www.styleonwards.com/trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
172.67.176.41301 Moved Permanently 0 B URL HTTP/1.1 www.styleonwards.com/trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
IP 172.67.176.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 16:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 17:35:44 GMT
Location: https://www.styleonwards.com/trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qWNMi8thcazFP%2BzFrqsO14MBcG7rdEw3EbO8IcfGKddvslbEGKlac%2Bd2Z1YbVyBd%2Fmyo9aCLJhY6gzCawe3z2xVDnFcZKG5yoyD1JhDiYWHzB%2FY6wnoAbVzg2NNfll98JHCV0JQWXg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7934577ad8e7b4f3-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4503
Expires: Thu, 02 Feb 2023 17:50:47 GMT
Date: Thu, 02 Feb 2023 16:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9832
Expires: Thu, 02 Feb 2023 19:19:36 GMT
Date: Thu, 02 Feb 2023 16:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3369
Expires: Thu, 02 Feb 2023 17:31:53 GMT
Date: Thu, 02 Feb 2023 16:35:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 15:36:06 GMT
content-type: application/json
age: 3578
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LL3BHR2O0v6BCshsP3W+FAI63604KO1AHCBBtxp7X253ql67eTUEsHt3dRMyftuvw6mAucC3seg=
x-amz-request-id: 5Z5ZWD49HF2WBFGH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 15:52:02 GMT
age: 2622
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21435
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:35:44 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:07:19 GMT
age: 1706
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21434
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:35:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14165
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 16:35:45 GMT
Connection: keep-alive
push.services.mozilla.com/
35.163.1.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.1.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BFuN+rCiSGSmrWsinyN4qg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ahlCD6P2UYpd11aIsxQeXKNkO1k=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11277
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11277
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 15 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c0e087881a38c017451f2905f8b5caaf
817b462860cd93424be310ad73505d006209bb3b
a5fdab59883a3d37556b1b1d67713caa43a1f43dfda5c9cd2e789feae6de64ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11277
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 844 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b45911cc2ef72e1327511b17e23573ac
98357e3dfd246fffff0db38dd154c57669aae2c8
42dbfd8f45676dbc61068aa1d0089fcb20158018b7f9e29840903fbfc9467412
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11277
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
Hash 10c292e37c8497d20cdb24a87db5069f
ac187a481fd7e0b98e55360461259b310d05cfed
e5a11b98968d8eb53786674cec81672452fdcc403b47b1808a0909d8b7ca8f3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 65648
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
Hash d8143b9281fd0350b658ec4a3a8235fc
a96f0ff276e528090acc818e1d27bf3d9f359289
52d01adf8c89783be84f3f34959d05f5c13a02bd3da19cda431e68c41a9b0be3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 66970
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 29 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
Hash a3b900e1cf90c8c301955a5f8b67ae44
30b6ca4cd407f85480efa5b0857fdd6f3c54c944
3711d2e11dffa0026c9338b0728e92b1eb75218767ed2ac9dded802f82dccea0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 33578
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: e8e96b85-5b24-48b4-bea3-6c1b93c55ca1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGf3oAMFj1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-558cb5ec6f31497d284518be;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AeFT9dVmzOw8800DKN7VouWS3HGHRYp64On9sF62J-aOK_OGtvAa7w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:52 GMT
age: 66174
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
Hash 61cacfc67e545d9a4722214cd663eb35
8af40057563d24ae8a8300ecef2f15dd0f39b5b6
9b6f2f77a957d3403e2aead1372c2ca38ef6fed3bf1ce2ae48907f7e6348966f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 67075
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
Hash 9b5f726fabcbe489775def9898b77f36
76ddb13feb96e543d94ec7eb07f131bb484ba3a5
4688b7645036ffe1fee337113df921e54948ce8d1439c9efd252d834f37e7f7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 66911
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
185.76.9.17200 OK 5.0 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 697a0ec818f98f06803e9e543314db32
6dd21897c0ad061d950d72fba7eee824a5f0cd7b
f0b3f48de0e19c683230fb2c191aa5a593278b98622c9c86c0b52f0d6ac32088
GET /s/requestform.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:47 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960547
server: CDN77-Turbo
x-77-nzt: AblMCQ0QoqDB
x-77-nzt-ray: c0a4cc281a9ddbbb63e6db63ebe47d02
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.3 kB IP 142.250.74.131:0
Hash f8a8bab847b609d96ad2dca838047db1
c443be76339acde2834262ca75679641d2cdddbf
f91de83cd69bfe59dca90fc031511caa2602add10535558e34d331d997a15aa7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
23.36.76.177200 OK 6.4 kB URL HTTP/2 injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
IP 23.36.76.177:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (17438), with no line terminators
Hash ba58d3c567a625939011117ac1d44718
fb92b046a497e6036a7d45c7ea6cbb149fd83886
04d1e99076a6684ac101de35ce30d3dc5e95b2c85d9f0f0246f04b209a0db896
GET /prod/configs/01gprs6bbp1vch8p21.js HTTP/1.1
Host: injections.mmvideocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sat, 14 Jan 2023 18:43:03 GMT
etag: "5a1feebb2ed713c1c849c660fac997b8"
x-amz-version-id: avRIzNEMqHV6HpWDjC3BWpJmUL_o_isw
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: dfqHTnX8B9YNIqpAGR7WFhUoRmoiCkAPimFd1ok783Eu06UUuQslTw==
content-encoding: gzip
content-length: 6371
date: Thu, 02 Feb 2023 16:35:48 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/s/gen.js?type=3
185.76.9.17200 OK 50 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash b7c00d5cbe6600e9e556756506d7fb14
d92b3471251ffe46ec6376bb40bdbadd83656b96
1418549411cb939bda26ee21813a4153b886eae4752cdb7ab27152d3af08299f
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:47 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675918975
server: CDN77-Turbo
x-77-nzt: AblMCQ1EWXL/ZKIAAA
x-77-nzt-ray: c0a4cc281a9ddbbb63e6db63ddeb5102
x-cache: HIT
x-age: 41572
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
185.76.9.17200 OK 24 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 1a8a81b440e63e1f1c0342823226a816
11afa9c1d68048181e8a20ae060e89b5f489677e
303c4d8b6d30e5bdf5a501d6f91a8bcd3a1857f643aa0c03a1de92389e0e4bd7
GET /s/requestform.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:47 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960547
server: CDN77-Turbo
x-77-nzt: AblMCQ2hATbB
x-77-nzt-ray: c0a4cc281a9ddbbb63e6db63c3152403
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.17200 OK 26 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 2067d495a92daaf6ead21c1612f2a9fd
5bf05a9895290bdfe12d4e464df5bea45749ac5d
00b8e32d4f5a96c7ab9069da9363325e910f063a95801323e23adc904fd569cd
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:47 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675918976
server: CDN77-Turbo
x-77-nzt: AblMCQ1UcdD/Y6IAAA
x-77-nzt-ray: c0a4cc281a9ddbbb63e6db638eb2fc01
x-cache: HIT
x-age: 41571
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
172.67.176.41200 OK 67 kB URL HTTP/2 www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
IP 172.67.176.41:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 04f17a56575c0b999de0408b493c4ca4
801898ca9f1e90156f1e60fc52503c52906497a8
e979ff39c243cd3c2b682d9f6c55ba62524d715661d928f84faf329974e14bab
GET /this-is-why-celine-tie-bag-is-a-must-have-winter-item/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: HAPPIDS1=s6|Y9vmZ|Y9vmZ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:46 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7934577fccbdb4ff-OSL
cache-control: no-store, no-cache
link: <https://www.styleonwards.com/wp-json/>; rel="https://api.w.org/", <https://www.styleonwards.com/wp-json/wp/v2/posts/2045>; rel="alternate"; type="application/json", <https://www.styleonwards.com/?p=2045>; rel=shortlink
cf-cache-status: DYNAMIC
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=03UHogdjUPIr1csbyBneVJ48TAg0QMbgjqXEYRUOHkYnLOFe8s1qKSvbMosyjrdtf8Ecdmungf04Ede05fQA8twhz%2Fg4r6Qr3jP4vzlkeqhM%2BS%2F4T0KcPc7tQrCUN4RdmBAfgBW5qQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.35200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:06:02 GMT
expires: Mon, 29 Jan 2024 10:06:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
age: 368986
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7b84738ecc4c957dd526bb04245d67c
2f0158e29600270789f5893ece7c1effcd650dba
dac7086d533de13bb6a7ace203f33530359e60690a0510aeec24853dd4a90837
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5318
Expires: Thu, 02 Feb 2023 18:04:26 GMT
Date: Thu, 02 Feb 2023 16:35:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5526
Cache-Control: max-age=146372
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Etag: "63db6992-118"
Expires: Sat, 04 Feb 2023 09:15:20 GMT
Last-Modified: Thu, 02 Feb 2023 07:43:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5684
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Last-Modified: Thu, 02 Feb 2023 15:01:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5526
Cache-Control: max-age=146372
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Etag: "63db6992-118"
Expires: Sat, 04 Feb 2023 09:15:20 GMT
Last-Modified: Thu, 02 Feb 2023 07:43:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2466
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:48 GMT
Last-Modified: Thu, 02 Feb 2023 15:54:42 GMT
Server: ECS (amb/6BB9)
X-Cache: HIT
Content-Length: 280
vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
23.36.76.105200 OK 130 kB URL HTTP/2 vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
IP 23.36.76.105:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 130 kB (129816 bytes)
Hash 6895e5d8f92b8246c24f5be3b190486c
aa2f1bc4556c7e6f880df0a6a54acfe1dcdc4839
8cb5c763e1f02ae12a952daff6dc423b20f31225f1187debd842aec0df8020db
GET /01gprrjb4arydv8gd5.js HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 13:26:11 GMT
etag: "362e9608063f9fc3c9c78fc493296b50"
x-amz-version-id: RWBOQfpkYXGPCXohfxbDy3No2UrNVnqx
accept-ranges: bytes
content-encoding: gzip
content-length: 129816
date: Thu, 02 Feb 2023 16:35:48 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=105238&f=3&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=3&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=3&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:0A59_36264064:01BB_63DBE664_1D5D14B:600E
X-IPLB-Instance: 38442
c.tmyzer.com/c/?s=105238&f=2&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=2&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:3BB6_36264064:01BB_63DBE664_1D53B77:6015
X-IPLB-Instance: 38442
vms-players.minutemediaservices.com/mplayer-bridge.html
23.36.76.105200 OK 437 B URL HTTP/2 vms-players.minutemediaservices.com/mplayer-bridge.html
IP 23.36.76.105:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b6f88785c2468cad5fb5f81875b3ed0
b9b6efe64f02216e71bf855b655d8e80cc6c1aa4
23d5d6daf3c6d984e04f38ffe65bcc7f9327b7875a0cca730f974978feecacb6
GET /mplayer-bridge.html HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 11:11:02 GMT
etag: "e97239360af3389bafb536d4d0bdb35f"
x-amz-version-id: .9RAF9XlHfXzYtZBMnFKExfBF741L2yh
accept-ranges: bytes
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:35:49 GMT
content-length: 437
cache-control: private, max-age=1800
X-Firefox-Spdy: h2
secure.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g
192.0.73.2200 OK 1.0 kB URL HTTP/2 secure.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 45x45, components 3\012- data
Hash 4d4d1d81356dcb6b307c3683e6044525
279288dc9f09a288c1e5dd0e7a42c9c168f5330c
bf964a5ea3ebef940bd07406b27944a6902baf343c2b7c4d3d848cf2fb4d2a17
GET /avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: image/jpeg
content-length: 1041
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/69c79b93190dc66720e4cddc363a2455?s=45&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="69c79b93190dc66720e4cddc363a2455.png"
expires: Thu, 02 Feb 2023 16:40:49 GMT
cache-control: max-age=300
x-nc: HIT arn 3
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a12d896937e3b818305d973e9e1b7616
266ffdbedf6a194bc957620abb17a3456d8af585
4c2e4fa2f6a3920a1b7b749a3bb7b9ea8c9ee21da1443c39655c27c1f37386ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1186
Cache-Control: max-age=148129
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Etag: "63db8164-117"
Expires: Sat, 04 Feb 2023 09:44:38 GMT
Last-Modified: Thu, 02 Feb 2023 09:24:52 GMT
Server: ECS (amb/6B72)
X-Cache: HIT
Content-Length: 279
www.oo-syringe.com/prod/mux.js
23.36.76.154200 OK 79 kB URL HTTP/2 www.oo-syringe.com/prod/mux.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (409)
Hash 504174b4be40a301ff0ce1730563e618
c92f183bff3c0a5beb0d96d3e22ee053b58070b2
8eec15d84a6aab8070d633ff1176e03cb8eed328384e3ae360142a0dfae3d4cc
GET /prod/mux.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 06 May 2021 12:05:42 GMT
etag: "6d13ad5f29e69baba39798f1074bc746"
x-amz-version-id: zKDr1tGTeMrjUohEczWF1VZiqUanfaXu
accept-ranges: bytes
content-encoding: gzip
content-length: 79352
unused62: 8096267
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
23.36.76.154200 OK 18 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash f21fefd2b76d6ca958180868a8fddfb5
2522f3a4d33349b1ab052a5d15c9bba3b2f350fb
fdb2ec2d6e9b6a12e71fa60d1127b0d5ee96c12c29887bcc6a90cf4656b25920
GET /prod/players/mplayer_controls_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "bf8dea21bac40cb7a6ef93646dff933a"
x-amz-version-id: tU.OOPzlTM.HbV3FLp4CJsWdKtWQPfFS
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: Vidwvt5_VqgqXtfIyATfKxRDsffdGq9nU9TsNectzT89Jl1CJhfr6A==
content-encoding: gzip
content-length: 17916
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_anchor_plugin.4.4.65.js
23.36.76.154200 OK 2.3 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_anchor_plugin.4.4.65.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8203), with no line terminators
Hash e1adf1e0e90ea0cf74cfd56a6413151d
41455c038562365e607527c725531854154bdabd
5aaa843f0e0553936b70e9e1c03de5b3ab7d388fb9ea8cfa8cc7b706d90b4a3d
GET /prod/players/mplayer_anchor_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "8739491cffb2736bf8850563b286e7c3"
x-amz-version-id: fvhgHcua3.StRvXPtREG6ngixacnJDaw
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: Ud5RRuUOFJ0DpXR0YPY1YYfnQqWsqc-m9R3WdwsQuiQW8Nqh52YB2A==
content-encoding: gzip
content-length: 2267
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
23.36.76.154200 OK 2.6 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (6502), with no line terminators
Hash 16db06d3898d8d9683b26c3e11d1ed56
2cc96e83406a015a8877caab023aa9461ec1644c
2373b409ed096eea0452d92cd2c069e9b94d96077d68740051332211246e20ef
GET /prod/players/mplayer_read_more_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "dc710e7075327a8a3d72f2c34d49ea62"
x-amz-version-id: Py3CKBkCM6isYyGRmzWXav_E8UVxFw5_
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: T0il03ptZJH1j5IWnNjqxtcOtsnjz4nuu5zpknsEko89lZ9jPwxygA==
content-encoding: gzip
content-length: 2564
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.2.103200 OK 279 B IP 104.26.2.103:0
Hash 4be625f8f0c099c7f07d55730cb95df3
e6265ed7f4bc2ceeeacc4f165284eb2d9960dd92
914f7dfe6e6f796d54cc716f9df39be3240d191e77ac5cd804aa59da9d495063
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 176
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AM9sG2GAkMyuSqDm9uv5f46GivyTpKeWPObb8qWGLRVnMkPIXUxWgXgY8Rx1NkXYk2Qm%2BVVtC2YW2SHrahqigyJPWuGIoQStPnsXVqXX9bWXdoi7p4KWM3TEpSDuWBCb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793457972b06b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.65.js
23.36.76.154200 OK 13 kB URL HTTP/2 www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.65.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (40084), with no line terminators
Hash 0d4286199e7088648645df754532b46a
6351fce85f1511448ba807c7c9cd062a1c133780
61df3f63935bc3458f4d3b74e170b36d284ab789f05395d4b2fb284181bb1fa0
GET /prod/players//mplayer_comscore_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "0a4b539432d7dd08186951d8b8842190"
x-amz-version-id: hvfr3Q7.U3NUWz_yZDzqlp4yg7huEQzO
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: 46GxRwU7sGf_laarhSJ6lUEtBzf_kTuY8CQFav0juBGo212eJw0aZw==
content-encoding: gzip
content-length: 13446
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash dff38dffeadd71c065a1ae8e702ff586
531575a2687ab048a09d8518ecebe6eaf1bf925a
5ec4a452f9f49ba07aab0c7b1d20a5d0d8aef755a2ebf0d28474be5bb7f5bce8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2586
Cache-Control: max-age=165007
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Etag: "63dbbdda-138"
Expires: Sat, 04 Feb 2023 14:25:56 GMT
Last-Modified: Thu, 02 Feb 2023 13:42:50 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 312
bqstreamer.com/tr/
104.26.2.103200 OK 1 B IP 104.26.2.103:0
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BTtpJ1Dm%2FHT010r5hk2Hq8Ld0tGoujr67ehDUdJhR5AWaCp2AxiMSqD%2BRwdDdvxqcnq4EbkCCImDzmB3SQmfGil8%2FajSzNet5aoJxH8mpNZqe1hMXDVlM048rXqf769J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793457971af2b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 07 Oct 2021 11:26:48 GMT
ETag: "615ed978-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:193B_91EFC0A6:01BB_63DBE665_69BA45BA:603E
X-IPLB-Instance: 30196
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 10:58:24 GMT
expires: Thu, 01 Feb 2024 10:58:24 GMT
cache-control: public, max-age=31536000
age: 106645
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
23.36.76.154200 OK 119 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 119 kB (118732 bytes)
Hash f2c9e49158355fb6cb43ea5d63f9233a
300393a95254fe65f31f7b1abf9ee0b2fcf074e9
b44a4401e29126e2d0c2e37ffd581b10f18e9afe5934faaa50021c3080ac94a4
GET /prod/players/mplayer_shaka_voltax.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "9deb651bfb4ab64c62edceb7a856c6ad"
x-amz-version-id: 12NlOVx4l7vIT2ncxDak_wq6CYhqx8VQ
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: Seoq4Uf3p9SPLOcBlBUHmeBpt452KM7GLSxA549_haD3BYyQS9_NAQ==
content-encoding: gzip
content-length: 118732
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/moat.js
23.36.76.154200 OK 819 B URL HTTP/2 www.oo-syringe.com/prod/moat.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (512)
Hash 97adb33da684235cc6661698b63e575f
c4e103e7d71630e775635f8c1376204920e02236
50467fbe689b30b01578ce0b33bb0515b1af50880820e28a52c2192ad62d85ce
GET /prod/moat.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Jun 2021 07:25:49 GMT
etag: "73ea42f8fec6a330dd719d2e3bf83b41"
x-amz-version-id: cqCb6oftCBR4g3kB01xepxAGq749bs6O
accept-ranges: bytes
content-encoding: gzip
unused62: 8096267
content-length: 819
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ
145.239.192.166200 OK 0 B URL HTTP/1.1 tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ
IP 145.239.192.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-IPLB-Request-ID: 5B5A2A9A:193B_91EFC0A6:01BB_63DBE665_69BA45C1:603E
X-IPLB-Instance: 30196
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
23.36.76.202200 OK 44 kB URL HTTP/2 bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
IP 23.36.76.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d22f4ba55c6da14e00645d5b640e1a06
5300f2ea6dd9ed727fae3866bc00f4fd21f9eef0
b8a41a59c80716147c952fb02375d0f3149d3e1e617d8ddea4c79f07913d551c
GET /lib/comScore-JS-6.2.3.180328.min.js HTTP/1.1
Host: bucket1.mm-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 31 Mar 2019 15:57:40 GMT
etag: "18a99636882ae65fbb2e600e276380ca"
x-amz-version-id: UP2tnScyf0IkbIh1GVgoQZiM5AlMQNdo
accept-ranges: bytes
content-encoding: gzip
content-length: 43460
unused62: 8096267
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Accept-Encoding
cache-control: max-age=27368079, private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PL4PD49
142.250.74.168200 OK 82 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PL4PD49
IP 142.250.74.168:0
File type ASCII text, with very long lines (47945)
Hash 365931e69bf11315d1f67c6e9ac8b5d0
c12ee95252c0836e33df33a1d1fa3873248633c2
eb68b26ef610b9946270832d50a22c88b56ee013c1f10594b4ff5c478c0d918b
GET /gtm.js?id=GTM-PL4PD49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 16:35:49 GMT
expires: Thu, 02 Feb 2023 16:35:49 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/ns.html?id=GTM-PL4PD49
142.250.74.168200 OK 92 B URL HTTP/2 www.googletagmanager.com/ns.html?id=GTM-PL4PD49
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a5c242657a321785d7d079994495766f
4733fa0fa6da4a3c0c93ec97c135bb585b4b2f13
8b2ceca2522f9ebefd5894fdf566ef6a7a1e55fe7a19913041c0d4859d8828e6
GET /ns.html?id=GTM-PL4PD49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Thu, 02 Feb 2023 16:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.4dex.io/localstore.js
172.67.75.241200 OK 268 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 172.67.75.241:0
File type ASCII text, with very long lines (482)
Hash 58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1811211
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vu4EmH7ueuGdliBqowUvydg6PR%2FAf7GY3PMIQTWPaCUP3j%2FsBTBjVXgN2aKLaqYRX2OI4qSwrTZWPRg%2BZZ5VFqCelbuLGjWod2b77ACuzhmUX4AeMaG0K6r48tdlsDLP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7934579c1b52b4ee-OSL
Content-Encoding: br
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 37c26fb09f8a09fdc910d20b97d6f079
5d7848dc1152b81bf53c10fee9e26e20a01b0f02
740e3d2348357db713554ff75471d18ad9d2a2e810f71b3bab61984b026295fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "740E3D2348357DB713554FF75471D18AD9D2A2E810F71B3BAB61984B026295FD"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4661
Expires: Thu, 02 Feb 2023 17:53:30 GMT
Date: Thu, 02 Feb 2023 16:35:49 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1593
Cache-Control: max-age=157555
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Etag: "63dba49f-138"
Expires: Sat, 04 Feb 2023 12:21:44 GMT
Last-Modified: Thu, 02 Feb 2023 11:55:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 312
script.4dex.io/adagio.js
172.67.75.241200 OK 23 kB IP 172.67.75.241:0
File type ASCII text, with very long lines (65354)
Hash 0ffb2c9b6dd933ae18ab7dc729d58e69
bb88b2f3fc47452873348d1cdcb7ea3d4a2bbc10
0cd0e55fa43693dfe4b04a225bf7774eb3f66e232828f8d661547728475a12f2
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Last-Modified: Wed, 23 Nov 2022 15:43:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: HIT
Age: 165
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FUBiZlsyatZoh5%2BY5uDUzhW5CtUg3LQfThq4aGXxDgsEffCX1v%2FQVAb1umxyDhLKHk%2F8FehBIaZ4eMZctZnqOmWU3ktAygl5HJgHF6pjgzMRL6u6S3EDygaIvjUMDwSc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7934579c5deb1c12-OSL
Content-Encoding: br
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1309
Cache-Control: max-age=157271
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:49 GMT
Etag: "63dba49f-138"
Expires: Sat, 04 Feb 2023 12:17:00 GMT
Last-Modified: Thu, 02 Feb 2023 11:55:11 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
id5-sync.com/api/config/prebid
162.19.138.118200 134 B URL HTTP/1.1 id5-sync.com/api/config/prebid
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99be75395b3c89cdd6781761e5a85ad2
225a8b587c3545be2581aa9ac2b630b51679d7be
559ffc5fa5eadd77f8bfaaeb793648763e312a17391d8e6bbb7d8d3dec2147e1
POST /api/config/prebid HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 95
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:35:48 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
cdn.mmctsvc.com/.mc/geo
23.36.77.24200 OK 74 B IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash c8609aaa7e973bc0db88b137f453280c
6ddae9a73030d10f539a69e69e231319d46855ee
ee3a8276be30d08f642ba53d27f6f68910e7df9cbd07e4564b476f671242f776
GET /.mc/geo HTTP/1.1
Host: cdn.mmctsvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
last-modified: 2017-01-13
vary: Accept-Encoding
content-encoding: gzip
content-length: 74
date: Thu, 02 Feb 2023 16:35:49 GMT
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:49 GMT; secure; SameSite=None
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:49 GMT; secure; SameSite=None
userPlatform=desktop; expires=Thu, 09-Feb-2023 16:35:49 GMT; secure; SameSite=None
access-control-max-age: 6000
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 774e8dff324a44a21c74e448f936c145
28b22f31bf115f7e55c35d9d6fb950827485a8f0
05877a5cfb2c69854fd69d1b8c7a03513662acea95bb61ceb0cc5c5213660ee5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05877A5CFB2C69854FD69D1B8C7A03513662ACEA95BB61CEB0CC5C5213660EE5"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2504
Expires: Thu, 02 Feb 2023 17:17:34 GMT
Date: Thu, 02 Feb 2023 16:35:50 GMT
Connection: keep-alive
kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
212.129.3.113200 OK 808 B URL HTTP/1.1 kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
IP 212.129.3.113:0
File type JSON data\012- , ASCII text, with very long lines (2099), with no line terminators
Hash 643080d694202e02dfb4d052004f4fb9
22d373e2ffb02c4dd6f6e9dc32c76d5d47c713ae
0e51822c36a9f5e9790e23785fc0542252f2d1f08241ef3c5537e610e277b643
GET /api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F HTTP/1.1
Host: kvt.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 02 Feb 2023 16:35:50 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: https://www.styleonwards.com
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 795fd8179eb3a8f80fe7a7dad686cffa
2d48d68e87cdbd93d21c104cf2cd1b8e6c1deede
e6f376698b22de940593e0c4b11788f2fbae4b359716170c3408af96c668d576
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6F376698B22DE940593E0C4B11788F2FBAE4B359716170C3408AF96C668D576"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9872
Expires: Thu, 02 Feb 2023 19:20:22 GMT
Date: Thu, 02 Feb 2023 16:35:50 GMT
Connection: keep-alive
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
185.76.9.17200 OK 21 kB URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash fe88d268a604eaaf866873531fdf5814
87aa0b637677ba68a729ecc96e640d0fcf2a6a57
ee6952be6b3fe94b8ebabd5086ed8bd125fbd33278f3b996e27feba1ebfbeac4
GET /s/requestform3.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:48 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960548
server: CDN77-Turbo
x-77-nzt: AblMCQ0WN1fB
x-77-nzt-ray: c0a4cc281a9ddbbb64e6db6366efd331
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com
23.36.76.218200 OK 3.9 kB URL HTTP/2 content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com
IP 23.36.76.218:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14434), with no line terminators
Hash 2135af14a182e13a4b03018902e41533
4118b1258751b70c9dc596922c0f148ab7c9dbd7
e2f693683471146d6725695838f3402bd91a19f5783a522427373e769a128b3a
GET /playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com HTTP/1.1
Host: content.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
restricted-videos-ids: 01gpdg3ph861xwknrqgn,01gpbja2fz7kqc1503bg
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
date: Thu, 02 Feb 2023 16:35:50 GMT
content-length: 3904
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:50 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:50 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:35:50 GMT
akaas_default=2147483647~rv=16~id=b050e80cc95ca253e367a025ab449251~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
23.36.76.216200 OK 58 B URL HTTP/2 factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
IP 23.36.76.216:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f491469198482433392dda49e89abda
46cf7bdc583488d72ff94bec817824069604bbb4
00f30881d413dfe6990e7c91036e1f3a964b8396f76287ed3944b262f3d92601
GET /factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65 HTTP/1.1
Host: factor-service.prod.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=566
date: Thu, 02 Feb 2023 16:35:50 GMT
content-length: 58
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:50 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:50 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:35:50 GMT
akaas_default=2147483647~rv=69~id=3bff32cdd776848696859c8970784fe9~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
162.19.138.116200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e840463efa0db87441770b2ba97b683
52a15e487fb53f6257bc25ca25346b1a1539e931
47bf17bb6425ea743cf137fb3523acb6aa8ccf8c20a7b5df19a0b222e43aae0f
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:35:49 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 47 kB URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
File type ASCII text, with very long lines (65457)
Hash 03a1244be0c25e0aca69c8be215c37b1
1370a855a3dc7ed0d2107ba237bea26659efa264
47a77c0c5d1fcf04cfed8a49e7393994240979a6c917f8bb52700ab79d7925be
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 15:56:00 GMT
last-modified: Wed, 01 Feb 2023 21:25:54 GMT
etag: W/"ca579f2de02c4700bc4fa6f925ed06a1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 bc0a0f9f99d36a68240a31a25e39addc.cloudfront.net (CloudFront), 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: 5CAai-xaPbtAPXt6zdRcFlcmJCxZwO4Y_3DIn47yQoS9qbR2E0n9_g==
age: 2389
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5987
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2891
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:50 GMT
Last-Modified: Thu, 02 Feb 2023 15:47:39 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2891
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:50 GMT
Last-Modified: Thu, 02 Feb 2023 15:47:39 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4cb1b1057933a4993e2082bc88e14723
8c18677769c9c8d1681add842bf26fca4d499669
00a57163d569b159f13d400ae360adc3656d8029f231bc3e2df928fccb9b1a6d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00A57163D569B159F13D400AE360ADC3656D8029F231BC3E2DF928FCCB9B1A6D"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4326
Expires: Thu, 02 Feb 2023 17:47:56 GMT
Date: Thu, 02 Feb 2023 16:35:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4c2efc5f68af9b0b40e373e5477fb44a
83915aff60044717b555a8318921f3f2ae238256
289c77844b3883b2a24fd14e03baf0b2a72124a7a4df4571910c1d5d0ed8be15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1173
Cache-Control: max-age=167211
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:50 GMT
Etag: "63dbcbfc-117"
Expires: Sat, 04 Feb 2023 15:02:41 GMT
Last-Modified: Thu, 02 Feb 2023 14:43:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.28.0&cb=78742982927&lsavail=1&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.28.0&cb=78742982927&lsavail=1&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.28.0&cb=78742982927&lsavail=1&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4612
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.styleonwards.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3381
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=0, private, must-revalidate
date: Thu, 02 Feb 2023 16:35:50 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 655 B IP 172.67.10.198:0
File type gzip compressed data, from Unix\012- data
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 473
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934579fd8f4b4ff-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 426
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934579fe912b4ff-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 375
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457a00928b4ff-OSL
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.2.103200 OK 1 B IP 104.26.2.103:0
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UDFmScA%2FIx9Xn2CXa6rr12AxiCHDsta6XSBuEKjDb%2BoGPyPnSIGEBpZgIWT9aH3KC7vRt%2F1Nh2n7vS3YWqRHJF6o6ymPXq3lrcLskgSV3ffjQ7wVX%2BbTNcEt1KJqEjl6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793457972b0fb50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b39e977b1a75b88dae4d9e4f1eabe018
433aa69f36044c2f4223e152455ac9adec8174ca
59055a92d1994f2e3c777fa748c4ee9a064f429318678a95661b9d73aef2fdb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 20:45:27 GMT
Expires: Wed, 08 Feb 2023 20:45:26 GMT
Etag: "433aa69f36044c2f4223e152455ac9adec8174ca"
Cache-Control: max-age=532775,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79345799db9e1c16-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:50 GMT
Last-Modified: Thu, 02 Feb 2023 15:52:37 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gSrcJ-QcXzSlsFykqYbJuD7lv6Da_rDZ1QQ2aAvvMVLUB6zK6clyOg==
Age: 2593
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffcae64994dd363a95b7e9535d7a4065
eb74b3e459bb1eb9a6fa47b2ddf519aee073269c
1e8df18b37569a6d367cd344d4bf6eb013784e6be43c8a6ab0485a748f82b784
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E8DF18B37569A6D367CD344D4BF6EB013784E6BE43C8A6AB0485A748F82B784"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9138
Expires: Thu, 02 Feb 2023 19:08:08 GMT
Date: Thu, 02 Feb 2023 16:35:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6332
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:50 GMT
Last-Modified: Thu, 02 Feb 2023 14:50:18 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
37.252.171.53200 OK 281 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.53:0
File type JSON data\012- , ASCII text, with very long lines (695), with no line terminators
Hash f62684c0ed78d2b612abce4568f0d771
605d65920355810e2949cc953fe7482b241504f5
52c9d3e98d13a3703226d047cfcf3015743abc77d2df10d9981a302f93c4b818
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3725
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 16:35:50 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: e321d542-f812-4300-8a0a-0f086bd326d6
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.21120161877116939&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=FA67p18zZVc3ZllVTEo5OGQlMkZqeWh2NkxYTFZ1ckNrMjc5c1R4MFklMkIzckcxaU9XQTNWMXZNVVphNkFQYXFFOTRiSUlXNUE4akxyOXJkYUV4NVl5aTNMWGhUZEElM0QlM0Q&e_pubcid=0d7abc89-9f5e-433b-9dfb-b19f2b83bd61
185.172.90.251200 OK 129 B URL HTTP/2 pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.21120161877116939&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=FA67p18zZVc3ZllVTEo5OGQlMkZqeWh2NkxYTFZ1ckNrMjc5c1R4MFklMkIzckcxaU9XQTNWMXZNVVphNkFQYXFFOTRiSUlXNUE4akxyOXJkYUV4NVl5aTNMWGhUZEElM0QlM0Q&e_pubcid=0d7abc89-9f5e-433b-9dfb-b19f2b83bd61
IP 185.172.90.251:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7f37db7616b59bfd7f5f8315be722d87
8165c4a333be7ee2f4ec616ff6e8406aa5cdb7c9
43ca120502dfef09e9eac8c1c79de321cf7c43e9f08fd44a8e285e71dcee119a
GET /pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.21120161877116939&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=FA67p18zZVc3ZllVTEo5OGQlMkZqeWh2NkxYTFZ1ckNrMjc5c1R4MFklMkIzckcxaU9XQTNWMXZNVVphNkFQYXFFOTRiSUlXNUE4akxyOXJkYUV4NVl5aTNMWGhUZEElM0QlM0Q&e_pubcid=0d7abc89-9f5e-433b-9dfb-b19f2b83bd61 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: application/json
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
expires: Thu, 02 Feb 2023 16:35:50 GMT
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=0, no-cache
content-length: 129
x-sid: AMS-928
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 375
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457a0ca41b4ff-OSL
X-Firefox-Spdy: h2
id5-sync.com/g/v2/12.json
162.19.138.118200 216 B URL HTTP/1.1 id5-sync.com/g/v2/12.json
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8c59c01325463f5e9bbaae2741e68759
b920c29831654dafddd9a8b81a3f130a5babda41
7454fcd7e350eb13b2339c63ad558c0d9174df8c8711aedda30d27bf7de284ee
POST /g/v2/12.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 349
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:35:49 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133720
Date: Thu, 02 Feb 2023 16:35:50 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:44:30 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KYaEETvEWorQ4g0fcXz-23FgrvkQdtdX7qUfFgKeLlDfVa9saPhHTA==
Age: 2628
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133636
Date: Thu, 02 Feb 2023 16:35:50 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:43:06 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f1MoEKqEcC5Tvs5sCqo0yTBAfHgfHBp0y9fReYBtZbDb_Ixbi20zSQ==
Age: 2544
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=469563,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7934579ffb84b524-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 81945998cc863146cdaa812efd0766d8
16c338ad84a8ebe39b79ef85ba2a138f34c3455f
3c9c6fc83329799ff0fbfd3744e93849c32bba4414fef5ee40ea0073e8a1263a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4569
Cache-Control: max-age=125999
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:50 GMT
Etag: "63db1dbc-1d7"
Expires: Sat, 04 Feb 2023 03:35:49 GMT
Last-Modified: Thu, 02 Feb 2023 02:19:40 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133720
Date: Thu, 02 Feb 2023 16:35:50 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:44:30 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oI7JUOkw8AiDcTITXsl1De8Py8GG0qUY3tbpFR66A-mi8dtQgePCzA==
Age: 2628
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 374
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457a00935b4ff-OSL
X-Firefox-Spdy: h2
prebid.smilewanted.com/
172.67.10.198204 No Content 0 B IP 172.67.10.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 355
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457a00934b4ff-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:50 GMT
Last-Modified: Thu, 02 Feb 2023 15:10:17 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: W2WHZhLcHmOkL3jARemP6Ep67xsJA6xfcwsMEVBp0mXJq1isQqB6Ew==
Age: 5133
ad.360yield.com/pb
18.158.219.34204 No Content 0 B IP 18.158.219.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2663
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
access-control-allow-origin: https://www.styleonwards.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1075
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:50 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
b1h.zemanta.com/api/bidder/prebid/bid/
64.202.112.127204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 64.202.112.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1020
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
185.255.84.150200 OK 1.1 kB URL HTTP/2 hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
IP 185.255.84.150:0
ASN #200271 Iguane Solutions SAS
File type JSON data\012- , ASCII text, with very long lines (1073)
Hash b21c2aa24b3709b2284221ecabf2f9de
f12b61761c1dd5e91c3e277c51c7671b6399d777
a6971fa0b388ebbd9b95c489c896f1a3c27a5ee900b5c5ab9aed10e2e8c2b956
POST /hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F HTTP/1.1
Host: hb-api.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1819
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept-Encoding, Content-Type
access-control-allow-methods: OPTIONS, POST
access-control-allow-origin: https://www.styleonwards.com
access-control-max-age: 3600
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=41acca43d40de15d322f68d74449eeaa; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 16:35:50 GMT
content-length: 1074
x-envoy-upstream-service-time: 157
server: ayl-lb-fra02
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2110509284&cid=448146814.1675355777&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355777&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2110509284&cid=448146814.1675355777&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355777&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2110509284&cid=448146814.1675355777&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355777&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:35:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
drm.mmvideosvc.com/v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com
23.36.77.25200 OK 84 B URL HTTP/2 drm.mmvideosvc.com/v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com
IP 23.36.77.25:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 85f34c51db32c050f20dafc41638ce6b
80563cb1647944652b046db461465562e6916db0
6c32a2d05189a53b3f745e00c7c5a1fbeac4274ab2ba1015db7cc2b6ae1eb06b
GET /v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com HTTP/1.1
Host: drm.mmvideosvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=3600
expires: Thu, 02 Feb 2023 17:35:51 GMT
date: Thu, 02 Feb 2023 16:35:51 GMT
content-length: 84
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:35:51 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:35:51 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:35:51 GMT
akaas_default=2147483647~rv=46~id=4db7375a9e6de4cfb72e0a36f4e27236~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1006
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:51 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1024
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:51 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
162.19.138.118200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
IP 162.19.138.118:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:40:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:35:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
54.230.245.170200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 54.230.245.170:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 02 Feb 2023 02:21:29 GMT
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9WU3M0Hs6LBc_nNcasXoyxK107zKooeC8ekNql9nV3-kNn_y_Hsw1Q==
Age: 51266
ced.sascdn.com/tag/1097/smart.js
23.36.77.24200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Thu, 02 Feb 2023 18:35:52 GMT
Date: Thu, 02 Feb 2023 16:35:52 GMT
Connection: keep-alive
a.teads.tv/analytics/tag.js
23.38.201.50200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 23.38.201.50:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Thu, 02 Feb 2023 16:35:52 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.2.103200 OK 735 B IP 104.26.2.103:0
Hash 6d57d19d718d38011588f49053b581fe
6ebb9c995484f93f9cee0423cd56e75a02c405e2
e5127a66a54620ebbb2bfc38c10208543f9ab31f119e607395d9fda4d71b0194
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 793
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xELZ9OweUgSFdPa9OAg2eRfcVTQ2FMIp7JdCf8F45Idh3IAx3Y7zRXRtFw5d9BOfAxgAvaJuy0MXDlMkJMo8IGnWYew99I8zNi9JHbdIdv9%2By%2Flss1Hi09k4ClOqU0Dx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7934579e3ce3b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 15:44:08 GMT
expires: Thu, 02 Feb 2023 17:44:08 GMT
cache-control: public, max-age=7200
age: 3104
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop
185.76.9.17200 OK 733 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 071b1b6df448080049d28734e2a4ccfd
afd29a5decfc9981dd02cb1823bd97511eec823b
c9eb1d720bccd8238eac31b141926f36fde6038ad565359f11e0315cf7aef001
GET /bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960550
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ2dDHDB
x-77-nzt-ray: c0a4cc281a9ddbbb66e6db63c5002311
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258
216.58.211.2302 Found 447 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 23cf69dddbe0106c2ba17bbbd8e41808
82bd70e2d52bdd7448ed6163b0c220bb5c9754c4
0b55a66de0bf34485924b37abc3f780247ce32b9cb099937e25516bd369abc3b
GET /pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258&google_tc=
date: Thu, 02 Feb 2023 16:35:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 447
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 16:50:52 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
216.58.207.234200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (2846)
Size 126 kB (125826 bytes)
Hash 6ed42284d9cb14eefc19b7b02d6ead5c
862c3202660ff851c25f023ef6521e261b563ee7
597bf7014b6939cc86e79b26c7b8701731d1bbd71554c6ddbdc15297c8f3f509
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 125826
date: Thu, 02 Feb 2023 16:35:52 GMT
expires: Thu, 02 Feb 2023 16:35:52 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1024
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:52 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 13 kB IP 104.18.3.114:0
File type JSON data\012- , ASCII text, with very long lines (1493)
Hash c2697882400ad133f889f4069475a5eb
913507f0a92916095cf384009dd93ef27df171fc
8e5dd474ba72cb7576fb5a53c0ddcceaaea3341070b687b195eb64553eb7c57f
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 10765
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 5 inventory rules not found for mediatype: banner and adUnitCode: 26328, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26711, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26300, Process Seats Booster. unable to get the seat booster engine for organization: 1015
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934579ff923b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop
185.76.9.17200 OK 296 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
Hash 8b54d42e4a74be12281614509c24a5be
413797cc34b4dc07241ccf7184211d868ab08abe
ee42d9fba9561ec31e2e280110244d1bdf75a5c8aadd4814fc84cb6b542020ef
GET /bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960550
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1M73TB
x-77-nzt-ray: c0a4cc281a9ddbbb66e6db6396961b11
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:51 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 1309447
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-23669758-34&cid=448146814.1675355777&jid=2137549529&gjid=537269724&_gid=1051272904.1675355779&_u=YCDAgAABAAAAAE~&z=863317012
64.233.165.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-23669758-34&cid=448146814.1675355777&jid=2137549529&gjid=537269724&_gid=1051272904.1675355779&_u=YCDAgAABAAAAAE~&z=863317012
IP 64.233.165.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-23669758-34&cid=448146814.1675355777&jid=2137549529&gjid=537269724&_gid=1051272904.1675355779&_u=YCDAgAABAAAAAE~&z=863317012 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.styleonwards.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 16:35:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 02 Feb 2023 16:35:52 GMT
expires: Thu, 02 Feb 2023 16:35:52 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
2.18.173.43200 OK 0 B URL HTTP/1.1 at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
IP 2.18.173.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Expires: Thu, 02 Feb 2023 16:35:52 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 16:35:52 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 636897389814ca4d23aa4009b8fb1458
14394dbd8f0e226b71e1bd35c6da2278828feae4
85bcc6e816cf5ea2028e9dc4862f3de068d0606949b3fef3fcc5b32fab37ad86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 8.8 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash 2180da7fd436a4af9e6f2f2adb3b6c09
fd63f04a0cb96d2503d4067519b7c7b41ee261e0
5758b556338c8299a5c79047a34ed222adb935bff4fd1af268f973baa0e399fc
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
x-crto-bundle: 4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:51 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 6194682
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258&google_error=3
104.22.24.87200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258&google_error=3
IP 104.22.24.87:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8298e2dd-da3e-46f2-49d7-e664c9105e83&reqId=9d2856c6-4184-4046-4a03-ac0824052564&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Connection: keep-alive
Cookie: zc=8298e2dd-da3e-46f2-49d7-e664c9105e83; zsc=%28%A0%D0%07%11%9E%D5%0D%85HkyA%5C%D9%ED%2F%B2%AB%EEW%84%93%1D%AA%A7%40%01%87%80%82%96%F9%06%2C%16%E1%A7%04%E9%94%C4%B0%1F%93%DE%00%CE%DF%A5%3D6%22-%AA2%AB%81%AEP%DF%84q%99t%05%8Coi%C1+b%AE%0E%0Edx%07M%AA%B5N%B7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
set-cookie: zc=8298e2dd-da3e-46f2-49d7-e664c9105e83; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457af1b7ab51b-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fe83d453f0f45edeb554970f51ef5c44
8a729f56e5d8dbc3551098a05611c72317877821
1c8ee9df6dfc88bb7fe98765496482f710d0e756cbb2f912fbc31286445fc181
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1637
Cache-Control: max-age=107899
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:52 GMT
Etag: "63dae27e-138"
Expires: Fri, 03 Feb 2023 22:34:11 GMT
Last-Modified: Wed, 01 Feb 2023 22:06:54 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 312
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219200 OK 11 kB URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
File type JSON data\012- HTML document, ASCII text, with very long lines (23533), with no line terminators
Hash 12333954799dfcc195b31e3c5fa4aaee
8fbb12d2fbc985294ef279730f373b20fa55e6db
2b0cf1b3c89798cd1a204003a5ae83af1b13cea69ab9742b43ce2550f0fb6722
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1124
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: application/json; charset=utf-8
content-length: 10769
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
x-openrtb-version: 2.5
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash fd9d44f593884c8dab919d1d0cc5e5a5
a143f2af73b3dff701795d4ed45c3463cc3d35a3
e5c4c26aac0b8eafcc261c5267e9974669a02e5725cfff881c5bea9c052da856
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:53 GMT
Last-Modified: Thu, 02 Feb 2023 14:52:34 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K5zDSz4bMC1djOYQL0EgNk11KU53AEgb8YxqNV9vjnlbfwLtol3smA==
Age: 6199
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
54.154.10.160200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 54.154.10.160:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Thu, 02 Feb 2023 16:35:53 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 16:35:53 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6562
Cache-Control: max-age=135528
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:53 GMT
Etag: "63db3b2f-13a"
Expires: Sat, 04 Feb 2023 06:14:41 GMT
Last-Modified: Thu, 02 Feb 2023 04:25:19 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
18.193.41.219204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 18.193.41.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1024
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:53 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.47200 OK 955 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.47:0
Hash 0851c9feae5545afe9e105b71264ca9e
e6d27dc78ef09c12df973a475b372b79de943006
c7169fcfec00fc4bc54dac5ada5618910aba29ba311011f3b646ccc950bc6902
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 15:39:51 GMT
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j4GGxXJ_jcvVbtgjyGd6lbDu9Ydurf_9IVoF8ifqhwRXh_wVeoZJdA==
age: 3362
X-Firefox-Spdy: h2
ads.themoneytizer.com/passback/moneytizer/300x250.png
185.76.9.17200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/passback/moneytizer/300x250.png
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit colormap, non-interlaced\012- data
Hash 2074ad598cbe9af526b502fc7fd7bc48
da9079311db777d1b7be769e74ff9e4445dcdcc7
f2deef450997edbab9c5766cd19c5a92fab6ad60764cff1e8661f12c87b4e186
GET /passback/moneytizer/300x250.png HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: image/png
content-length: 18013
last-modified: Tue, 10 Jan 2023 10:35:12 GMT
expires: Fri, 03 Feb 2023 05:02:56 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400576
server: CDN77-Turbo
x-77-nzt: AblMCQ3tgyT/aaIAAA
x-77-nzt-ray: c0a4cc281a9ddbbb69e6db6361564b09
x-cache: HIT
x-age: 41577
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.128200 OK 15 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.128:0
Hash cde45f57196a04b4d52a4b25d51b391f
fb76ef43f3bf8b27c34de73b28745a4de0584a59
b753f261ab304f42026685fdba66dee7b27ae284d341e99cbfa61f171a84f4fa
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 104439
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/media/tm.png
185.76.9.17200 OK 228 B URL HTTP/2 ads.themoneytizer.com/media/tm.png
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type PNG image data, 19 x 15, 8-bit colormap, non-interlaced\012- data
Hash 27a694e3fa0ab9153f0fa8d274f4bc5c
fde476fa9c8dd1b5c8b49883bbd9e71cb649052d
fb98a2a03c925aa211a860ca87a7f33a100fe74f37915c16b16ce7c0a1247223
GET /media/tm.png HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: image/png
content-length: 228
last-modified: Mon, 07 Nov 2022 09:00:04 GMT
expires: Fri, 03 Feb 2023 05:02:55 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400575
server: CDN77-Turbo
x-77-nzt: AblMCQ1NPGf/aqIAAA
x-77-nzt-ray: c0a4cc281a9ddbbb69e6db63a4b71d0c
x-cache: HIT
x-age: 41578
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
178.250.0.157200 OK 5.2 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash 8025b9245c3624fb08df85639d2272f3
22ad2da7c0e9dc42c6669e6ad716d6ff8f22780c
8b3ac54103a80dfa36aa1f2b92cbc0ff2b0ddf74928fe25957f37d3724851790
GET /syncframe?origin=rtus&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=1dbc1d8d-c046-4b71-8491-1484d9c1cceb; expires=Tue, 27 Feb 2024 16:35:52 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 553492
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=105238&f=3&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=3&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=3&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:35:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:3BB6_36264064:01BB_63DBE665_1D53B81:6015
X-IPLB-Instance: 38442
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2603
Cache-Control: max-age=95571
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:53 GMT
Etag: "63daae91-139"
Expires: Fri, 03 Feb 2023 19:08:44 GMT
Last-Modified: Wed, 01 Feb 2023 18:25:21 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 313
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:48 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960548
server: CDN77-Turbo
x-77-nzt: AblMCQ3+P3jB
x-77-nzt-ray: c0a4cc281a9ddbbb64e6db63061ca431
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /moneybid7_28/build_noconsent/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:59 GMT
expires: Fri, 03 Feb 2023 05:03:22 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400602
server: CDN77-Turbo
x-77-nzt: AblMCQ1WPoL/S6IAAA
x-77-nzt-ray: c0a4cc281a9ddbbb65e6db63f821d811
x-cache: HIT
x-age: 41547
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 1274090
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/lib_watermark.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/lib_watermark.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /lib_watermark.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 16:37:11 GMT
expires: Fri, 03 Feb 2023 05:02:54 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400574
server: CDN77-Turbo
x-77-nzt: AblMCQ0m+MT/a6IAAA
x-77-nzt-ray: c0a4cc281a9ddbbb69e6db63b7cb5509
x-cache: HIT
x-age: 41579
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC&info=udvBWF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlQxOGE0UkpnaWIyWHI3QmdtN0YxRlpSZFN1YXNxV1JYZjhpYlQ3bVdjeA&idsd=1580225008,791676915&cw=1&rtusCallerId=147&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC&info=udvBWF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlQxOGE0UkpnaWIyWHI3QmdtN0YxRlpSZFN1YXNxV1JYZjhpYlQ3bVdjeA&idsd=1580225008,791676915&cw=1&rtusCallerId=147&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=rtus&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=4Y6U5F9ZOXp0SUk5aGF1cGN4eVU0OWRGJTJGV09xZHVrak5OSGtMSGhzSDk4SVhzNmlwaU9keU1tVkxCckNUTXBIUTJ3N0J2UnhPZlpkaXlCbEc0cjZuNG9WYmp4ZFhvdjZHYlU2NiUyRlEzTTU4cmpWMUxvYkN2d2MzZVZtcDZrT1klMkIzM2FXJTJC&info=udvBWF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlQxOGE0UkpnaWIyWHI3QmdtN0YxRlpSZFN1YXNxV1JYZjhpYlQ3bVdjeA&idsd=1580225008,791676915&cw=1&rtusCallerId=147&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 696435
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=udvBWF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlQxOGE0UkpnaWIyWHI3QmdtN0YxRlpSZFN1YXNxV1JYZjhpYlQ3bVdjeA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=MXiEu180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQlQxOGE0UkpnaWIyWHI3QmdtN0YxRnRtS3VsVWU4TGh6JTJCWEdoRmNJbFlH; expires=Tue, 27 Feb 2024 16:35:53 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 393253
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0
IP 142.250.74.106:0
GET /css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 16:35:46 GMT
date: Thu, 02 Feb 2023 16:35:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960550
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ3K0LPB
x-77-nzt-ray: c0a4cc281a9ddbbb66e6db633d8b7310
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.2.103200 OK 0 B IP 104.26.2.103:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 151
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5D2KaR6fhMcC10APWqNzqWntl519TX6s9qzoxMfUOh5Pq6iCiPOWTjCiK%2BAzJaCdjYt8R8L1BQwyuniWRw%2Fn3tqLcXkwRs0h0jO5COb%2B%2FvccJdZ2HnoZZwc2DRsUbLr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793457971af8b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:48 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Fri, 03 Feb 2023 05:02:55 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400575
server: CDN77-Turbo
x-77-nzt: AblMCQ3B7Mn/ZaIAAA
x-77-nzt-ray: c0a4cc281a9ddbbb64e6db630d180e31
x-cache: HIT
x-age: 41573
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
set-cookie: zc=8298e2dd-da3e-46f2-49d7-e664c9105e83; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%28%A0%D0%07%11%9E%D5%0D%85HkyA%5C%D9%ED%2F%B2%AB%EEW%84%93%1D%AA%A7%40%01%87%80%82%96%F9%06%2C%16%E1%A7%04%E9%94%C4%B0%1F%93%DE%00%CE%DF%A5%3D6%22-%AA2%AB%81%AEP%DF%84q%99t%05%8Coi%C1+b%AE%0E%0Edx%07M%AA%B5N%B7; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934579a7eb3b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
IP 178.250.0.157:0
GET /syncframe?origin=publishertag&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=48091f41-c656-488d-bafe-d807b52f4bb5; expires=Tue, 27 Feb 2024 16:35:52 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 703314
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.132.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.132.js
IP 178.250.0.130:0
GET /js/ld/publishertag.prebid.132.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Fri, 03 Feb 2023 16:35:53 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960550
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ0HbunB
x-77-nzt-ray: c0a4cc281a9ddbbb66e6db632daf7212
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
www.styleonwards.com/trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
172.67.176.41302 Found 0 B URL HTTP/2 www.styleonwards.com/trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
IP 172.67.176.41:0
GET /trends/this-is-why-celine-tie-bag-is-a-must-have-winter-item/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 02 Feb 2023 16:35:45 GMT
content-type: text/html; charset=UTF-8
location: /this-is-why-celine-tie-bag-is-a-must-have-winter-item/
cf-ray: 7934577d0914b4ff-OSL
cache-control: no-store, no-cache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cf-cache-status: DYNAMIC
pragma: no-cache
set-cookie: PHPSESSID=sic4gfg8ec42t1knl243cb8o5d; path=/trends
HAPPIDS1=s6|Y9vmZ|Y9vmZ; path=/
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQfHT2dESrbp2HuQsKo8VON%2BEdi5rnAagL6u0%2Fvba3esijZern9x8AsUpIT6hL48mILXq%2FMPLzRPm9PSITUDlcBU0ABkEL0KrK747j982wIn0RMsopOXeJ6cRQpv9coPRbCH2%2BsfpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.200200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.200:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:52 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "j4o3/UzQJzEULY/aoGayAw=="
expires: Thu, 09 Feb 2023 16:35:52 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.themoneytizer.com/IIQUniversalID.js
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/IIQUniversalID.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /IIQUniversalID.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:48 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 18:48:43 GMT
expires: Fri, 03 Feb 2023 05:02:55 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400575
server: CDN77-Turbo
x-77-nzt: AblMCQ3oYu3/ZaIAAA
x-77-nzt-ray: c0a4cc281a9ddbbb64e6db63b0a7ee30
x-cache: HIT
x-age: 41573
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
104.26.4.80200 OK 0 B URL HTTP/2 content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
IP 104.26.4.80:0
GET /engine/common/widgets/mmlogger/wzMM.logger.js HTTP/1.1
Host: content.wazimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1534
etag: W/"629f592a-5fe"
last-modified: Tue, 07 Jun 2022 13:56:58 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 896
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=urxVmHp%2Bt2zUFIynFLblSHcJOFAcSMfwBU7XxGAPxWMveKLBBBe5heaksqFrveocAfJYM4A%2FqGhCV%2FYjFP0qK4FmNWMnbRLcbX54WxRSrDoXZjDUhnIxDX36pHb4hzAUuPdT2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793457988fe0b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87200 OK 0 B URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:49 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793457993c7fb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
185.76.9.17200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:50 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960550
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1W5EHB
x-77-nzt-ray: c0a4cc281a9ddbbb66e6db632db01111
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.128200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.128:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 114253
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:51 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 664467
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.0.130:0
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:53 GMT
content-type: text/javascript
last-modified: Wed, 18 Jan 2023 01:20:50 GMT
etag: W/"63c74972-162fb"
expires: Fri, 03 Feb 2023 16:35:53 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2