.63
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
content-length: 445
date: Wed, 30 Nov 2022 00:02:34 GMT
x-powered-by: Express
access-control-allow-origin: https://www.stitchfix.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-expose-headers: x-algo-request-ids,x-request-id,Authorization
cache-control: max-age=0, private, must-revalidate
set-cookie: _stitchfix_session=ZGw5N0ZjOGxIZGZEandZajl0SmhURU11cTVJSmRzZXRLNEY4YU5BR2ZxR0pFdFpWcWhtcFNMQnJ6cC92UFhmWXN1YkNNZ1RzQkFrTmNRTU5tL0lrZHFBeFEwK2FYUG4wZklxUnBCekVScEsydTU0ZG9CYjFLVHNmNkpDSksxcm8zVjNnWHdQbnI4clhoODJPWEV4clR3PT0tLXBZYlorOE5BRENUNWdWZklWSmdjUWc9PQ%3D%3D--660c169a98dc4dc78d7e93d232af0ea40cd9db2e; domain=.stitchfix.com; path=/; secure; HttpOnly; SameSite=Lax
etag: W/"1bd-nO+2FwurPerqkGod3/xnAjrpuA8"
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: E1nHoFbkdAcfVk7-H01Zd-8HElNqG9qtrIDFFjExCIIoaUxCUdzT1g==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (444)
Size:   445
Md5:    d24ce27f3e98f743305ad717dcfcc6eb
Sha1:   9cefb6170bab3deaea906a1ddffc67023ae9b80f
Sha256: 7c6279a049b87bd04f004e8f8b2363d51eaf485734f302d603381c1c57148334
                                        
                                            GET /event/js?mt_pp=2&version=1.1&previous_url=https%3A%2F%2Fwww.mail3.staffupdate.net%2F&industry=Clothing%20%26%20Accessories&mt_adid=250511&event_type=catchall&mt_id=1574118&language=en-US%2Cen%3Bq%3D0.5&mt_lim=20&document_title=Women%27s%20Clothes%20%7C%20Men%27s%20Clothes%20%7C%20Kid%27s%20Clothing%20Boxes%20%7C%20Stitch%20Fix&location=https%3A%2F%2Fwww.stitchfix.com%2F%3Firgwc%3D1%26utm_source%3Dimpact%26utm_campaign%3DAffiliate-partner%257Cimpact%257Cgn%257Call%257Call%257Cprospecting%257Call%257Cus%257C%26utm_medium%3DAffiliate-partner%26utm_content%3DContent%26utm_term%3DMy%2520Education%2520Discount%26psid%3D20445%26psn%3DMy%2520Education%2520Discount%26pcrn%3DGet%2520%252420%2520off%2520your%2520first%2520Fix%2520once%2520you%2520take%2520the%2520Style%2520Quiz%2521%26pcid%3D8369%26pcrid%3D1337566%26click_id%3Dwoa1JFyx2xyNR7RVoXTXjwISUkA0eORFD1MORM0&document_path=%2F&mt_cb=1669766553248 HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.207
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 1503
Access-Control-Allow-Origin: *
Server: MT3 169 32252b7 master iad-pixel-x14 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 30 Nov 2022 00:02:33 GMT
Date: Wed, 30 Nov 2022 00:02:34 GMT
Connection: keep-alive
Set-Cookie: uuid=a1e16386-9d9a-4100-8dd1-e13bfece6c26; domain=.mathtag.com; path=/; expires=Thu, 28-Dec-2023 00:02:34 GMT; SameSite=None; Secure


--- Additional Info ---
Magic:  ASCII text
Size:   1503
Md5:    e22774f0b65b45105356d4f7cb1fe520
Sha1:   ead7a7620cd3a848b7dc60d74b9ffc66d0e147e2
Sha256: 892424715091c2d9396ece1fd6afb752bb27979caea9bce4998309ebb482b97c
                                        
                                            GET /stitch-fix/video/upload/f_auto,q_auto,w_1280/vc_vp9/v1662745243/landing-pages/page-author-assets/1017/220901_Fall%20Hero%20Video_GN_V1_2.webm?_s=vp-1.9.0 HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.129.137
HTTP/2 206 Partial Content
content-type: video/webm;codecs=vp9
                                        
etag: "038dc0610dba2b33c400d2aa9595d4c9"
last-modified: Wed, 21 Sep 2022 13:35:28 GMT
content-range: bytes 0-3664802/3664803
date: Wed, 30 Nov 2022 00:02:34 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-11-30T00:02:34.442Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Range,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 3664803
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  WebM\012- EBML file, creator webmB\20\012- data
Size:   3664803
Md5:    038dc0610dba2b33c400d2aa9595d4c9
Sha1:   3c49f73fa5269b6b81e5a5c0c5a23e0fca968eba
Sha256: a2a8c254407967a26bd00d453281ed4b078a2cd551c18f0b456cc3e6a2aed4b3
                                        
                                            GET /sync/iframe?mt_uuid=a1e16386-9d9a-4100-8dd1-e13bfece6c26&no_iframe=1&mt_adid=250511&mt_lim=20&source=mathtag HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         23.38.200.207
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 713
Access-Control-Allow-Origin: *
Server: MT3 169 32252b7 master iad-pixel-x31 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 30 Nov 2022 00:02:33 GMT
Date: Wed, 30 Nov 2022 00:02:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text
Size:   713
Md5:    f853f2ecf3f2d763c4057f4ff5c3e4e8
Sha1:   0f9ca6de16aa4261f1202443311462a81717dd85
Sha256: 8040be8c28a19b0f78481f2da17e7220e75adde27eb9713ff626652a066f92da
                                        
                                            GET /stitch-fix/raw/upload/v1662677561/landing-pages/page-author-assets/1017/StitchFix_W7_Womens_30s_16x9_R7a_EndA_NoSubtitles_Website_No_Endcard.vtt HTTP/1.1 
Host: res.cloudinary.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.129.137
HTTP/2 200 OK
content-type: text/vtt
                                        
etag: "9cbd73b4cd2604c9805163d0d4772aa7"
last-modified: Thu, 08 Sep 2022 22:52:42 GMT
date: Wed, 30 Nov 2022 00:02:35 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;start=2022-11-30T00:02:35.043Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary
content-length: 1458
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   1458
Md5:    9cbd73b4cd2604c9805163d0d4772aa7
Sha1:   6a45fb15fd3298deae2c16b22af5289b9deef75a
Sha256: 911117d8388aace2b3ccb9a9b91eb55178531c32cfa2c0cafbebd8466055934a
                                        
                                            GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.105
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C73P62igjanbS8YtRN8ze-LTeHk-8atACIqZvl1HFipJePRinavVhQ==
age: 557549
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size:   1035
Md5:    e0652b84b7b3b650769c759fc520c3f8
Sha1:   0b55d6e28613350c7f41b88f19e726e6751ad03b
Sha256: 94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /c/hotjar-236222.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.113
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 30 Nov 2022 00:02:33 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/6a5fa1490dc0ce467b0fcb0ab23a8094
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KcFpEdE9m5zOTP51zAxSxoLt2Rp-nG6pudguwKZPnNgLNz3TRXfQRA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (15686)
Size:   5111
Md5:    8aded1fad6867668880c0c44d668d9ec
Sha1:   f17611771e7b74bc1477d5bd60519af4926f4bcf
Sha256: cd82b886d90b13253b90f0d68eb935e8bfc0542fb3022a5903936f708fa5c5b9
                                        
                                            GET /s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:50 GMT
expires: Wed, 29 Nov 2023 15:42:50 GMT
cache-control: public, max-age=31536000
age: 29985
last-modified: Thu, 21 Apr 2022 16:51:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22592, version 1.0\012- data
Size:   22592
Md5:    4528524c7142b4e2d5c0438763223328
Sha1:   d439d881fd8c4f41e77c2fb07678e53fce3e331a
Sha256: ea03bd5d723c75f6d0a9419d4f9651afd78ea2a4abfcee7f926cbde0681a2671
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-25598599-19&cid=152735401.1669766552&jid=568870979&gjid=50149651&_gid=1383097792.1669766553&_u=YADAAEAAAAAAACAAI~&z=1122024729 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         74.125.131.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.stitchfix.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 30 Nov 2022 00:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1 
Host: pixel.mathtag.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.207
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 169 32252b7 master iad-pixel-x15 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 30 Nov 2022 00:02:34 GMT
Date: Wed, 30 Nov 2022 00:02:35 GMT
Connection: keep-alive
Set-Cookie: uuid=2ef46386-9d9b-4500-8f26-48141d48d5b7; domain=.mathtag.com; path=/; expires=Thu, 28-Dec-2023 00:02:35 GMT; SameSite=None; Secure

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /scripttemplates/6.7.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 30 Nov 2022 00:02:35 GMT
content-length: 73268
content-encoding: gzip
content-md5: 39GJ8QXxSjBaTmaIgt+tLg==
last-modified: Fri, 09 Oct 2020 06:35:45 GMT
etag: 0x8D86C1D8DA49AF8
x-ms-request-id: 0065655e-d01e-0032-776c-c48036000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 79376
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50aa0a40b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65456)
Size:   73268
Md5:    dfd189f105f14a305a4e668882dfad2e
Sha1:   f5875344081b0c6c5b59e07dd40200ffd1703c3d
Sha256: 0e77bf0caf2c0091180cafdbe4d8466c9e619e8a2878c3afece9bb31b8fa116c
                                        
                                            GET /consent/a8a1d6cf-f58b-450c-91ff-8511bb43ff37/c0734f0c-6b0e-4e44-875c-a387be0b9916/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Wed, 30 Nov 2022 00:02:35 GMT
content-length: 38051
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: H5MNZ3s8I8kzZoDaqYPwXw==
last-modified: Mon, 20 Jun 2022 23:15:41 GMT
etag: 0x8DA5312CB4905E5
x-ms-request-id: 8925a193-201e-014e-52ff-845b56000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 15907
expires: Thu, 01 Dec 2022 00:02:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50aa9ae4b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (65510), with no line terminators
Size:   38051
Md5:    1f930d677b3c23c9336680daa983f05f
Sha1:   1f1074596f7075ee3a8224bb8d9d3dea049f2e3e
Sha256: c0d6cd14c8ac8d61a956d9ced2daabe34b35467a297c1d9160cb9ad66b6cc727
                                        
                                            GET /cookieconsentpub/v1/geo/location HTTP/1.1 
Host: geolocation.onetrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.26.85
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 30 Nov 2022 00:02:35 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 771f50a959930b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 30 Nov 2022 00:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /scripttemplates/6.7.0/assets/otFlat.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 30 Nov 2022 00:02:35 GMT
content-length: 3328
content-encoding: gzip
content-md5: 6g5s6eICehvPXWb9nycIcQ==
last-modified: Fri, 09 Oct 2020 06:35:38 GMT
etag: 0x8D86C1D890DBAF3
x-ms-request-id: b21a71a0-401e-00f0-7c6c-c40888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 15907
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50aacaf4b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (9727)
Size:   3328
Md5:    ea0e6ce9e2027a1bcf5d66fd9f270871
Sha1:   c2bed2ba2a69573737ec23aae69e427189b70566
Sha256: ce640f97b94dc81c822a0ba54c5abf6ae049bb8a21190eb04697f3a2e66d3539
                                        
                                            GET /scripttemplates/6.7.0/assets/otPcCenter.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stitchfix.com
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.148.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 30 Nov 2022 00:02:35 GMT
content-length: 14914
content-encoding: gzip
content-md5: EIppAUV7YsQZ/f7or5m7Zg==
last-modified: Fri, 09 Oct 2020 06:35:38 GMT
etag: 0x8D86C1D895E0CDC
x-ms-request-id: 2805d544-101e-0006-3d42-ca2f9e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 30921
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771f50aacaf7b523-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (40122)
Size:   14914
Md5:    108a6901457b62c419fdfee8af99bb66
Sha1:   ccdae410d4e7a429cdbdf9e4696f76045b9adb75
Sha256: 016575364cd850a5c362bbd4bd613ebb03d86542eba0aa7e97739a40c5ecc721
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-25598599-19&cid=152735401.1669766552&jid=568870979&_u=YADAAEAAAAAAACAAI~&z=964562590 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 30 Nov 2022 00:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-25598599-19&cid=152735401.1669766552&jid=568870979&_u=YADAAEAAAAAAACAAI~&z=964562590 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stitchfix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.132
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 30 Nov 2022 00:02:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive