www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
172.67.176.41301 Moved Permanently 0 B URL HTTP/1.1 www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
IP 172.67.176.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lana-heels-are-the-celebrities-new-favourite-shoes/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 16:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 17:35:09 GMT
Location: https://www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q0fzOgfsFt2lOg3C2cjFwjVQ%2B0nqOTkgU%2BdKkssQ5t43MsjD7G23wfvymxHf9LF4C7IHOeB1WflGNToCWHpG3onYt92tsTGJOzyY6S%2BP4wpuJ7Br7oNcHxNU922TNful6SopsYdjbA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793456a30806b503-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9866
Expires: Thu, 02 Feb 2023 19:19:36 GMT
Date: Thu, 02 Feb 2023 16:35:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4537
Expires: Thu, 02 Feb 2023 17:50:47 GMT
Date: Thu, 02 Feb 2023 16:35:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 15:43:31 GMT
content-type: application/json
age: 3099
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3403
Expires: Thu, 02 Feb 2023 17:31:53 GMT
Date: Thu, 02 Feb 2023 16:35:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LL3BHR2O0v6BCshsP3W+FAI63604KO1AHCBBtxp7X253ql67eTUEsHt3dRMyftuvw6mAucC3seg=
x-amz-request-id: 5Z5ZWD49HF2WBFGH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 15:52:02 GMT
age: 2588
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21469
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:35:10 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:07:19 GMT
age: 1671
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14200
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 16:35:10 GMT
Connection: keep-alive
push.services.mozilla.com/
52.43.88.238101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.88.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Xko3wfn/rvZX2CxIf1eLrw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hCvQV8T873UKfUU3INYpInxbsiI=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11311
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11311
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11311
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11311
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:12 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21467
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:35:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 66936
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 67041
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 65614
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 33544
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 66877
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: e8e96b85-5b24-48b4-bea3-6c1b93c55ca1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGf3oAMFj1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-558cb5ec6f31497d284518be;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AeFT9dVmzOw8800DKN7VouWS3HGHRYp64On9sF62J-aOK_OGtvAa7w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:52 GMT
age: 66140
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
23.36.76.122200 OK 8.6 kB URL HTTP/2 injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
Hash 40f1d7f35e5164cc8c9f48a85add705a
67b38efe3592f2886657062317578fcd90179ab5
b8bf7ac5f2a589734b7723631a7f56e57eae47f33eec14918e2ff9d18d3ce5eb
GET /prod/configs/01gprs6bbp1vch8p21.js HTTP/1.1
Host: injections.mmvideocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sat, 14 Jan 2023 18:43:03 GMT
etag: "5a1feebb2ed713c1c849c660fac997b8"
x-amz-version-id: avRIzNEMqHV6HpWDjC3BWpJmUL_o_isw
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: dfqHTnX8B9YNIqpAGR7WFhUoRmoiCkAPimFd1ok783Eu06UUuQslTw==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 6371
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=3
185.76.9.21200 OK 80 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 7010861269649c9799bce1825643c044
994a5c2d7730423a8293baf0a6196b2f4e7fb4bb
9101f2113b0772246c3ece1d4eb2e566e1a01a7edc4480998f2922ae89edb5d3
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919028
server: CDN77-Turbo
x-77-nzt: AblMCRQIV+3/DKIAAA
x-77-nzt-ray: af5856303737799d40e6db634be0432d
x-cache: HIT
x-age: 41484
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 2.2 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash e9f45c8dbb550b6d68348bbf4ac5d17b
23f8a3d714721cc27b031ac088e2bfa6aad497bb
0c25d80a2288ef2385014742f64744409b405d20ddb41ba2c68fce68ac4de76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 367811
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 15 kB IP 142.250.74.131:0
Hash 954a97b0f4591fd0544a6b2ce3c0fde9
76f46747b20f5ce7b9b2e0a6f3c2412282b3d286
8276d20eb5dbf5dd001700d1b4597799778b84877ba8c1fa67d919b2c9aa5e00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 9.0 kB IP 142.250.74.131:0
Hash c30e08509d24e8cdc22a05af32e158a2
7c095fa38884a8fd2c2cec698a6a8acf9359633a
2c3b31a7955776d38a3b9015ad0cd9e9f35484e72c9cdae706988f87b94288d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 38 kB IP 142.250.74.131:0
Hash 90f7e4a36455aeee6780314b11cba68f
963ca0b33d18938f3c2c9d5e8728338531fe717b
e552f1fc45b1fc8c6c32236e2faa416c08517260ebdb90863cebabf3c0d9288d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
Hash e049a3d676350f72e0c87660d830d66c
5f12f79db6c8a43cc487af44029eb235d07348ac
8b9f8c71d377ebe2e75f1ad954e6920823eac1e7fba3ee5c6e14fcf9caca2c46
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 216366
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
185.76.9.21200 OK 21 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash e50dc96baa76ef8bf95b29c71b384bc5
e3547807c93d259f8b4f13e716c36dcc2b105ca4
b29a247151083dd664bc6a46fed33fb4d5b29c79aac1b6daecb6dd19652983e9
GET /s/requestform.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960512
server: CDN77-Turbo
x-77-nzt: AblMCRQd9p+h
x-77-nzt-ray: af5856303737799d40e6db63e360502d
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.21200 OK 50 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash b7c00d5cbe6600e9e556756506d7fb14
d92b3471251ffe46ec6376bb40bdbadd83656b96
1418549411cb939bda26ee21813a4153b886eae4752cdb7ab27152d3af08299f
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675919028
server: CDN77-Turbo
x-77-nzt: AblMCRR09ij/DKIAAA
x-77-nzt-ray: af5856303737799d40e6db631ecb3b2d
x-cache: HIT
x-age: 41484
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.35200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:06:02 GMT
expires: Mon, 29 Jan 2024 10:06:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
age: 368952
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7b84738ecc4c957dd526bb04245d67c
2f0158e29600270789f5893ece7c1effcd650dba
dac7086d533de13bb6a7ace203f33530359e60690a0510aeec24853dd4a90837
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5352
Expires: Thu, 02 Feb 2023 18:04:26 GMT
Date: Thu, 02 Feb 2023 16:35:14 GMT
Connection: keep-alive
vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
23.36.76.179200 OK 130 kB URL HTTP/2 vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
IP 23.36.76.179:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 130 kB (129816 bytes)
Hash 6895e5d8f92b8246c24f5be3b190486c
aa2f1bc4556c7e6f880df0a6a54acfe1dcdc4839
8cb5c763e1f02ae12a952daff6dc423b20f31225f1187debd842aec0df8020db
GET /01gprrjb4arydv8gd5.js HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 13:26:11 GMT
etag: "362e9608063f9fc3c9c78fc493296b50"
x-amz-version-id: RWBOQfpkYXGPCXohfxbDy3No2UrNVnqx
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 129816
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2598
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 15:51:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4819
Cache-Control: max-age=145699
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Etag: "63db6992-118"
Expires: Sat, 04 Feb 2023 09:03:33 GMT
Last-Modified: Thu, 02 Feb 2023 07:43:14 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 166
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 16:32:28 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=140880
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Etag: "63db6992-118"
Expires: Sat, 04 Feb 2023 07:43:14 GMT
Last-Modified: Thu, 02 Feb 2023 07:43:14 GMT
Server: nginx
Content-Length: 280
www.styleonwards.com/wp-includes/css/classic-themes.min.css?ver=1
104.21.31.91200 OK 3.6 kB URL HTTP/2 www.styleonwards.com/wp-includes/css/classic-themes.min.css?ver=1
IP 104.21.31.91:0
Hash cd7bd05ef78ade7010b5f298d9af2a6a
456f2742b2df0d78d81e0f3419a2691345bdf0ca
ebf8d742a9e48183e0466eae4079a170b2083b106f29b250707de7a60322b89a
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
Cookie: _pbjs_userid_consent_data=3524755945110770; sharedid=8f8c354a-f446-454e-9a59-23ef77777a18; cto_bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q; cto_bidid=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE; __qca=P0-1990692663-1675355611968; _ga_PEGZJDQ1BR=GS1.1.1675355613.1.0.1675355615.0.0.0; _ga=GA1.2.1453513369.1675355614; _gid=GA1.2.1588214487.1675355614; HAPPIDS1=s2|Y9vmQ|Y9vmQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/css; charset=utf-8
cf-ray: 793456b27df4b4eb-OSL
age: 131
cache-control: max-age=2592000
etag: W/"193361593"
expires: Sat, 04 Mar 2023 16:33:01 GMT
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FxUJ7hx34V4myi9ecq6G0mVx7oDjvENJV938zTs7L%2FnlpTEfhUnE6QlxilAgz5sSarC01VN3Jtlyx3I6DT34iwEVUplBQsdcRkPE7LALddQ53pDraU6pNML5YxcTrLqNe61VTaSSIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=105238&f=2&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=2&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:35:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:FBB6_36264064:01BB_63DBE642_1D55CB9:10496
X-IPLB-Instance: 20687
vms-players.minutemediaservices.com/mplayer-bridge.html
23.36.76.179200 OK 437 B URL HTTP/2 vms-players.minutemediaservices.com/mplayer-bridge.html
IP 23.36.76.179:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b6f88785c2468cad5fb5f81875b3ed0
b9b6efe64f02216e71bf855b655d8e80cc6c1aa4
23d5d6daf3c6d984e04f38ffe65bcc7f9327b7875a0cca730f974978feecacb6
GET /mplayer-bridge.html HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 11:11:02 GMT
etag: "e97239360af3389bafb536d4d0bdb35f"
x-amz-version-id: .9RAF9XlHfXzYtZBMnFKExfBF741L2yh
accept-ranges: bytes
content-type: text/html
content-encoding: gzip
content-length: 437
date: Thu, 02 Feb 2023 16:35:14 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a12d896937e3b818305d973e9e1b7616
266ffdbedf6a194bc957620abb17a3456d8af585
4c2e4fa2f6a3920a1b7b749a3bb7b9ea8c9ee21da1443c39655c27c1f37386ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5709
Cache-Control: max-age=152687
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Etag: "63db8164-117"
Expires: Sat, 04 Feb 2023 11:00:01 GMT
Last-Modified: Thu, 02 Feb 2023 09:24:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
www.oo-syringe.com/prod/mux.js
23.36.76.170200 OK 79 kB URL HTTP/2 www.oo-syringe.com/prod/mux.js
IP 23.36.76.170:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (409)
Hash 504174b4be40a301ff0ce1730563e618
c92f183bff3c0a5beb0d96d3e22ee053b58070b2
8eec15d84a6aab8070d633ff1176e03cb8eed328384e3ae360142a0dfae3d4cc
GET /prod/mux.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 06 May 2021 12:05:42 GMT
etag: "6d13ad5f29e69baba39798f1074bc746"
x-amz-version-id: zKDr1tGTeMrjUohEczWF1VZiqUanfaXu
accept-ranges: bytes
content-encoding: gzip
unused62: 8096267
content-length: 79352
date: Thu, 02 Feb 2023 16:35:14 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
23.36.76.170200 OK 3.2 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
IP 23.36.76.170:0
ASN #20940 Akamai International B.V.
Hash 65b9d93a9bee0c9f423683e314f0d855
77c1bde033e313d54199d51d8ceafa4ee4d2f58b
daaa3cc622ac78ad5d45948a8673e6e66c350a79606dff37252c4d721789560d
GET /prod/players/mplayer_read_more_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "dc710e7075327a8a3d72f2c34d49ea62"
x-amz-version-id: Py3CKBkCM6isYyGRmzWXav_E8UVxFw5_
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: T0il03ptZJH1j5IWnNjqxtcOtsnjz4nuu5zpknsEko89lZ9jPwxygA==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 2564
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
185.76.9.21200 OK 27 kB URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 37d4f3c9dc6ae9de858bc254c1772f16
982b665f0d6ee2581a7d61f5246b77140e85f669
780dec48bd6cb610dc225a90d1ed1ac4c24801fd818dd550b2bbdae86fbfd9c2
GET /s/requestform3.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960514
server: CDN77-Turbo
x-77-nzt: AblMCRSAjE2h
x-77-nzt-ray: af5856303737799d42e6db637574ee1a
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 98756cae405d9c3b5811994c89fda8f1
4abf184f58b600294859cccac617b4d612919b7a
a609d6353ac127502a7191b18b067ecff5f7897463c8093e1115d95ef6088415
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6440
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:14 GMT
Last-Modified: Thu, 02 Feb 2023 14:47:54 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
185.76.9.21200 OK 198 kB URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (64216)
Size 198 kB (197619 bytes)
Hash e56bceda7a5d314a9048efd295fb2ec8
deaf180890ec308da2fb22fa37ad39f1e6536c80
f27bfd0c9f80a8ca192d8ce0a80e5c52729c18479ffc9cb5904d74e6ca6d02e8
GET /moneybid7_28/build_noconsent/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:59 GMT
expires: Fri, 03 Feb 2023 05:03:58 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400638
server: CDN77-Turbo
x-77-nzt: AblMCRQWuhb/BKIAAA
x-77-nzt-ray: af5856303737799d42e6db63f3f1f231
x-cache: HIT
x-age: 41476
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
23.36.76.170200 OK 119 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
IP 23.36.76.170:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 119 kB (118732 bytes)
Hash f2c9e49158355fb6cb43ea5d63f9233a
300393a95254fe65f31f7b1abf9ee0b2fcf074e9
b44a4401e29126e2d0c2e37ffd581b10f18e9afe5934faaa50021c3080ac94a4
GET /prod/players/mplayer_shaka_voltax.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "9deb651bfb4ab64c62edceb7a856c6ad"
x-amz-version-id: 12NlOVx4l7vIT2ncxDak_wq6CYhqx8VQ
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: Seoq4Uf3p9SPLOcBlBUHmeBpt452KM7GLSxA549_haD3BYyQS9_NAQ==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 118732
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/moat.js
23.36.76.170200 OK 819 B URL HTTP/2 www.oo-syringe.com/prod/moat.js
IP 23.36.76.170:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (512)
Hash 97adb33da684235cc6661698b63e575f
c4e103e7d71630e775635f8c1376204920e02236
50467fbe689b30b01578ce0b33bb0515b1af50880820e28a52c2192ad62d85ce
GET /prod/moat.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Jun 2021 07:25:49 GMT
etag: "73ea42f8fec6a330dd719d2e3bf83b41"
x-amz-version-id: cqCb6oftCBR4g3kB01xepxAGq749bs6O
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 819
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 21 kB URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
File type Unicode text, UTF-8 text, with very long lines (50946), with LF, NEL line terminators
Hash 865c8775872dec3628430d48e366d1ee
80b21ca672c90003b4b63fab725003c0a7d0199f
5abc9c1474d4807338edd0fe895ba124df258c059826ea612732821356f82621
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Cookie: zc=34c524b5-0dfc-4cac-5d3a-c9db9273da48; zsc=%3B%C3%2A%B6%07%2C%92%BCQ%9F%5CE%3E%D2%5D%AB%B9%A4k%A6%ED%C5%A5%96u%F9.U%AD%21%0CLCD%CE_%C8%E0%DD%3B%D2%077KAJN%FA%0D%29%8C%CD%94%B3%1F%AC%7C%DA%28-q%AA%B6vX%CC%EFg%D7%93%29s%7C%D6%C2-%09Si%DF%A3W%0B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456c1d92a0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675355741728
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1675355741728
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1675355741728 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
bqstreamer.com/tr/
172.67.71.40200 OK 23 kB IP 172.67.71.40:0
Hash 33ca5c7a656229e9e921ac3aa8d36170
d25b8ff151c8019ab2e494420a0e88aa542b3bd9
46c391e69b1ac3a38bbfe81d0eeb71ccd8f663a910a97225534c6a7c8f9211ce
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zzSArsxkYtqppi9%2BKbyZHjEn8jKn8GIKpmqZJHtz0dt4U6kTlNwlBgDIXRMRcFWMqE5TECa02EAe2rUC0TZBkPpzoRxISr4DsRDPC2%2FIHd6KvPwIDDCqElY5AN6HDPj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c168bf0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b39e977b1a75b88dae4d9e4f1eabe018
433aa69f36044c2f4223e152455ac9adec8174ca
59055a92d1994f2e3c777fa748c4ee9a064f429318678a95661b9d73aef2fdb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 20:45:27 GMT
Expires: Wed, 08 Feb 2023 20:45:26 GMT
Etag: "433aa69f36044c2f4223e152455ac9adec8174ca"
Cache-Control: max-age=532811,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793456c26d80fabc-OSL
tag.leadplace.fr/libJsLP.js
145.239.193.51200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.193.51:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:35:15 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 14 Oct 2021 07:27:52 GMT
ETag: "6167dbf8-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:2526_91EFC133:01BB_63DBE642_697B7DED:14265
X-IPLB-Instance: 29922
content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1ncpc%252Fjggnu%252Fctg%252Fvjg%252Fegngdtkvkgu%252Fpgy%252Fhcxqwtkvg%252Fujqgu1&origin=www.styleonwards.com
23.36.76.216200 OK 5.0 kB URL HTTP/2 content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1ncpc%252Fjggnu%252Fctg%252Fvjg%252Fegngdtkvkgu%252Fpgy%252Fhcxqwtkvg%252Fujqgu1&origin=www.styleonwards.com
IP 23.36.76.216:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (20188), with no line terminators
Hash a037bac1a451033ceb0677607473b872
03adbc68550c3d8bf76f03d143244c58133872d8
6b82357b893ed2211e2e70c48d535d9621408ecc990ce04efcbdcf7a344c38a8
GET /playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1ncpc%252Fjggnu%252Fctg%252Fvjg%252Fegngdtkvkgu%252Fpgy%252Fhcxqwtkvg%252Fujqgu1&origin=www.styleonwards.com HTTP/1.1
Host: content.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
restricted-videos-ids: 01gnvd0t41g6qvt1wzw4
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
date: Thu, 02 Feb 2023 16:35:15 GMT
content-length: 4999
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:15 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:15 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:35:15 GMT
akaas_default=2147483647~rv=74~id=80a429b82113a92d8f15f11cd568b6d2~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
bqstreamer.com/tr/
172.67.71.40200 OK 473 B IP 172.67.71.40:0
Hash e28a06e2591946a0c2a9e9e0cfe8153e
e4c723359f79030c7710c1b7e42f7c93c2a0f465
201512392af0d5b42dacfb9623d1d94d52956549aa7969abf342aef8f2baa940
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NRBNXpHcX0NMwMbPa6358Fu27fp8l69dqzgHeAwD68%2BIJfS3qDtc6umscuVBjXiHfjJ6YADHk0wKNIkqRbCU4DHmfZiqvU70xu%2BD4mPq4rptX2oy5r9Xbd1xDpJ269J%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c06ffd0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
p.cpx.to/p/11528/px.js
54.75.168.203503 Service Unavailable: Back-end server is at capacity 0 B IP 54.75.168.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/11528/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
bqstreamer.com/tr/
172.67.71.40200 OK 96 B IP 172.67.71.40:0
Hash 765ad4157256c6df0e842495e017dc87
a3b82f64228528476f8f0b9e386f630e5be77c82
52ddd265dd1af89096a1f26e9b2026c8902b6234bf9371215ebc4660f0be7313
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 151
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bw5apLXVpMtHulfcPxKWyZU6lVRPSb2UnJkVfIeESOOd0GhIlrdmTQV%2FuTwUEqJ5l%2B3Xd%2BNKaaP%2FCrM6htnTIu3VAi%2BBsZdl%2BQHVPtKDGhbxDHsU56rgnSjmE4hf8AxN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c05fed0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&id=MTIZ
145.239.193.51200 OK 0 B URL HTTP/1.1 tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&id=MTIZ
IP 145.239.193.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&id=MTIZ HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:35:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-IPLB-Request-ID: 5B5A2A9A:2526_91EFC133:01BB_63DBE643_697B7DF3:14265
X-IPLB-Instance: 29922
bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
23.36.76.202200 OK 44 kB URL HTTP/2 bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
IP 23.36.76.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d22f4ba55c6da14e00645d5b640e1a06
5300f2ea6dd9ed727fae3866bc00f4fd21f9eef0
b8a41a59c80716147c952fb02375d0f3149d3e1e617d8ddea4c79f07913d551c
GET /lib/comScore-JS-6.2.3.180328.min.js HTTP/1.1
Host: bucket1.mm-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 31 Mar 2019 15:57:40 GMT
etag: "18a99636882ae65fbb2e600e276380ca"
x-amz-version-id: UP2tnScyf0IkbIh1GVgoQZiM5AlMQNdo
accept-ranges: bytes
content-encoding: gzip
content-length: 43460
unused62: 8096267
date: Thu, 02 Feb 2023 16:35:15 GMT
vary: Accept-Encoding
cache-control: max-age=27368113, private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
cdn.mmctsvc.com/.mc/geo
23.36.77.43200 OK 74 B IP 23.36.77.43:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash c8609aaa7e973bc0db88b137f453280c
6ddae9a73030d10f539a69e69e231319d46855ee
ee3a8276be30d08f642ba53d27f6f68910e7df9cbd07e4564b476f671242f776
GET /.mc/geo HTTP/1.1
Host: cdn.mmctsvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
last-modified: 2017-01-13
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:15 GMT
content-length: 74
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:15 GMT; secure; SameSite=None
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:15 GMT; secure; SameSite=None
userPlatform=desktop; expires=Thu, 09-Feb-2023 16:35:15 GMT; secure; SameSite=None
access-control-max-age: 6000
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.teads.tv/analytics/tag.js
23.38.201.50200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 23.38.201.50:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Thu, 02 Feb 2023 16:35:15 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
54.230.245.166200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 54.230.245.166:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 02 Feb 2023 02:21:29 GMT
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JYcvHll1f9iRzUiocFmOGWyYxXou1_5Bw9ybBh0aFtesXmEPHLaR2Q==
Age: 51229
ced.sascdn.com/tag/1097/smart.js
23.36.77.48200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Thu, 02 Feb 2023 18:35:15 GMT
Date: Thu, 02 Feb 2023 16:35:15 GMT
Connection: keep-alive
secure.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g
192.0.73.2200 OK 1.0 kB URL HTTP/2 secure.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 45x45, components 3\012- data
Hash 4d4d1d81356dcb6b307c3683e6044525
279288dc9f09a288c1e5dd0e7a42c9c168f5330c
bf964a5ea3ebef940bd07406b27944a6902baf343c2b7c4d3d848cf2fb4d2a17
GET /avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: image/jpeg
content-length: 1041
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="69c79b93190dc66720e4cddc363a2455.png"
expires: Thu, 02 Feb 2023 16:40:15 GMT
cache-control: max-age=300
x-nc: HIT arn 1
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e4ef294e427dbd856853cbc0d4c663
062b9217afb6a661a4e71598d919d0baadc41143
ba5e7d77b810caf885ae1ebdc1d464e397e08445e1cbac0a8b6665d5624e291b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3118
Cache-Control: max-age=95022
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Etag: "63daaa43-1d7"
Expires: Fri, 03 Feb 2023 18:58:57 GMT
Last-Modified: Wed, 01 Feb 2023 18:06:59 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 37c26fb09f8a09fdc910d20b97d6f079
5d7848dc1152b81bf53c10fee9e26e20a01b0f02
740e3d2348357db713554ff75471d18ad9d2a2e810f71b3bab61984b026295fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "740E3D2348357DB713554FF75471D18AD9D2A2E810F71B3BAB61984B026295FD"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4695
Expires: Thu, 02 Feb 2023 17:53:30 GMT
Date: Thu, 02 Feb 2023 16:35:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Etag: "63dba49f-138"
Last-Modified: Thu, 02 Feb 2023 16:27:06 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
162.19.138.120200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
IP 162.19.138.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:15 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:35:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
script.4dex.io/localstore.js
172.67.75.241200 OK 268 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 172.67.75.241:0
File type ASCII text, with very long lines (482)
Hash 58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1811177
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R4JdUzQ%2FQLXHXl6qR4IhhKVPI%2FtkfeYtJRO4fODLirqbhC6Vjc3VL1T%2BbW2BjQoiRCKVCJzJYRDX8j53LIl1%2FUC8X%2FFcr0p3ku8spXn8me%2Fr9U1r6tR1acgPx0QTkKfm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793456c4bc310b51-OSL
Content-Encoding: br
script.4dex.io/adagio.js
172.67.75.241200 OK 23 kB IP 172.67.75.241:0
File type ASCII text, with very long lines (65354)
Hash 0ffb2c9b6dd933ae18ab7dc729d58e69
bb88b2f3fc47452873348d1cdcb7ea3d4a2bbc10
0cd0e55fa43693dfe4b04a225bf7774eb3f66e232828f8d661547728475a12f2
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Last-Modified: Wed, 23 Nov 2022 15:43:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 131
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=16U1Ok4%2F2JZtCBLZgYVqaXlsjwB6PoxkwX9CAaQw4hIdeVSwqK3vmxIVnDP%2FBUS1L6NbMMzyywiePg220opIVfUhkf5BM039q9d60pRCLjCbKewws%2BKB3eTkJOHPxPME"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793456c4ff6e0b55-OSL
Content-Encoding: br
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1
178.250.0.157200 OK 469 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (587), with no line terminators
Hash 92fa6ce5953830d16aa90a6d08380a52
4e33c11711550a39e162ca88e83a78f4351f69fe
d5215a2c48f1b32ae5c36bb9e8084e23d80cb541b62a7c8af945f2296df9991f
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 862514
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 682373
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=1128331443;labels=Categories.styleandfashion;rf=0;a=p-6Fv0cGNfc_bw8;url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F;uht=2;fpan=0;fpa=P0-1990692663-1675355611968;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=styleonwards.com;dst=0;et=1675355742404;tzo=0;ogl=image.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Fwp-content%2Fuploads%2F2023%2F01%2FBlackLanaHeels-1000x600%252E%2Ctype.article%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Clocale.en_US%2Ctype.article%2Ctitle.Lana%20Heels%20Are%20The%20Celebrities'%20New%20Favourite%20Shoes%20-%20StyleonWards%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Curl.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F%2Csite_name.StyleonWards;ses=83334c26-1740-4944-bd35-e551976d069c
91.228.74.159200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1128331443;labels=Categories.styleandfashion;rf=0;a=p-6Fv0cGNfc_bw8;url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F;uht=2;fpan=0;fpa=P0-1990692663-1675355611968;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=styleonwards.com;dst=0;et=1675355742404;tzo=0;ogl=image.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Fwp-content%2Fuploads%2F2023%2F01%2FBlackLanaHeels-1000x600%252E%2Ctype.article%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Clocale.en_US%2Ctype.article%2Ctitle.Lana%20Heels%20Are%20The%20Celebrities'%20New%20Favourite%20Shoes%20-%20StyleonWards%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Curl.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F%2Csite_name.StyleonWards;ses=83334c26-1740-4944-bd35-e551976d069c
IP 91.228.74.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1128331443;labels=Categories.styleandfashion;rf=0;a=p-6Fv0cGNfc_bw8;url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F;uht=2;fpan=0;fpa=P0-1990692663-1675355611968;pbc=;ns=0;ce=1;qjs=1;qv=c1229512-20230130173030;cm=;gdpr=0;ref=;d=styleonwards.com;dst=0;et=1675355742404;tzo=0;ogl=image.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Fwp-content%2Fuploads%2F2023%2F01%2FBlackLanaHeels-1000x600%252E%2Ctype.article%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Clocale.en_US%2Ctype.article%2Ctitle.Lana%20Heels%20Are%20The%20Celebrities'%20New%20Favourite%20Shoes%20-%20StyleonWards%2Cdescription.New%20Celebrity%20Favorite%20Shoes%252C%20Lana%20Heels%C2%A0%E2%80%93%20One%20more%20thing%20that%20must%20be%20collected%2Curl.https%3A%2F%2Fwww%252Estyleonwards%252Ecom%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F%2Csite_name.StyleonWards;ses=83334c26-1740-4944-bd35-e551976d069c HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63dbe643-7d09b-98962-b261f; expires=Mon, 04-Mar-2024 16:35:15 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 9.3 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash 4395ba4300f5794adc302ab8f11ac780
09ee7da66df801a31441aa214003a1eb0e76a8c5
512f67713a0b9ee4d5683b32f3b7a4338e604b1d2b145fcfa94618cc8082554f
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
x-crto-bundle: y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 1724835
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 02 Feb 2023 16:35:15 GMT
expires: Thu, 02 Feb 2023 16:35:15 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.66200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (1493)
Hash 0dece4b354fc41d0430994be26247a47
1063c9471665bb53cc9a4e89c4cf0f1e9f695f8d
71a1c1d814cc6c713b3513212be779f944e9b4002e1fb89ac36e438a1a04e4a0
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:14:00 GMT
expires: Thu, 02 Feb 2023 17:14:00 GMT
cache-control: public, max-age=3600
age: 1275
last-modified: Mon, 31 Oct 2022 17:24:37 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 15:44:08 GMT
expires: Thu, 02 Feb 2023 17:44:08 GMT
cache-control: public, max-age=7200
age: 3067
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
104.26.5.80200 OK 534 B URL HTTP/2 content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
IP 104.26.5.80:0
File type ASCII text, with very long lines (741)
Hash 49d85615ba2ce92d9687105a74b02058
7a0f597213e931c801ad146fa6dd383e824fc3f8
d0eba8cb844e72d48380f3853345e7de5ce80d0b9396c6223561bc950c1753a8
GET /engine/common/widgets/mmlogger/wzMM.logger.js HTTP/1.1
Host: content.wazimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1534
etag: W/"629f592a-5fe"
last-modified: Tue, 07 Jun 2022 13:56:58 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BEukjtHsBZEUlECXdmvkVbkDGUBJaSDtmSVRm7QBIA%2FPHzf8UMVYdfo2Utqc9UjfpmoAbUIXkX%2FTPiSWfdkSLemxqDGEalNJanA7XU77O6nGPkaOcGHETgh88x2oAD%2BPiCkRuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c10ce40b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3de4fcca2691e9899de00c51ec720ad5
c3df63b0511cbdfb588e417692be11efab596f9c
24452e5e022f648140174cec0933dd72d3fbf7f8d566439928b73bbfa5282288
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 20
Cache-Control: max-age=162091
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:15 GMT
Etag: "63dbbc5a-139"
Expires: Sat, 04 Feb 2023 13:36:46 GMT
Last-Modified: Thu, 02 Feb 2023 13:36:26 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 774e8dff324a44a21c74e448f936c145
28b22f31bf115f7e55c35d9d6fb950827485a8f0
05877a5cfb2c69854fd69d1b8c7a03513662acea95bb61ceb0cc5c5213660ee5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05877A5CFB2C69854FD69D1B8C7A03513662ACEA95BB61CEB0CC5C5213660EE5"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2539
Expires: Thu, 02 Feb 2023 17:17:34 GMT
Date: Thu, 02 Feb 2023 16:35:15 GMT
Connection: keep-alive
kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F
212.129.3.113200 OK 986 B URL HTTP/1.1 kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F
IP 212.129.3.113:0
File type JSON data\012- , ASCII text, with very long lines (2389), with no line terminators
Hash 6e205975a056c6be770318a7ef48c14b
7fdece72c84500e0bda133704cbf52ae26e65bfb
e0df2e48137c573033a551e25085828be141492c65dcc1b6c6dc4e9a8bb85094
GET /api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F HTTP/1.1
Host: kvt.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 02 Feb 2023 16:35:16 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: https://www.styleonwards.com
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6425
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 14:48:11 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6340
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 14:49:36 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4c2efc5f68af9b0b40e373e5477fb44a
83915aff60044717b555a8318921f3f2ae238256
289c77844b3883b2a24fd14e03baf0b2a72124a7a4df4571910c1d5d0ed8be15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5898
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 14:56:58 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6401
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4cb1b1057933a4993e2082bc88e14723
8c18677769c9c8d1681add842bf26fca4d499669
00a57163d569b159f13d400ae360adc3656d8029f231bc3e2df928fccb9b1a6d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00A57163D569B159F13D400AE360ADC3656D8029F231BC3E2DF928FCCB9B1A6D"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4360
Expires: Thu, 02 Feb 2023 17:47:56 GMT
Date: Thu, 02 Feb 2023 16:35:16 GMT
Connection: keep-alive
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3785
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=0, private, must-revalidate
date: Thu, 02 Feb 2023 16:35:16 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3200
Cache-Control: max-age=120301
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63db0cb1-1d7"
Expires: Sat, 04 Feb 2023 02:00:17 GMT
Last-Modified: Thu, 02 Feb 2023 01:06:57 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffcae64994dd363a95b7e9535d7a4065
eb74b3e459bb1eb9a6fa47b2ddf519aee073269c
1e8df18b37569a6d367cd344d4bf6eb013784e6be43c8a6ab0485a748f82b784
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E8DF18B37569A6D367CD344D4BF6EB013784E6BE43C8A6AB0485A748F82B784"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9172
Expires: Thu, 02 Feb 2023 19:08:08 GMT
Date: Thu, 02 Feb 2023 16:35:16 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=469597,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793456cb6c7afabc-OSL
factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
23.36.76.216200 OK 58 B URL HTTP/2 factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
IP 23.36.76.216:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f491469198482433392dda49e89abda
46cf7bdc583488d72ff94bec817824069604bbb4
00f30881d413dfe6990e7c91036e1f3a964b8396f76287ed3944b262f3d92601
GET /factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65 HTTP/1.1
Host: factor-service.prod.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=600
date: Thu, 02 Feb 2023 16:35:16 GMT
content-length: 58
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:16 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:16 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:35:16 GMT
akaas_default=2147483647~rv=67~id=87aaa26a139cb89417b9b2f25d7c1261~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.031455149483162304&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&e_criteoId=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX&e_id5id=%257B%2522uid%2522%253A%25220%2522%252C%2522ext%2522%253A%257B%2522linkType%2522%253A0%257D%257D&e_quantcastId=P0-1990692663-1675355611968&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18
185.172.90.251200 OK 129 B URL HTTP/2 pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.031455149483162304&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&e_criteoId=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX&e_id5id=%257B%2522uid%2522%253A%25220%2522%252C%2522ext%2522%253A%257B%2522linkType%2522%253A0%257D%257D&e_quantcastId=P0-1990692663-1675355611968&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18
IP 185.172.90.251:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7f37db7616b59bfd7f5f8315be722d87
8165c4a333be7ee2f4ec616ff6e8406aa5cdb7c9
43ca120502dfef09e9eac8c1c79de321cf7c43e9f08fd44a8e285e71dcee119a
GET /pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.031455149483162304&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&e_criteoId=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX&e_id5id=%257B%2522uid%2522%253A%25220%2522%252C%2522ext%2522%253A%257B%2522linkType%2522%253A0%257D%257D&e_quantcastId=P0-1990692663-1675355611968&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: application/json
expires: Thu, 02 Feb 2023 16:35:16 GMT
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=0, no-cache
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-length: 129
x-sid: AMS-928
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 15:21:06 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: M1X4xu_7ZsV4AQ_MZnBQnC-9uG_I7NodkMhfGKxrWfcSoosHIT_AXg==
Age: 4450
ad.360yield.com/pb
3.65.233.109204 No Content 0 B IP 3.65.233.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3061
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
access-control-allow-origin: https://www.styleonwards.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:46 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XOLV19ELJxBl914Q0-MzU_u95M_DCv-fkN7LZCB_hEG44DGLTTtIog==
Age: 2790
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133656
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:42:52 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hG85sBZLmLg1G8CdktK4u-CG_kZuR6j4A-jTasF0p07hXEmnc_FP0A==
Age: 2530
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 15:52:36 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FfWSWZk-p_x_tFT8Plw1xcti41158S9SbW3SIlMdicZ5Yorj6hd_ww==
Age: 2560
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:16 GMT
Last-Modified: Thu, 02 Feb 2023 15:53:13 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Iuy91k2Gg1kLL8LQlNTB9COeeP9ykIp0cHTbNfPMX8rwIwEOhnPjuQ==
Age: 2523
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4377
Cache-Control: max-age=106694
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 22:13:30 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4642
Cache-Control: max-age=106959
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 22:17:55 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4537
Cache-Control: max-age=106854
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 22:16:10 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133668
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:43:04 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: w-c11QwNr_IZz7mvb-6mNgHTVvCM-n0yB1PY35YjdmfulLSgun00AQ==
Age: 2542
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2332
Cache-Control: max-age=104649
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:16 GMT
Etag: "63dad2f1-116"
Expires: Fri, 03 Feb 2023 21:39:25 GMT
Last-Modified: Wed, 01 Feb 2023 21:00:33 GMT
Server: ECS (amb/6B71)
X-Cache: HIT
Content-Length: 278
ib.adnxs.com/ut/v3/prebid
37.252.173.215200 OK 279 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.173.215:0
File type JSON data\012- , ASCII text, with very long lines (707), with no line terminators
Hash 3dd783ec9931691607c660f7172b2030
e5fca7f891502e91d8702f50545a03f6474a0275
fbe9cd9e999e616a72e530e81073def3c21543f68d2a3a19367115cbca70fcf9
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3798
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 16:35:16 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 7616802a-41ec-4023-a991-81eb355deba6
Set-Cookie: icu=ChkIq7eJARAKGAEgASgBMMTM754GOAFAAUgBEMTM754GGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 16:35:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=3867475038187298742; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 16:35:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
gem.gbc.criteo.com/newidsd
178.250.6.130200 OK 509 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.130:0
Hash 845f242870c7f2136b1535e2182e9a86
03b5dbd0c508ac43fc3025aaa24df199260eb450
c67e84f726ab944f4a87d6332fb2ca93a2732192e765a1a8dce7764d82c63ac2
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 127137
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 354
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456ccb97bb511-OSL
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?ptv=134&profileId=185&av=34&wv=7.28.0&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&cb=25089794906
178.250.2.131200 OK 473 B URL HTTP/2 bidder.criteo.com/cdb?ptv=134&profileId=185&av=34&wv=7.28.0&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&cb=25089794906
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with very long lines (1550), with no line terminators
Hash 29bc9aa41da5c7e0328597ec114e8fc7
05bc7d561165d17004ff7d37ce5808303089daf9
d747c2212bc6adc6291d481b1604e003b182f5c08702c038277135f4d4f7b5a5
POST /cdb?ptv=134&profileId=185&av=34&wv=7.28.0&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&cb=25089794906 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5431
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.styleonwards.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 473
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F
185.255.84.150200 OK 1.1 kB URL HTTP/2 hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F
IP 185.255.84.150:0
ASN #200271 Iguane Solutions SAS
File type JSON data\012- , ASCII text, with very long lines (1070)
Hash 07ca47cb38b2f7dd571d67aff2a7e0fb
a679877ea5a627ae8027826d0c17360ae4306ffa
2c5c12367ad3212223ed9ff495a7a3f318f44ef8cba509c36d0940432910f0c2
POST /hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Flana-heels-are-the-celebrities-new-favourite-shoes%2F HTTP/1.1
Host: hb-api.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1816
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept-Encoding, Content-Type
access-control-allow-methods: OPTIONS, POST
access-control-allow-origin: https://www.styleonwards.com
access-control-max-age: 3600
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=ae62804453b43149d79de08739f4db4c; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 16:35:16 GMT
content-length: 1071
x-envoy-upstream-service-time: 163
server: ayl-lb-fra02
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 373
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456ccb985b511-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 373
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456cca96ab511-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 373
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456cca974b511-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 473
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456ccb989b511-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 424
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456ccd9bfb511-OSL
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
35.157.49.84204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 35.157.49.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1429
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:16 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
b1h.zemanta.com/api/bidder/prebid/bid/
64.74.236.223204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 64.74.236.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1426
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
ag.gbc.criteo.com/newidsd
178.250.6.231200 OK 45 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.231:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7cd1f4848ffe865ae392e9137b92ad19
a769b090a0eff4e0af879c28a4104f19db2d1206
cd3ba3b51bd79485a7c0a8df4458e99d4c33d0b1102d3bd3b99e2d194f8f1f9a
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 111894
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
35.157.49.84204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 35.157.49.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1412
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:17 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
35.157.49.84200 OK 8.2 kB URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 35.157.49.84:0
File type JSON data\012- HTML document, ASCII text, with very long lines (23286), with no line terminators
Hash 391657aa7e78b92a918c64ce503239bb
6da3179218fa4602dee1c8c868fba6ffaee12242
cb4aef749c5216de9475324a83e72382b0d45941036a8418ddf80d6ca1660063
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1430
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:17 GMT
content-type: application/json; charset=utf-8
content-length: 8232
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
x-openrtb-version: 2.5
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 2cf12a61c5f3f23abe6f26d2181f908c
7cc44e27a14d87f3a8180a7b3a99f6fbc52f99c8
f0b7a85374c53a3a5e3dc9074aa1587df2e43cbd4835cb777f23ae7492cf2041
GET /syncframe?origin=rtus&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=84c501a5-612b-4149-a3dc-20755fcde47e; expires=Tue, 27 Feb 2024 16:35:15 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 583503
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
35.157.49.84204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 35.157.49.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1429
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:18 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&info=UKTstF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdVJTJCQUNpb3E1aVdDVmxZZnM0QVlDVnY&idsd=1412448818,825232153&cw=1&lsw=1
178.250.0.157200 OK 788 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&info=UKTstF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdVJTJCQUNpb3E1aVdDVmxZZnM0QVlDVnY&idsd=1412448818,825232153&cw=1&lsw=1
IP 178.250.0.157:0
Hash bd123010cb4e44dfbbca41a91836e5ba
99bdd539b20edac6ed82bf2b109f9809f3b11c7b
4926f5b30d55d008f23e0668ba9660ea23e14975235a2f82cb12c957a71fcd6c
GET /sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=30E_719lNXNnUXNoakZLbEpRSVlnbm9YWEpGYkpqdHlrYXJJaFNYTlRQcG9iZTI3WldsS3FDYmVaJTJGV1BPdGtQekpWR0gxbmtuazFXZjNsbU1QT3N5bWZRdHdBekxaaDhVMVNLdk9FV1hQTSUyQkVkOHdBZ3dDeFVweG5wR3JVV3BXT0tpTHVwdk9PNUVPMSUyQlZUJTJCTWVxU0ZIJTJGakp3JTNEJTNE&info=UKTstF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdVJTJCQUNpb3E1aVdDVmxZZnM0QVlDVnY&idsd=1412448818,825232153&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 951324
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.styleonwards.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.styleonwards.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.styleonwards.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:19 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.styleonwards.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.21.31.91200 OK 0 B URL HTTP/2 www.styleonwards.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.21.31.91:0
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
Cookie: _pbjs_userid_consent_data=3524755945110770; sharedid=8f8c354a-f446-454e-9a59-23ef77777a18; cto_bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q; cto_bidid=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE; __qca=P0-1990692663-1675355611968; _ga_PEGZJDQ1BR=GS1.1.1675355613.1.0.1675355615.0.0.0; _ga=GA1.2.1453513369.1675355614; _gid=GA1.2.1588214487.1675355614; HAPPIDS1=s2|Y9vmQ|Y9vmQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/css; charset=utf-8
cf-ray: 793456b27df0b4eb-OSL
age: 131
cache-control: max-age=2592000
etag: W/"3922186029"
expires: Sat, 04 Mar 2023 16:33:01 GMT
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IGHzRPkB%2FcnB4eELzQkEHYRd16%2B8eASw7KSFFEXy9wTNHMs0uv7SX7fz0Zh9I%2BQfCvH3uBXdPM0O0adJhXShQcPEPyb0YKhdTYVvf8iziztTuRHglbZUgWKW6V51EcGVv3bGvXTiNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=rL66TF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdWWCUyRlpGSE53TWdwYWtrVmpTWVU5UXg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=5Xl2PV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXbWhGNEd2QW1aa1FNYWklMkJVdThLNkk; expires=Tue, 27 Feb 2024 16:35:16 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 330721
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
IP 178.250.0.157:0
GET /syncframe?origin=publishertag&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=e61f1695-302c-42ac-a505-9e66ffae788d; expires=Tue, 27 Feb 2024 16:35:15 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 356160
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960516
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCRQW6mqh
x-77-nzt-ray: af5856303737799d44e6db63315f540b
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 558892
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960516
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCRSmk4Ch
x-77-nzt-ray: af5856303737799d44e6db636891ea0a
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960512
server: CDN77-Turbo
x-77-nzt: AblMCRS+dQ6h
x-77-nzt-ray: af5856303737799d40e6db63fe99492d
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=5Xl2PV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXbWhGNEd2QW1aa1FNYWklMkJVdThLNkk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=UKTstF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdVJTJCQUNpb3E1aVdDVmxZZnM0QVlDVnY; expires=Tue, 27 Feb 2024 16:35:16 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 373131
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
104.21.31.91200 OK 0 B URL HTTP/2 www.styleonwards.com/lana-heels-are-the-celebrities-new-favourite-shoes/
IP 104.21.31.91:0
GET /lana-heels-are-the-celebrities-new-favourite-shoes/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _pbjs_userid_consent_data=3524755945110770; sharedid=8f8c354a-f446-454e-9a59-23ef77777a18; cto_bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q; cto_bidid=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE; __qca=P0-1990692663-1675355611968; _ga_PEGZJDQ1BR=GS1.1.1675355613.1.0.1675355615.0.0.0; _ga=GA1.2.1453513369.1675355614; _gid=GA1.2.1588214487.1675355614
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:12 GMT
content-type: text/html; charset=UTF-8
cf-ray: 793456a51c26b4eb-OSL
cache-control: no-store, no-cache
link: <https://www.styleonwards.com/wp-json/>; rel="https://api.w.org/", <https://www.styleonwards.com/wp-json/wp/v2/posts/2074>; rel="alternate"; type="application/json", <https://www.styleonwards.com/?p=2074>; rel=shortlink
set-cookie: HAPPIDS1=s2|Y9vmQ|Y9vmQ; path=/
cf-cache-status: DYNAMIC
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=70tk%2FtohB%2BLw%2BK%2B9gPPkrqSRqJGdoaSGLuaKZ4RUjFZmykwoNpt4mh56VSzxQsk3mE904DYdhS7yajz7%2FxJHABFnRboTx4azSrlb9GMzg6nHYK8RETkmWAARj%2Bm9xpKC6rqUPz89%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bqstreamer.com/tr/
172.67.71.40200 OK 0 B IP 172.67.71.40:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 787
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2FojUgQwEfTZPxNtv9CroVMPRuZlgXO%2FAzXEPspcAREGmkECcufXRAQ11Gjiv9Z2OyY1E1VwNBZtDT3vri1QJ6cvIaj4iEqGjl%2BP5KntcyWZHmtfnusNQbPPlzOG%2BrUk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c81f580b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
23.36.76.170200 OK 0 B URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
IP 23.36.76.170:0
ASN #20940 Akamai International B.V.
GET /prod/players/mplayer_controls_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "bf8dea21bac40cb7a6ef93646dff933a"
x-amz-version-id: tU.OOPzlTM.HbV3FLp4CJsWdKtWQPfFS
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: Vidwvt5_VqgqXtfIyATfKxRDsffdGq9nU9TsNectzT89Jl1CJhfr6A==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:14 GMT
content-length: 17916
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&info=5Xl2PV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXbWhGNEd2QW1aa1FNYWklMkJVdThLNkk&idsd=1412448818,825232153&cw=1&rtusCallerId=147&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&info=5Xl2PV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXbWhGNEd2QW1aa1FNYWklMkJVdThLNkk&idsd=1412448818,825232153&cw=1&rtusCallerId=147&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=y5XEQl9OZGhKall3ZzdzYnRSZHV1YUxDNVZRempKeDlLdUc3RXJoR3RIUFRzbzVpSWdLdDlwR1FWJTJGS08xQ0Z5OW5RS3RUNmlaS2F6U2wlMkZwWFJqWWNXJTJCRUwyRlQxWDJhcVdmb1FMbVllNUhlSkpwenRIR0lzWXVMTnNXcFpRTmlEczl6aFZWT0tWZ3BBeUFSdjhnWXpxaFphZ0ElM0QlM0Q&info=5Xl2PV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXbWhGNEd2QW1aa1FNYWklMkJVdThLNkk&idsd=1412448818,825232153&cw=1&rtusCallerId=147&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1388642
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960516
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCRTQHJGh
x-77-nzt-ray: af5856303737799d44e6db63940d420b
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ssp-sync.criteo.com/user-sync/pixels?countrycode=NO
178.250.2.83200 OK 0 B URL HTTP/2 ssp-sync.criteo.com/user-sync/pixels?countrycode=NO
IP 178.250.2.83:0
GET /user-sync/pixels?countrycode=NO HTTP/1.1
Host: ssp-sync.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: application/json; charset=utf-8
server: Kestrel
content-encoding: br
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 1268758
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.33200 OK 0 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.33:0
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 15:39:51 GMT
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qBSrV1hJWTO_bf97w7dRFkCDnCo7PUHDaLdicvzF7OelDI2o58pqAw==
age: 3325
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Cookie: browser_data=JGX5OV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdYTmFCaG5iY1ZiR1V1bDJlSzlrZFgz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=rL66TF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdWWCUyRlpGSE53TWdwYWtrVmpTWVU5UXg; expires=Tue, 27 Feb 2024 16:35:15 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 275454
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.231200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.231:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 117843
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960516
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCRSkqLeh
x-77-nzt-ray: af5856303737799d44e6db63e382450b
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Fri, 03 Feb 2023 05:03:48 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400628
server: CDN77-Turbo
x-77-nzt: AblMCRSmitn/DqIAAA
x-77-nzt-ray: af5856303737799d42e6db6389d1da1a
x-cache: HIT
x-age: 41486
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
185.76.9.21200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960514
server: CDN77-Turbo
x-77-nzt: AblMCRTgTx+h
x-77-nzt-ray: af5856303737799d42e6db635bc6241b
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 0 B IP 104.18.3.114:0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 11309
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 5 inventory rules not found for mediatype: banner and adUnitCode: 26328, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26711, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26300, Process Seats Booster. unable to get the seat booster engine for organization: 1015
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793456ca5928b52d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_criteo.com=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX%5E1&eid_id5-sync.com=0%5E1%5E&eid_quantcast.com=P0-1990692663-1675355611968%5E1&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=db3f2891-7a65-42a1-8702-b83eafdc01e8%3Bb976f52b-0731-4e90-b297-13aaceef24ef%3B832ca83d-2c65-4620-811e-6b05d1256bf2%3B6dee3b38-8773-4fca-8864-6e4cd5c51c77%3B2d6c58e3-1dec-4866-b1da-1f9d4433ea1c&l_pb_bid_id=768c22ed3e784908%3B772bf13d2f45ed58%3B78fdccda0de56ed8%3B793ba72d9dae2828%3B8035a2ca8b21ad18&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.13155632151567054
69.173.144.140200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_criteo.com=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX%5E1&eid_id5-sync.com=0%5E1%5E&eid_quantcast.com=P0-1990692663-1675355611968%5E1&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=db3f2891-7a65-42a1-8702-b83eafdc01e8%3Bb976f52b-0731-4e90-b297-13aaceef24ef%3B832ca83d-2c65-4620-811e-6b05d1256bf2%3B6dee3b38-8773-4fca-8864-6e4cd5c51c77%3B2d6c58e3-1dec-4866-b1da-1f9d4433ea1c&l_pb_bid_id=768c22ed3e784908%3B772bf13d2f45ed58%3B78fdccda0de56ed8%3B793ba72d9dae2828%3B8035a2ca8b21ad18&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.13155632151567054
IP 69.173.144.140:0
GET /a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_criteo.com=25OsvF9zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxDJTJCem5CSnVSUkxzQTBqMEtsTSUyQjhMSEhpUzB1V1FlMmhqRG1YbXZCRGltSmhjVmcwSGF0cWJnciUyRnJHNFM0cnJX%5E1&eid_id5-sync.com=0%5E1%5E&eid_quantcast.com=P0-1990692663-1675355611968%5E1&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=db3f2891-7a65-42a1-8702-b83eafdc01e8%3Bb976f52b-0731-4e90-b297-13aaceef24ef%3B832ca83d-2c65-4620-811e-6b05d1256bf2%3B6dee3b38-8773-4fca-8864-6e4cd5c51c77%3B2d6c58e3-1dec-4866-b1da-1f9d4433ea1c&l_pb_bid_id=768c22ed3e784908%3B772bf13d2f45ed58%3B78fdccda0de56ed8%3B793ba72d9dae2828%3B8035a2ca8b21ad18&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.13155632151567054 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 16:35:16 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDNBJC68-Y-78HM; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|hLZGFuTafB3Pc/ods/Uim+9DtVM30fCgIyPImRVqHAAr4MCRJpyIn0sxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBJC68-Y-78HM; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|hLZGFuTafB3Pc/ods/Uim+9DtVM30fCgIyPImRVqHAAr4MCRJpyIn0sxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBJC68-Y-78HM; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|hLZGFuTafB3Pc/ods/Uim+9DtVM30fCgIyPImRVqHAAr4MCRJpyIn0sxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBJC68-Y-78HM; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|hLZGFuTafB3Pc/ods/Uim+9DtVM30fCgIyPImRVqHAAr4MCRJpyIn0sxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBJC68-Y-78HM; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|hLZGFuTafB3Pc/ods/Uim+9DtVM30fCgIyPImRVqHAAr4MCRJpyIn0sxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:35:16 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
bqstreamer.com/tr/
172.67.71.40200 OK 0 B IP 172.67.71.40:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQpezRqRKQr3TQkdys7IyWBGOMh961lz%2FJUmdNqxV4X0LyKP3SNoe9P9RAJPhxVCPM%2BLf8Sf9w%2BA0AYFuqz1hpE46g%2BuTIKZEu7yu1nz6EQG%2FblnUBDaSpy3dFU8NOF2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c05fec0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
bqstreamer.com/tr/
172.67.71.40200 OK 0 B IP 172.67.71.40:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 176
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blx4%2F%2B%2FewpiVSGRrwj%2BBrBdb%2FOVsczpJcMZAn953R7L7PY%2B2AnGzcE5g7NXsQnKbuE4%2BwGHHlhSYBMh2%2FPNvd4eZUZLLnAZm0HlWMP6R43DRt0zMcxiNXebopE61WeQN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793456c05fee0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2