Overview

URL sec-pt-bc665c.ingress-daribow.ewp.live/It/fcc-login.php
IP63.250.43.14
ASNNAMECHEAP-NET
Location United States
Report completed2022-09-28 10:10:24 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-27 2 sec-pt-bc665c.ingress-daribow.ewp.live/It/fcc-login.php Poste Italiane S.p.A
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 sec-pt-bc665c.ingress-daribow.ewp.live/It/fcc-login.php Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (68)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-28 05:05:05 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS gum.criteo.com (5) 381 2015-01-22 10:58:57 UTC 2022-09-28 04:47:38 UTC 178.250.0.157
mnemonic passive DNS contextual.media.net (1) 513 2019-04-30 08:49:36 UTC 2022-09-28 06:22:02 UTC 23.38.200.22
mnemonic passive DNS ups.analytics.yahoo.com (2) 287 2019-05-09 15:57:40 UTC 2022-09-28 04:39:12 UTC 3.126.56.137
mnemonic passive DNS ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2022-09-28 05:41:58 UTC 178.250.6.55
mnemonic passive DNS telemetrics.klaviyo.com (2) 7117 2019-07-18 09:32:48 UTC 2022-09-28 05:17:30 UTC 54.230.111.19
mnemonic passive DNS www.caliroots.com (2) 475285 2015-03-11 07:41:50 UTC 2022-09-26 13:36:30 UTC 34.249.136.171
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-28 07:47:41 UTC 142.250.74.174
mnemonic passive DNS www.googleoptimize.com (1) 1604 2019-07-23 08:23:32 UTC 2022-09-27 05:08:10 UTC 142.250.74.46
mnemonic passive DNS cm.adform.net (1) 1667 2015-03-30 07:47:01 UTC 2022-09-28 04:58:22 UTC 37.157.2.238
mnemonic passive DNS dynamic.criteo.com (1) 4826 2018-04-12 10:04:05 UTC 2022-09-28 06:10:37 UTC 178.250.0.147
mnemonic passive DNS fast.a.klaviyo.com (1) 5349 2018-04-18 13:36:30 UTC 2022-09-28 05:17:23 UTC 151.101.86.133
mnemonic passive DNS ocsp.digicert.com (14) 86 2012-05-21 07:02:23 UTC 2022-09-28 04:19:13 UTC 93.184.220.29
mnemonic passive DNS web-assets.footway.com (37) 468448 2020-11-06 05:35:05 UTC 2022-09-28 09:15:11 UTC 54.230.111.87
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-28 04:16:22 UTC 142.250.74.164
mnemonic passive DNS www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-09-28 05:01:58 UTC 142.250.74.3
mnemonic passive DNS gem.gbc.criteo.com (1) 6039 2019-02-06 06:21:41 UTC 2022-09-28 05:41:58 UTC 185.235.84.0
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:06:48 UTC 23.36.76.226
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-28 06:28:23 UTC 142.250.74.10
mnemonic passive DNS dnacdn.net (1) 3760 2019-09-02 15:07:45 UTC 2022-09-28 05:41:58 UTC 178.250.2.146
mnemonic passive DNS criteo-sync.teads.tv (1) 1786 2017-02-17 10:06:41 UTC 2022-09-28 05:50:36 UTC 23.195.255.234
mnemonic passive DNS beacon.krxd.net (1) 408 2012-05-22 04:25:40 UTC 2022-09-28 04:44:48 UTC 52.49.35.210
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 05:04:09 UTC 143.204.55.115
mnemonic passive DNS ocsp.sca1b.amazontrust.com (11) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS images.footway.com (20) 477783 2018-06-29 09:21:22 UTC 2022-09-28 09:15:11 UTC 151.101.86.208
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-28 04:39:06 UTC 64.233.165.157
mnemonic passive DNS dpm.demdex.net (2) 204 2017-01-30 04:59:39 UTC 2022-09-28 04:40:34 UTC 34.248.26.113
mnemonic passive DNS visitor.omnitagjs.com (1) 1722 2017-01-30 04:58:42 UTC 2022-09-28 04:58:22 UTC 185.255.84.152
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.35
mnemonic passive DNS federation-gateway.footway.com (12) 516575 2021-03-22 16:32:53 UTC 2022-09-28 09:15:13 UTC 52.16.212.2
mnemonic passive DNS footway.postaffiliatepro.com (2) 0 2017-10-17 10:45:13 UTC 2022-09-28 09:15:16 UTC 91.201.28.212 Domain (postaffiliatepro.com) ranked at: 24977
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-09-28 08:13:41 UTC 172.217.21.162
mnemonic passive DNS r.casalemedia.com (2) 1896 2012-06-24 01:17:14 UTC 2022-09-28 04:58:22 UTC 104.18.18.126
mnemonic passive DNS x.bidswitch.net (2) 286 2017-08-28 15:21:00 UTC 2022-09-28 04:44:36 UTC 52.29.193.101
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS www.facebook.com (2) 99 2017-01-30 05:00:00 UTC 2022-09-28 04:43:36 UTC 157.240.200.35
mnemonic passive DNS www.dwin1.com (1) 4572 2019-09-28 13:55:19 UTC 2022-09-28 04:46:54 UTC 143.204.55.42
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-28 04:37:32 UTC 157.240.200.14
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS static.klaviyo.com (5) 4056 2018-04-18 09:49:37 UTC 2022-09-28 05:17:20 UTC 151.101.86.133
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-28 05:27:52 UTC 142.250.74.66
mnemonic passive DNS cm.g.doubleclick.net (2) 202 2013-05-30 23:19:45 UTC 2022-09-28 07:54:27 UTC 142.250.74.130
mnemonic passive DNS simage2.pubmatic.com (1) 578 2012-07-21 03:13:48 UTC 2022-09-28 04:58:22 UTC 185.64.190.80
mnemonic passive DNS id5-sync.com (1) 504 2017-01-25 21:02:34 UTC 2022-09-28 04:37:15 UTC 141.95.33.111
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-28 07:07:41 UTC 104.18.32.68
mnemonic passive DNS static-tracking.klaviyo.com (8) 4414 2021-12-02 15:31:51 UTC 2022-09-28 05:17:22 UTC 151.101.86.133
mnemonic passive DNS retail.googleapis.com (1) 13121 2021-04-19 12:57:19 UTC 2022-09-28 08:35:07 UTC 142.250.74.10
mnemonic passive DNS pixel.rubiconproject.com (1) 314 2012-10-09 03:17:38 UTC 2022-09-28 04:42:18 UTC 213.19.162.90
mnemonic passive DNS rtb-csync.smartadserver.com (1) 583 2012-12-17 16:38:47 UTC 2022-09-28 04:58:22 UTC 185.86.138.145
mnemonic passive DNS sync.outbrain.com (1) 757 2016-08-02 06:37:14 UTC 2022-09-28 04:58:22 UTC 64.202.112.31
mnemonic passive DNS exchange.mediavine.com (1) 2109 2020-11-23 01:20:19 UTC 2022-09-28 05:43:30 UTC 52.57.198.70
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS s.thebrighttag.com (1) 1487 2014-11-26 15:16:07 UTC 2022-09-28 04:58:23 UTC 3.23.184.187
mnemonic passive DNS ocsp.entrust.net (1) 1208 2013-07-24 12:09:14 UTC 2022-09-28 04:47:26 UTC 104.110.10.32
mnemonic passive DNS dis.criteo.com (2) 660 2012-06-02 15:38:12 UTC 2022-09-28 04:58:22 UTC 178.250.2.151
mnemonic passive DNS ad.360yield.com (2) 657 2012-11-28 11:30:25 UTC 2022-09-28 04:48:20 UTC 52.58.85.173
mnemonic passive DNS ib.adnxs.com (2) 241 2012-05-23 22:36:14 UTC 2022-09-28 04:37:29 UTC 185.89.210.180
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 52.43.61.95
mnemonic passive DNS assets2.footway.com (1) 0 2021-08-11 10:52:24 UTC 2022-09-27 18:38:54 UTC 54.230.111.61 Domain (footway.com) ranked at: 385840
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-28 04:36:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-09-27 05:15:00 UTC 93.184.220.29
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-09-28 06:48:18 UTC 13.248.245.213
mnemonic passive DNS ad.yieldlab.net (1) 3515 2014-05-07 00:17:56 UTC 2022-09-28 04:58:22 UTC 23.13.245.180
mnemonic passive DNS match.sharethrough.com (1) 604 2015-12-22 22:55:59 UTC 2022-09-28 04:57:22 UTC 52.29.43.144
mnemonic passive DNS sec-pt-bc665c.ingress-daribow.ewp.live (1) 0 2022-09-28 02:30:35 UTC 2022-09-28 10:10:03 UTC 63.250.43.14 Unknown ranking
mnemonic passive DNS sync-t1.taboola.com (1) 1269 2020-06-29 11:52:33 UTC 2022-09-28 05:17:51 UTC 141.226.228.48
mnemonic passive DNS sync-criteo.ads.yieldmo.com (1) 2354 2019-12-10 21:28:48 UTC 2022-09-28 04:58:22 UTC 63.34.53.236


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 63.250.43.14

Date UQ / IDS / BL URL IP
2022-11-17 15:37:39 +0000
1 - 0 - 0 6b58-160-177-4-23770esf-c06bcb.ingress-daribo (...) 63.250.43.14
2022-11-09 08:17:17 +0000
0 - 0 - 7 agruql-ccahdsil-b6ec70.ingress-daribow.ewp.li (...) 63.250.43.14
2022-11-08 21:16:41 +0000
1 - 0 - 5 ksksk-bf6da2.ingress-daribow.ewp.live/wp-admi (...) 63.250.43.14
2022-11-08 07:15:32 +0000
0 - 0 - 3 dvra-bf6e50.ingress-daribow.ewp.live/POSTE/cz (...) 63.250.43.14
2022-11-07 21:35:11 +0000
0 - 0 - 3 xleetluffix-bfa296.ingress-daribow.ewp.live/w (...) 63.250.43.14

Last 5 reports on ASN: NAMECHEAP-NET

Date UQ / IDS / BL URL IP
2022-12-09 02:52:34 +0000
0 - 0 - 1 tarabet323.com/ 162.255.119.177
2022-12-09 02:51:24 +0000
0 - 0 - 1 us-liquidmeditation.com/ 192.64.119.137
2022-12-09 02:51:17 +0000
0 - 0 - 1 whitandcase-law.com/ 162.255.119.20
2022-12-09 02:49:45 +0000
0 - 0 - 1 www.us-ourtime.com/ 198.54.117.215
2022-12-09 02:49:32 +0000
0 - 0 - 1 www.tiltedwhisky.com/ 198.54.117.216

Last 5 reports on domain: ewp.live

Date UQ / IDS / BL URL IP
2022-12-05 11:19:39 +0000
0 - 0 - 17 xvideo-984abb.ingress-erytho.ewp.live/wp-login.php 63.250.43.132
2022-12-02 22:35:02 +0000
0 - 0 - 1 servicoo-bad914.ingress-earth.ewp.live/bbva/a (...) 63.250.43.128
2022-11-28 01:26:12 +0000
0 - 0 - 5 netflix-c16e15.ingress-baronn.ewp.live/home/n (...) 63.250.43.10
2022-11-21 06:42:43 +0000
0 - 0 - 2 uty-c09271.ingress-erytho.ewp.live/wpschool/g (...) 63.250.43.132
2022-11-21 02:37:03 +0000
0 - 0 - 2 uty-c09271.ingress-erytho.ewp.live/wpschool/g (...) 63.250.43.132

No other reports with similar screenshot



JavaScript

Executed Scripts (81)


Executed Evals (28)

#1 JavaScript::Eval (size: 89, repeated: 1) - SHA256: 7edfb5f00c1927d0dc912be372ef587683e0e2ce647e9a04829407ae71ad0793

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(18).href.substring(0, 1E3)
})();
                                    

#2 JavaScript::Eval (size: 957, repeated: 1) - SHA256: e59d6827ef97825897984b7ef7a1f2ed3f0d84fc172ce17ad3ef5eebedc6292e

                                        (function() {
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Add To Cart") return google_tag_manager["GTM-NZTC8VW"].macro(46).add.products[0].sku;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Detail") return google_tag_manager["GTM-NZTC8VW"].macro(47).detail.products[0].sku;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Click") return google_tag_manager["GTM-NZTC8VW"].macro(48).click.products[0].sku;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Impression") return google_tag_manager["GTM-NZTC8VW"].macro(49).impressions[0].sku;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Purchase") return google_tag_manager["GTM-NZTC8VW"].macro(50).purchase.products[0].sku;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Checkout") return google_tag_manager["GTM-NZTC8VW"].macro(51).checkout.products[0].sku
})();
                                    

#3 JavaScript::Eval (size: 78, repeated: 1) - SHA256: 911d3fce479ea5889bfe291bfc51b27a3e2d52a289634d0370a0bba2dc48af94

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(62).slice(0, 3)
})();
                                    

#4 JavaScript::Eval (size: 661, repeated: 1) - SHA256: 0fda6d71c6b72da1b70b830f9fa9be06aeab0c0c98bade0d65fc4945f59143d2

                                        (function() {
    if ("Enhanced Ecommerce Promotion Impression" == "Enhanced Ecommerce Detail") {
        var dl = window.dataLayer;
        for (var i = dl.length - 1; i >= 0; i--)
            if (dl[i].event == "Enhanced Ecommerce Detail") {
                var detail_id = dl[i].ecommerce.detail.products[0].id;
                if (__NEXT_DATA__) {
                    var obj = __NEXT_DATA__.props.pageProps.initialApolloState;
                    for (var key in obj) {
                        var item = obj[key];
                        if (item.productNumber == detail_id) {
                            var variants = item.variants;
                            var in_stock = [];
                            for (var i = 0; i < variants.length; i++)
                                if (variants[i].inStock == true) in_stock.push(variants[i]);
                            var coverage = in_stock.length / variants.length;
                            var coverage_round = coverage.toString().substring(0, 3);
                            return coverage_round;
                            break
                        }
                    }
                    break
                }
            }
    }
})();
                                    

#5 JavaScript::Eval (size: 81, repeated: 1) - SHA256: 567657003138f36e0cc495ad72fcee15445e992c5141caf3cc299fcbe118f82b

                                        (function() {
    return "\/it\/search\/abbigliamento".replace("/search/", "?q\x3d")
})();
                                    

#6 JavaScript::Eval (size: 1407, repeated: 1) - SHA256: bf71d0cdcc649af405a880f0b5aecf17af06964c09aebca3d0d2349807804c76

                                        (function() {
    if (navigator.userAgent.match(/pingdom/gi)) return "true";
    var a = "020d955026abefb6a3c51bc5adfb09efaee7fbff932fb75d5a5fda553eaf33e2,0f7224360eefdc5c8739b7e9a9fde7457d9a30201aad557b9a52e62d7afe4768,1365457c68e42424c9ac34941150a8c055fc2e95ba7b223c93dad3d9cda9744d,1428c756df35c2ce11fbc447d099b87bc67c4b12625436145612323f3183a624,49d14adb284fe4a15fa63e98a6617921778fe24fb1b718f0260efb356c48ebe3,8a158425be4f149192d9875a1611ff720ce0905f701351c6aa23dd55c2763f21,b215d1724ddf0efecbaa6045e4d18c14afebe652f45ae4d2596590cc8576f7b0,c8603fe7acfdfdacfdd9a8d1c3ea0887958d3080fa1a8cfd4e977d59cf317549,e72f546c163bb310bf3b7503a6a87ac2cbeec9bc719630678d305d645a1b91d2,ed895cc1ef542879d0bdef1420974922479cdf6326008a53508108ccc0d2a635,f6cb50f4db2a2b18cd4f4b0d934f09115a127eb1a1fba1bb0bebf660c7e32e90,feb80c3f70b40cb6e5043753072415c9ddec8d4f69e6de21d4bba00dd79d5123,205ca4d50d2161f3c4496e75c6600ca8f3a65ac30e3fd75a89511a2b54794339,c24660ebe1475069cc1b5a7b0f4c84da5780db6e07068bd44921516905d2cdea,4a4be7f13d160b92e9c755014c5ca8eb1033a067aaa7146c42c2b8c777a51a17,67cb5e15098fa87ecbe5e8d4397d9400c7f80502f7f714160da170dcfb6779b6,7e0cd37af878c41803ea1b6fe8fff983c1c4848ce9a7e96aae46a2a929f0c2a6,82293f1b0fe113b76f19627f0b898cae4e0721c09db43b5620aa395ddea9a063,d89abce82f08bf321c35df20818ad258346d546ae5c75f1ee085060c6a716031";
    a = a.split(",");
    return a.includes("f81d80af9cbeb0011316fbba3da8002b32251f7a") ? "true" : "false"
})();
                                    

#7 JavaScript::Eval (size: 638, repeated: 1) - SHA256: 81a31f2ddd705c7ab9331b3bc97b3d0035acaf661424e8147f4308fa9c79b5e7

                                        (function() {
    if ("virtual_pageview" == "Enhanced Ecommerce Detail") {
        var dl = window.dataLayer;
        for (var i = dl.length - 1; i >= 0; i--)
            if (dl[i].event == "Enhanced Ecommerce Detail") {
                var detail_id = dl[i].ecommerce.detail.products[0].id;
                if (__NEXT_DATA__) {
                    var obj = __NEXT_DATA__.props.pageProps.initialApolloState;
                    for (var key in obj) {
                        var item = obj[key];
                        if (item.productNumber == detail_id) {
                            var variants = item.variants;
                            var in_stock = [];
                            for (var i = 0; i < variants.length; i++)
                                if (variants[i].inStock == true) in_stock.push(variants[i]);
                            var coverage = in_stock.length / variants.length;
                            var coverage_round = coverage.toString().substring(0, 3);
                            return coverage_round;
                            break
                        }
                    }
                    break
                }
            }
    }
})();
                                    

#8 JavaScript::Eval (size: 635, repeated: 1) - SHA256: 8f25260dbb49d2e9d5f0ff51d7989b1e01d72203cf4653294c4d73f93e1ae469

                                        (function() {
    if ("coreWebVitals" == "Enhanced Ecommerce Detail") {
        var dl = window.dataLayer;
        for (var i = dl.length - 1; i >= 0; i--)
            if (dl[i].event == "Enhanced Ecommerce Detail") {
                var detail_id = dl[i].ecommerce.detail.products[0].id;
                if (__NEXT_DATA__) {
                    var obj = __NEXT_DATA__.props.pageProps.initialApolloState;
                    for (var key in obj) {
                        var item = obj[key];
                        if (item.productNumber == detail_id) {
                            var variants = item.variants;
                            var in_stock = [];
                            for (var i = 0; i < variants.length; i++)
                                if (variants[i].inStock == true) in_stock.push(variants[i]);
                            var coverage = in_stock.length / variants.length;
                            var coverage_round = coverage.toString().substring(0, 3);
                            return coverage_round;
                            break
                        }
                    }
                    break
                }
            }
    }
})();
                                    

#9 JavaScript::Eval (size: 1110, repeated: 1) - SHA256: 90f176d802ed5a59d2313de9431631e4a087c79e8d3183e1dcc8196d666de07f

                                        (function() {
    var prod_arr = undefined;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Impression") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(20).impressions;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Click") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(21).click.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Detail") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(22).detail.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Add To Cart") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(23).add.products;
    if ("Enhanced Ecommerce Product List Impression" ==
        "Enhanced Ecommerce Checkout") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(24).checkout.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Purchase") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(25).purchase.products;
    if (prod_arr)
        for (var i = 0; i < prod_arr.length; i++)
            if (!prod_arr[i].id || prod_arr[i].category == "Shipping") prod_arr.splice(i, 1);
    return prod_arr
})();
                                    

#10 JavaScript::Eval (size: 128, repeated: 1) - SHA256: bf543703def8e0a9e746d7cf168e803acb6833eb82faf2380f40644d5260b898

                                        (function() {
    for (var c = [], b = google_tag_manager["GTM-NS7VF2V"].macro(26), a = 0; a < b.length; a++) b[a].id && c.push(b[a].id);
    return c
})();
                                    

#11 JavaScript::Eval (size: 89, repeated: 1) - SHA256: 274b2eafbf3ff558ec601c744a22b78708b8dab99e2257976c0fd0b9a0970467

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(65).href.substring(0, 1E3)
})();
                                    

#12 JavaScript::Eval (size: 217, repeated: 1) - SHA256: 4c84933b35f1f26603a4b6be54eaf124a98d777ac2fd361ce56b975921e0631c

                                        (function() {
    return "https:\/\/www.caliroots.com\/it\/search\/abbigliamento?gclid\x3dEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE".replace(/%26amp%3B/gi, "\x26").replace(/&amp;/gi, "\x26").substring(0, 1E3)
})();
                                    

#13 JavaScript::Eval (size: 89, repeated: 1) - SHA256: cc5a792f74a7a65bb0718b124e19c599f470ce01de881cae17e83d98661c61ed

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(16).href.substring(0, 1E3)
})();
                                    

#14 JavaScript::Eval (size: 89, repeated: 1) - SHA256: f56036ea72c8f1da256278f64353ac0edfb25976079bbada83c500aedd0f71ab

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(28).href.substring(0, 1E3)
})();
                                    

#15 JavaScript::Eval (size: 1110, repeated: 1) - SHA256: 4868a542cd6ddeb0e8bf020cc4b1604c489dcdd0ed9ccbced08fee65e567dc95

                                        (function() {
    var prod_arr = undefined;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Impression") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(35).impressions;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Click") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(36).click.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Detail") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(37).detail.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Add To Cart") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(38).add.products;
    if ("Enhanced Ecommerce Product List Impression" ==
        "Enhanced Ecommerce Checkout") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(39).checkout.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Purchase") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(40).purchase.products;
    if (prod_arr)
        for (var i = 0; i < prod_arr.length; i++)
            if (!prod_arr[i].id || prod_arr[i].category == "Shipping") prod_arr.splice(i, 1);
    return prod_arr
})();
                                    

#16 JavaScript::Eval (size: 128, repeated: 1) - SHA256: 04bebfb9ef2d0660c70002259528c6e109ebfad1680151de0aadb8d0c0823dbe

                                        (function() {
    for (var c = [], b = google_tag_manager["GTM-NS7VF2V"].macro(61), a = 0; a < b.length; a++) b[a].id && c.push(b[a].id);
    return c
})();
                                    

#17 JavaScript::Eval (size: 362, repeated: 1) - SHA256: 8d113241129a7066f031b4a442001e55e9861d97d0cb9c0b0c53205f9dfa433b

                                        (function() {
    if ("\/it\/search\/abbigliamento".match(/\/checkout/) || "\/it?q\x3dabbigliamento".match(/\/checkout/)) return null;
    var a = [];
    a.push("." + window.location.hostname.split(".").slice(-2).join("."));
    var b = RegExp("https?://([^/:]+)").exec(document.referrer);
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c])).test(b[1])) return null;
    return document.referrer
})();
                                    

#18 JavaScript::Eval (size: 89, repeated: 1) - SHA256: 5519d434f9e07c951287ef5d958f813a458a10360d7ec4d51604056c282b8afd

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(10).href.substring(0, 1E3)
})();
                                    

#19 JavaScript::Eval (size: 664, repeated: 1) - SHA256: 7f9762c5e0ff8228db82e2a416267f34ac3f32217c6eb897982f9732b5e1f2f2

                                        (function() {
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Detail") {
        var dl = window.dataLayer;
        for (var i = dl.length - 1; i >= 0; i--)
            if (dl[i].event == "Enhanced Ecommerce Detail") {
                var detail_id = dl[i].ecommerce.detail.products[0].id;
                if (__NEXT_DATA__) {
                    var obj = __NEXT_DATA__.props.pageProps.initialApolloState;
                    for (var key in obj) {
                        var item = obj[key];
                        if (item.productNumber == detail_id) {
                            var variants = item.variants;
                            var in_stock = [];
                            for (var i = 0; i < variants.length; i++)
                                if (variants[i].inStock == true) in_stock.push(variants[i]);
                            var coverage = in_stock.length / variants.length;
                            var coverage_round = coverage.toString().substring(0, 3);
                            return coverage_round;
                            break
                        }
                    }
                    break
                }
            }
    }
})();
                                    

#20 JavaScript::Eval (size: 89, repeated: 1) - SHA256: af160c779288b84bf0bd6a3156f821ee302d6fd56a069fec5ed9516c112dbca2

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(30).href.substring(0, 1E3)
})();
                                    

#21 JavaScript::Eval (size: 78, repeated: 1) - SHA256: 6f93662c7fc57b357600667e79bff33b18645322fa32d4ea1d68b20edab2b3db

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(27).slice(0, 3)
})();
                                    

#22 JavaScript::Eval (size: 128, repeated: 1) - SHA256: 6c8eb30fe514fe6253e9f162ddf28adcef3e343be2c50bcd93e30b2d9f30cb87

                                        (function() {
    for (var c = [], b = google_tag_manager["GTM-NS7VF2V"].macro(41), a = 0; a < b.length; a++) b[a].id && c.push(b[a].id);
    return c
})();
                                    

#23 JavaScript::Eval (size: 76, repeated: 1) - SHA256: c310949ec23393bbbdcaf7ba372c680247b10a7c35d7c04ea03bffcc24108fe2

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(44).currency
})();
                                    

#24 JavaScript::Eval (size: 147, repeated: 1) - SHA256: 4570527997213e7b6f1646ca9dbb2aee54e7a767c71412960bd8f5127c11dbad

                                        (function() {
    return /iPad/.test(navigator.userAgent) ? "t" : /Mobile|iP(hone|od)|Android|BlackBerry|IEMobile|Silk/.test(navigator.userAgent) ? "m" : "d"
})();
                                    

#25 JavaScript::Eval (size: 1110, repeated: 1) - SHA256: e8c4304a3260f82e5b47951dca0d99b7d423d46149dfc5d64e8f5deaa026ff3a

                                        (function() {
    var prod_arr = undefined;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Impression") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(55).impressions;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Product List Click") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(56).click.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Detail") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(57).detail.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Add To Cart") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(58).add.products;
    if ("Enhanced Ecommerce Product List Impression" ==
        "Enhanced Ecommerce Checkout") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(59).checkout.products;
    if ("Enhanced Ecommerce Product List Impression" == "Enhanced Ecommerce Purchase") var prod_arr = google_tag_manager["GTM-NS7VF2V"].macro(60).purchase.products;
    if (prod_arr)
        for (var i = 0; i < prod_arr.length; i++)
            if (!prod_arr[i].id || prod_arr[i].category == "Shipping") prod_arr.splice(i, 1);
    return prod_arr
})();
                                    

#26 JavaScript::Eval (size: 169, repeated: 1) - SHA256: 31eb764fabc269c8ea22c49a0c35706a110eb4f4ac4aea63b8ce6418abe248bc

                                        (function() {
    if ("\/it\/search\/abbigliamento".match("/search/")) return "\/it\/search\/abbigliamento".split("/search/")[1].split("/")[0].split("\x26")[0].split("?")[0]
})();
                                    

#27 JavaScript::Eval (size: 78, repeated: 1) - SHA256: c23144d3469b38c402f8878c3797ae08032398e704dd6f7af02041942884b595

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(42).slice(0, 3)
})();
                                    

#28 JavaScript::Eval (size: 89, repeated: 1) - SHA256: 993ac455901abcb5305b023d93969c8fed2888b57f0f65b9ae743f94402afb1f

                                        (function() {
    return google_tag_manager["GTM-NS7VF2V"].macro(52).href.substring(0, 1E3)
})();
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 5156, repeated: 1) - SHA256: d870a903dfa928294a9ea8e6f2c3a1164abe000c6ee84aa49006468ec8e3331d

                                        < html > < head > < title > Dising < /title><script type="text/javascript
">rD = false;function edcTimeout() {rD = true; }function cto_AI(u,n) { if (rD) {return;} var cto_ifr=document.getElementById('cto_sub_ifr_px');var cto_ifr_doc=null;if(typeof(cto_ifr)==='undefined'||cto_ifr==null)cto_ifr_doc=document;else if(cto_ifr.contentDocument)cto_ifr_doc=cto_ifr.contentDocument;else if(cto_ifr.contentWindow)cto_ifr_doc=cto_ifr.contentWindow.document;else if(cto_ifr.document)cto_ifr_doc=cto_ifr.document;else cto_ifr_doc=document;if(cto_ifr_doc.createElement){var im=cto_ifr_doc.createElement('IMG');if(im){var d=document.getElementById('cto_pc');if(d!==null && d.appendChild){d.appendChild(im)}if(n){im.onload=n;im.onerror=n;im.onabort=n}im.src=u}} }function cto_l(){if(typeof(cto_loaded)==='undefined')cto_loaded=1;else cto_loaded++;}function cto_run() {function l_i1_1(){cto_AI('https://x.bidswitch.net/sync?dsp_id=46&user_id=k-nrtVKBHErucDNospy-lYpTK9zSPUcwKV1-WC3Q&expires=30', cto_l);}function l_i2_1(){cto_AI('https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-vtKEaBHErucDNospy-lYpTK9zSOdKCb-WLKkug&google_cm&google_hm=ay12dEtFYUJIRXJ1Y0ROb3NweS1sWXBUSzl6U09kS0NiLVdMS2t1Zw', cto_l);}function l_i3_1(){cto_AI('https://ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID', cto_l);}function l_i4_1(){cto_AI('https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Teco1BHErucDNospy-lYpTK9zSMJpcDlHs6Gvw', cto_l);}function l_i5_1(){cto_AI('https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-MvvYURHErucDNospy-lYpTK9zSM-22QJR-Xe2Q', cto_l);}function l_i6_1(){cto_AI('https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-RXrwAxHErucDNospy-lYpTK9zSNzH9EMNMobnA', cto_l);}function l_i7_1(){cto_AI('https://exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Alm1_xHErucDNospy-lYpTK9zSOeXRSx3D_isvjbMwXyN4Z6', cto_l);}function l_i8_1(){cto_AI('https://sync.outbrain.com/cookie-sync?p=criteo&uid=k-jHSpABHErucDNospy-lYpTK9zSPvzvETlEJCEg', cto_l);}function l_i9_1(){cto_AI('https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g', cto_l);}function l_i10_1(){cto_AI('https://pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-w_K2OBHErucDNospy-lYpTK9zSOzkppVnqPP4A&expires=30', cto_l);}function l_i11_1(){cto_AI('https://match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-pBL2uxHErucDNospy-lYpTK9zSMjy9D9fWt12Q', cto_l);}function l_i12_1(){cto_AI('https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-CGzXShHErucDNospy-lYpTK9zSMwGM67G5q9yA', cto_l);}function l_i13_1(){cto_AI('https://sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-gP6RPBHErucDNospy-lYpTK9zSMR-Qyq8EvMfg', cto_l);}function l_i14_1(){cto_AI('https://criteo-sync.teads.tv/um?eid=80&uid=k-vFpyYBHErucDNospy-lYpTK9zSNgoxfSgAIQBw', cto_l);}function l_i15_1(){cto_AI('https://eb2.3lift.com/xuid?mid=2711&xuid=k-E4eljBHErucDNospy-lYpTK9zSMHidVWo-JurA&dongle=013b', cto_l);}function l_i16_1(){cto_AI('https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-X5CfTRHErucDNospy-lYpTK9zSPpUdjQyLhoig', cto_l);}function l_i17_1(){cto_AI('https://cm.adform.net/pixel?adform_pid=15&adform_pc=k-wc2GMxHErucDNospy-lYpTK9zSMLicScoKALGw', cto_l);}function l_i18_1(){cto_AI('https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-EzcI6BHErucDNospy-lYpTK9zSNlcJ7vjt0fSA', cto_l);}function l_i19_1(){cto_AI('https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40', l_i19_2);}function l_i19_2(){cto_AI('https://gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40', l_i19_3);}function l_i19_3(){cto_AI('https://gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40', cto_l);}function l_i20_1(){cto_AI('https://id5-sync.com/s/966/9.gif?puid=k-rZCFChHErucDNospy-lYpTK9zSOieY4aZNodJA', cto_l);}function l_i21_1(){cto_AI('https://ad.yieldlab.net/m?dt_id=8664&ext_id=k-UTQNSxHErucDNospy-lYpTK9zSNlBNWNyEDGQQ', cto_l);}function l_i22_1(){cto_AI('https://sync-criteo.ads.yieldmo.com/sync?id=k-A_SyDhHErucDNospy-lYpTK9zSNtK3o6LJ5SuA&pn_id=criteo&ext=1', cto_l);}cto_tot = 22;l_i1_1();l_i2_1();l_i3_1();l_i4_1();l_i5_1();l_i6_1();l_i7_1();l_i8_1();l_i9_1();l_i10_1();l_i11_1();l_i12_1();l_i13_1();l_i14_1();l_i15_1();l_i16_1();l_i17_1();l_i18_1();l_i19_1();l_i20_1();l_i21_1();l_i22_1();}</script></head><body><iframe id="
cto_sub_ifr_px " src="
javascript: false " style="
width: 1 px;
height: 1 px;
display: none;
"><div id='cto_pc' style='display:none'></div></iframe><script type="
text / javascript ">document.body.onload = function(){ if(window.cto_run) cto_run(); };window.setTimeout(function(){ if(typeof(cto_loaded)==='undefined' || cto_loaded<cto_tot) {edcTimeout();var redirectLocation=location.protocol+'//static.criteo.net/empty.html'; location.replace(redirectLocation);}}, 5000);</script></body></html>
                                    


HTTP Transactions (209)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 09:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0yQL2GQLzUyYAif0uBYGFSoTfIaktShiQxFwQCkUADpZ-2NNGiITgQ==
Age: 3274


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8285
Expires: Wed, 28 Sep 2022 12:28:18 GMT
Date: Wed, 28 Sep 2022 10:10:13 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O2NmqcX108sBfEzzEs1Tc9GJWKTQbS2dGxHVALjOtWcTlsjuiPljjg==
age: 16907
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:13 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 03:33:21 GMT
Expires: Wed, 05 Oct 2022 03:33:20 GMT
Etag: "7da37f1930fd2276d82309b76a3c3250f32e80c4"
Cache-Control: max-age=580386,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bb022395cb4f9-OSL

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 10:10:13 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 10:03:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u9uy5bsNFreqNy9bAcK7KrfdhnAAu6dU0MtGZcGvZDMH405w6XL78A==
Age: 2440


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /It/fcc-login.php HTTP/1.1 
Host: sec-pt-bc665c.ingress-daribow.ewp.live
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         63.250.43.14
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 10:10:13 GMT
set-cookie: PHPSESSID=t6hhl58vdd14gl1a11n3gj0t7h; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, public
pragma: no-cache
location: https://www.caliroots.com/it/search/abbigliamento?gclid=EAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
age: 0
x-cache: MISS
content-length: 15
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   15
Md5:    ac377a7698ced0966d7cc75c3ae42a03
Sha1:   69de22ace4334e7cefde978c8a94edadaa5d3fa3
Sha256: 66b44e07dffde7ecc19e1b3cd07cab97497c3a975912560132ad2d8110c74e35

Alerts:
  Blocklists:
    - openphish: Poste Italiane S.p.A
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4902
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:14 GMT
Last-Modified: Wed, 28 Sep 2022 08:48:32 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:14 GMT
Last-Modified: Wed, 28 Sep 2022 09:04:50 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DK-3tSWE9Es5clcCS2Cp-IJzktEBH2x4NruO_fhrR4_uCjPxCvgylw==
Age: 3924

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ae73yIYoYLhMRD+BhOdrug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.61.95
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W3od3J76/56+KiuXqCeBUXM6L+w=

                                        
                                            GET /_next/static/655HzMidT0z6Biz_u-MYg/_ssgManifest.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-length: 77
date: Tue, 20 Sep 2022 10:49:04 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 10:44:12 GMT
etag: W/"4d-1835a7f8c60"
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Npgqkr_TKRg5GPSENaU2Hb4SJXthmNB0g_5idpP4EUghOMEJUFFJXg==
age: 688870
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    b6652df95db52feb4daf4eca35380933
Sha1:   65451d110137761b318c82d9071c042db80c4036
Sha256: 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
                                        
                                            GET /_next/static/655HzMidT0z6Biz_u-MYg/_middlewareManifest.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-length: 92
date: Tue, 20 Sep 2022 10:49:04 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Tue, 20 Sep 2022 10:45:16 GMT
etag: W/"5c-1835a808660"
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QEW1hkE2UJrAEUiedIITCBAhRhGAeVgh0j4rylRmabn0A2sD375XfA==
age: 688870
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   92
Md5:    7c3f7e060745668041278118c0bb3d6d
Sha1:   e639f56695b3cc30d78dce7a0084aa8299a1311a
Sha256: de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a
                                        
                                            GET /fonts/CALIROOTS_Grotesk-Regular.otf HTTP/1.1 
Host: assets2.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.61
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 25936
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 15 Jul 2021 09:43:58 GMT
x-amz-version-id: Q12pUdAFRFlFYUeS2VKiP5PrD0mEEukj
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 18:21:07 GMT
etag: "1ed0bed00e9f3f016a639b92626a6dbd"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RLSe9CBS7c9UOb40su-FZ_3nUZrWieScY0canDapLJhQL6pbdiNZEw==
age: 575348
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenType font data\012- data
Size:   25936
Md5:    1ed0bed00e9f3f016a639b92626a6dbd
Sha1:   3e885a0c172095b656d835b755ca50e4af727fda
Sha256: 1289b7bd27a89e892b69da58ac4e5d9754cc3e4e6f2ff0993dd1bd2db7e9a8cc
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /optimize.js?id=GTM-59GXGSK HTTP/1.1 
Host: www.googleoptimize.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 10:10:14 GMT
expires: Wed, 28 Sep 2022 10:10:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42846
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   42846
Md5:    f61fc2f3d56df79e5d2015b9a2358caf
Sha1:   e4b4efd9e0aef2f52b408aeaf0ddf05443e27b2b
Sha256: 35fad187b95f684aba07e80323adda69a4a32b321034d4cfe3b12006d7251dc7
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:24:34 GMT
expires: Fri, 22 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 492340
last-modified: Wed, 11 May 2022 19:24:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Size:   11028
Md5:    1f6d3cf6d38f25d83d95f5a800b8cac3
Sha1:   279f300ca2cbbdf9f5036ef2f438607fbf377daa
Sha256: 796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:15 GMT
Last-Modified: Wed, 28 Sep 2022 09:04:07 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4moasqUDKeXCe4gZfCTWgh5CucN3JOT8cfHEBiJuZIhlXuJO_Ee1Qw==
Age: 3968

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:15 GMT
Last-Modified: Wed, 28 Sep 2022 08:38:21 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OZ1qC2jSUSVMXaYWP1THnUR-POlMRKLDVnuD81qUAkkwWSzsAxKXKQ==
Age: 5514

                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.16.212.2
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:15 GMT
Last-Modified: Wed, 28 Sep 2022 08:50:13 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2z4jGgy_dIz7qNVLrKCsTm45c6AgUyXlcWor4iNxu227iubiUpErOA==
Age: 4802

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:15 GMT
Last-Modified: Wed, 28 Sep 2022 08:55:22 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 03b2kxhJLCcJCxk3hztHqcORww5FuJFX9zYq96uJaWoT_-Xhdz4Yig==
Age: 4493

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:15 GMT
Last-Modified: Wed, 28 Sep 2022 08:38:21 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: __kN3oebWJrArKje5Vx3NUkqd7eqtqgETMJm3RW7e35sgTOiPilYzg==
Age: 5514

                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.16.212.2
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.16.212.2
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.16.212.2
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: cartid,client-user-agent,content-type,countrycode,storefront,visitorid
X-Firefox-Spdy: h2

                                        
                                            POST /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
content-type: application/json
visitorId: TAY0hcd30RiR
client-user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
storefront: caliroots
countryCode: it
cartId: null
Origin: https://www.caliroots.com
Content-Length: 481
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.16.212.2
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
content-length: 698
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2ba-B8U5ylUrNWB1vpCJ3smo/rtIqy8"
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (697)
Size:   698
Md5:    20fab6fa330f855e430b31e40c5302f8
Sha1:   07c539ca552b356075be9089dec9a8febb48ab2f
Sha256: 05c9518c1140f7fa54c0dec9afdb85cb9cae3b5afff697ced76103c5e698279a
                                        
                                            GET /store_logos/WideCalirootsNoPoweredBy.svg HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/svg+xml
                                        
cache-control: public, max-age=31536000
last-modified: Thu, 13 Jan 2022 12:23:46 GMT
content-encoding: gzip
server: imgix
x-imgix-id: bf3e8d4d06d67e288ba7d9170bf636af6017704e
x-imgix-render-farm: 01.1
date: Wed, 28 Sep 2022 10:10:15 GMT
age: 3101440
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10061-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 1440
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   1440
Md5:    82b00a7e6a158203a34a22d27e654321
Sha1:   feb7a513ca67a777e3986f716982c99af77e5eb8
Sha256: d7b217db325317dcab6620bcf1193c701c16d9d8be008fce73912246f84d8c1c
                                        
                                            POST /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
content-type: application/json
visitorId: TAY0hcd30RiR
client-user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
storefront: caliroots
countryCode: it
cartId: null
Origin: https://www.caliroots.com
Content-Length: 498
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.16.212.2
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
content-length: 698
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2ba-B8U5ylUrNWB1vpCJ3smo/rtIqy8"
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (697)
Size:   698
Md5:    20fab6fa330f855e430b31e40c5302f8
Sha1:   07c539ca552b356075be9089dec9a8febb48ab2f
Sha256: 05c9518c1140f7fa54c0dec9afdb85cb9cae3b5afff697ced76103c5e698279a
                                        
                                            GET /store_logos/WideFootway.svg HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/svg+xml
                                        
cache-control: public, max-age=31536000
last-modified: Thu, 13 Jan 2022 10:21:13 GMT
content-encoding: gzip
server: imgix
x-imgix-id: ff3ec41a107fb02e13cb9d888336e010b81629b5
fastly-restarts: 1
date: Wed, 28 Sep 2022 10:10:15 GMT
age: 11177800
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10071-SJC, cache-sjc10046-SJC, cache-bma1620-BMA
x-cache: MISS, HIT, HIT
vary: Accept-Encoding
content-length: 1238
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2111)
Size:   1238
Md5:    6d4da1f0f8ba28f9535c7982b46a0ee1
Sha1:   06b397d60d58d58b47c03691ecf1cc51d8d81e46
Sha256: df0c302dd4cc9f7e8f656e2ad00beb6130961b0855f207af248b2c9d884b922a
                                        
                                            GET /store_logos/WideCaliroots.svg HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
Origin: https://www.caliroots.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/svg+xml
                                        
cache-control: public, max-age=31536000
last-modified: Thu, 13 Jan 2022 10:33:06 GMT
content-encoding: gzip
server: imgix
x-imgix-id: e1ca71803c6ec103838339fdaf8bb5ee98a5eca7
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:15 GMT
age: 765261
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10075-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 3346
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size:   3346
Md5:    1719beb9a3dc003160cbad48fd5ea208
Sha1:   0b7df5c578e7324d93d0551312ec0631cb75a7c1
Sha256: f6de5e41042880b782fe8d6d44591001996f9272dd5493471350e6f35c685aae
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5664
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:10:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5664
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:10:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5664
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:10:15 GMT
Connection: keep-alive

                                        
                                            POST /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
content-type: application/json
visitorId: TAY0hcd30RiR
client-user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
storefront: caliroots
countryCode: it
cartId: null
Origin: https://www.caliroots.com
Content-Length: 1602
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.16.212.2
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
etag: W/"132b8-Z8Gk9g1RtcMlADB1yqEI+dTFMOE"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   11384
Md5:    fd2a85c82f8a90fe96fdf041f20554c6
Sha1:   3bd196c837dfefac5dec27bd95ebe04ae5cd76aa
Sha256: c231b2a7d75551b0252614274d321edfa41125830d3db05e86dcd1a915014b3e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: L2Of12XTKmTF2EPL4MHpJvBW7GNS8gSRs3FuUMB-RUpTZaY8ew_o_w==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:26:00 GMT
age: 17055
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9733
Md5:    f3e1fd3401c5e635a8dbeec5f78b721d
Sha1:   2142075b27d0d355c51231ab06fea46e25eb9c59
Sha256: 2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t_uz9vKifWkMj014gCS83STU-fnM39a49_LB5By3j9NqLpqfl8tKSA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:38 GMT
age: 43957
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7359
Md5:    46dc8f1499f4de5f03bd87a68c3c6c7b
Sha1:   0cd28a243f9704140ccb9eb1415a77fcccc7cf87
Sha256: 3d7a5cdc0812857efabd7ab941aea6d6582790b86a9587809d222c0a8546262b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
age: 44477
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
age: 44411
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /_next/static/chunks/3272-657e9b9239c10665.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 14 Jul 2022 13:33:46 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 14 Jul 2022 13:26:14 GMT
etag: W/"f758-181fce374f0"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XiRHJDjcMgW0l0yevZVZhl_dQSwLjz_YcX1NJDzHeMz3XHjT-Q75cg==
age: 6554188
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   29464
Md5:    e7ea009b7cb444a6f10989ec406e4516
Sha1:   f03c1611ac8657bab5f1b01101bf1ad96374947f
Sha256: 1285ce10c6b718320e0483b45e0f1ed9c3e8e5b02eec34228e38bbed6db93744
                                        
                                            POST /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
content-type: application/json
visitorId: TAY0hcd30RiR
client-user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
storefront: caliroots
countryCode: it
cartId: null
Origin: https://www.caliroots.com
Content-Length: 450
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.16.212.2
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
x-powered-by: Express
access-control-allow-origin: *
etag: W/"3a65-6CVd6ZC/KAHGh/iICSvXry9usUg"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6786
Md5:    37e84f409d924c23f7d82aa170ecf252
Sha1:   537dada7ac66a6325588b0de0eba3b9c038c9b73
Sha256: 13d977dd16b6e8912801519bfcb18ffc715e627a937806392b1124c478518ccf
                                        
                                            POST /graphql HTTP/1.1 
Host: federation-gateway.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.caliroots.com/
content-type: application/json
visitorId: TAY0hcd30RiR
client-user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
storefront: caliroots
countryCode: it
cartId: null
Origin: https://www.caliroots.com
Content-Length: 150
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.16.212.2
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
content-length: 69
x-powered-by: Express
access-control-allow-origin: *
etag: W/"45-NNXVsLowqvjrRTQW4y4dJxnLFUM"
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   69
Md5:    778604a3d074a7ae24474b241d9a2630
Sha1:   34d5d5b0ba30aaf8eb453416e32e1d2719cb1543
Sha256: fc73dfd27005a17f4f52f4e461c1167385e4f02b9ddce85bb481416c2cbd91a4
                                        
                                            GET /img/favicon/caliroots.png HTTP/1.1 
Host: www.caliroots.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/it/search/abbigliamento?gclid=EAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE
Cookie: visitorid=TAY0hcd30RiR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         34.249.136.171
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 10:10:15 GMT
content-length: 3700
server: nginx/1.20.1
x-powered-by: Express
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 20 Sep 2022 10:43:04 GMT
etag: W/"e74-1835a7e82c0"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Size:   3700
Md5:    4f38e7cc3f5118b09f9c12c5271d8872
Sha1:   d0ea3e7ce79037f20957ae0122fa2a8ca2b084c7
Sha256: 8d0510eabb946d2d4c018789d4a09f09b2821f7f9da78e7a37619569ebf0e4c3
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:55:02 GMT
expires: Tue, 26 Sep 2023 21:55:02 GMT
cache-control: public, max-age=31536000
age: 130514
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11040, version 1.0\012- data
Size:   11040
Md5:    5e22a46c04d947a36ea0cad07afcc9e1
Sha1:   6091d981c2a4ee975c7f6b56186ee698040bb804
Sha256: 0f53e8b0a717ca4ce313eec62b90d41db62c2f4946259a65c93bf8e84c5b0c44
                                        
                                            GET /ca_images/710-548524-005_KHK_1.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 06 Sep 2022 08:30:04 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 611e08e6b5d093394195750d08c6f913a5e3310c
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1906813
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10052-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 88493
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   88493
Md5:    a2fd76c419a6841cee9b7e8161fb0711
Sha1:   715ade37beab35c77dc8839924dcd0ead49b7c71
Sha256: 553d74e478e1afc61244d07ac8d60b5f56bc748c56951253cff79994d009eea1
                                        
                                            GET /02/60382-40_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 09 Aug 2022 13:34:45 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 18fe3301fc63d26ad902f03192a7f456ddc8b2e6
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 4307731
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10045-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 55456
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   55456
Md5:    87c06c2b247d3cd74266f55f21fe6070
Sha1:   13cf4ac85749c6ed0d978c48e0c781bcf9f16e87
Sha256: e74cfd0199cdbe7f6ae62553399e6cd39d73955d88b792b2262986b54288ade4
                                        
                                            GET /02/60425-14_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 30 Aug 2022 23:35:52 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 2ee67843c7f69f9593560684c1f6f6800a51c061
x-imgix-render-farm: 01.1
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 2457265
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10057-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 41148
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   41148
Md5:    1407caf8c23ca0e1e3151022f06b4779
Sha1:   2a8a85ec87dc3f60d7d46db937d0602244763093
Sha256: 73c5b460b5c8324cbe7fc19c8210e590d895523cb0b9d62a68b0f0fe0df196d8
                                        
                                            GET /02/60630-77_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Wed, 07 Sep 2022 15:37:54 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 83c742094d61580f541a9aa92d8ad28467ed669d
x-imgix-render-farm: 01.1104
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1794743
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10048-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 71348
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   71348
Md5:    778b8b95ec9e482b12bbffa95e74bbed
Sha1:   32cd5028790b05d43c4698e2f7ddb9cc80cc1a17
Sha256: bd11d6b399f3f45594f4dee330ff6dc4efb0c829e590dcbe19acccef68a6824f
                                        
                                            GET /02/60481-22_006.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Wed, 10 Aug 2022 09:33:08 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 363d9afa20404a0eb7abf9d786480454d3fe6395
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 4235828
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10031-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 24708
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   24708
Md5:    1d01994ecb3f36d04170e053e22c2074
Sha1:   ac8b793213abf056042281b71b2c32785c1f891d
Sha256: 2ca0ffd5f6009f3b71ac836b836ae4b4af8c5ceba436cf6a9d06fc03b9837865
                                        
                                            GET /02/60481-37_005.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 13 Sep 2022 11:00:13 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: fe2b83d88eb307ec0791680118e5cbe930035ea6
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1293003
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10021-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 47711
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   47711
Md5:    891012a9a62eb21ef48f4707c41d7e4f
Sha1:   91c305b72fc2576fff3c6fecd8aac9d7c96d9534
Sha256: 13903a4c33d3ff97a7674d16b295c56d73971bde76956a08de33eba3901b2846
                                        
                                            GET /02/60649-12_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 06 Sep 2022 18:11:31 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: c84f3696e40e008eb96dc41df6df14084b0b375f
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1871926
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10024-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 65949
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   65949
Md5:    706f659d295fe9fe3f4fd1db24b47d41
Sha1:   06a31c0acc912d74e5b988604c86729458da6ece
Sha256: 9c1dfbbb0c2b5e60b9710593c0208e1603702b49a53b8ae8707a5cb2ea56268e
                                        
                                            GET /02/60506-16_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Wed, 10 Aug 2022 08:12:56 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: a6c8709c26b7870ddbd7944e89c84f1c8e312d98
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 4240641
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10058-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 21915
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   21915
Md5:    5c326b4c8baeea2a6a45b367f0df975c
Sha1:   e3a728b849488a95dd9e3eff05272a64b1a5b68f
Sha256: 654cfb2ba0bddd6d4efb99acccf7e7f97bfb55f1774abb7fa015b1dca034c5e8
                                        
                                            GET /02/60785-13_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 13 Sep 2022 10:23:11 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: fa45ba20bc0f6086187782b3b473794b4a5c2653
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1295226
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10061-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 79178
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   79178
Md5:    f234d5fdd84159b88175b52284515d71
Sha1:   186b6bd6811c0ab198012bed215418e14d307828
Sha256: 16a30812a280f6b0714bd41930eb1695d480d1c95cfbd5fb59b8ede054aebab9
                                        
                                            GET /02/60715-69_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Mon, 12 Sep 2022 16:06:03 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 99ea07c8cc8dffb04e957667e753d1a4e967ef96
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1361053
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10041-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 40916
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   40916
Md5:    6f50c1af0db2b7497c9ea070f89b0fb1
Sha1:   6f0bd7b197f5dae7c7116227c8a4f30f0a82a59d
Sha256: 1e9ac8d94717b254306a64c2d4cc6b108541f6d17d7991832b9667ceea073add
                                        
                                            GET /_next/static/chunks/pages/search-ce6e095f5f4939f2.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 11 May 2022 08:46:09 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Wed, 11 May 2022 08:33:14 GMT
etag: W/"1138-180b2403510"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cBiA2NlX_FReZbyWH5ns8TlyGnJ0pwXGSqVU4CHSSJ5kcMvncAzV0w==
age: 12101046
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   88196
Md5:    c1933add1b223d26a8c73daf26220000
Sha1:   e1cf7340a9801f2310111fc7b367ba91d9e0b804
Sha256: e8ffa1218c6300fd503da139fae7a603de81624624aa1fd5e165477c63e299a8
                                        
                                            GET /02/60717-40_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 06 Sep 2022 14:55:17 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 3f8636de2cc832d3620d1b181b4d3e2f215155a6
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1883701
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10024-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 37312
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   37312
Md5:    484dff9da98cb693d78dda64efceee52
Sha1:   295447015fb04990648976795ce336020a4ee132
Sha256: 0f152954114e8b976cbec07d81873633bcf56b3dbf9de8c12d24a4c817d44378
                                        
                                            GET /02/60715-50_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 06 Sep 2022 10:23:37 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 6d70d66d12a7d89b1c871deec6f047a64c29cfe0
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1900000
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10040-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 51342
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   51342
Md5:    bedc5ca35ee038307fda874bf6c34e16
Sha1:   8f43968b07cb3380151d76f265c7cf30ef30c8fc
Sha256: f6bb250c0ea0cc31f9162021fc2fb8c320fcf96787bfbade8ddea8b091fcbd92
                                        
                                            GET /02/60417-84_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Wed, 31 Aug 2022 07:42:26 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 03c1db86890c32c4cc80d520ce4a88840823fd23
x-imgix-render-farm: 01.1
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 2428071
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10071-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 17999
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   17999
Md5:    f808dbf7bcc455073e335b13c0003b0f
Sha1:   da0bd56d02325d4fbe88e0e5f911a510c99ae91a
Sha256: a2845baeb0d9ac566856310ecb1192a7cec1ef535b3096b0c63320b7595bb41b
                                        
                                            GET /02/60628-38_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 30 Aug 2022 10:26:05 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: c6c90f8f5dcf2e4cdef3e9e8e822278551b58ece
x-imgix-render-farm: 01.1
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 2504652
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10054-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 25885
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   25885
Md5:    7cb9a5c91259d467edd496b55a440ded
Sha1:   ac48efc7055fac606974b124096ebe997eff593d
Sha256: 854af3ff2016270c9bd5188db849d78c163fde2265fe6d79795e45102b4dc9aa
                                        
                                            GET /02/60781-56_007.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Tue, 06 Sep 2022 09:18:24 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 9104722703e70a50d052e24748702df664c52239
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1903912
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10033-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 39080
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   39080
Md5:    9e27b288eae88da33512ccd244e856ea
Sha1:   1146b4cac7f5f3d2727990386947c4d4b488460f
Sha256: e8d38f592825b1b864447db1a54fca28a8638fe1c339f84df20c216e97931dda
                                        
                                            GET /02/60488-95_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Mon, 12 Sep 2022 12:44:46 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: 76f2f696d22d5b8ec250365cc27922743ae17ac5
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1373130
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10040-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 20222
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   20222
Md5:    21e67e131108d9a5129af0b8c878cb3a
Sha1:   f2f59f561cdb256201ae788226c93a9619720a15
Sha256: 17d9c3533c1e6e5377635c9df84333a3ce4afe267ee14019de25dc65606a3be1
                                        
                                            GET /02/60715-74_001.png?auto=format&fit=max&w=1200 HTTP/1.1 
Host: images.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/avif
                                        
last-modified: Mon, 12 Sep 2022 21:15:12 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: ece0aa6db05dcde8cc2b7b05fce38def93ac0502
x-imgix-render-farm: 01.592
date: Wed, 28 Sep 2022 10:10:17 GMT
age: 1342505
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10029-SJC, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept, User-Agent
content-length: 32307
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   32307
Md5:    eebabd55f1faf55d811299b14b2ffb44
Sha1:   da9cc70e21065f2a90ff474cbd7b86c671d407a2
Sha256: 4a96c4cedba93e14e39ab873a5f51e258a6bd93673453b7317c0c474271464d3
                                        
                                            GET /gtm.js?id=GTM-NS7VF2V HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 10:10:18 GMT
expires: Wed, 28 Sep 2022 10:10:18 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89331
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30902)
Size:   89331
Md5:    2016acf59d7ebc540320b8631b9bfd5f
Sha1:   f875256aa4c3b4618c53eadfb9e9d8d59c853f62
Sha256: cc89091383653304ace38141e103cb74f9b49df1183dcaeb00ac72286cd9c8bb
                                        
                                            GET /onsite/js/klaviyo.js?company_id=Yi6Zf4 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, OPTIONS
cache-control: max-age=1, stale-while-revalidate=10800
content-encoding: gzip
etag: W/"3a72b1e5d626c9848d6d62ed76dc9edc"
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31021
x-served-by: cache-lga21921-LGA, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1364
x-timer: S1664359818.382953,VS0,VE0
vary: Accept-Encoding
content-length: 1038
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2904)
Size:   1038
Md5:    31d92e362fe88e09f213cb416d4716e8
Sha1:   6a041cb98db3ba6bfa1aa93d37edf168d1ef36f8
Sha256: 6044fa6fd03b656e7cbfee097cda573ec2b93a71f168a23b5b3ec21c5e8e82f4
                                        
                                            GET /onsite/js/vendors~signup_forms.f7066e273a66876a4dee.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: jjBLvBaAHFkdYVj2+Lzl4EwiVBypzOSfV7Hh68KS7NpSMh6P+cAphy/WZOdlMir50eSlWlunTIQ=
x-amz-request-id: QMK0P3P9BX6C1KYD
last-modified: Mon, 27 Jun 2022 21:34:56 GMT
etag: "8b11cc3d85af2e5a333cdf19d980234f"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: bsJKSXN8aZQUCveR8yzC_DqAz1c7vu6.
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31025
x-served-by: cache-lga13627-LGA, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 5315
vary: Accept-Encoding
content-length: 12401
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36905)
Size:   12401
Md5:    2a5130a3283c5feb0565d3dbedfc9b94
Sha1:   d8f366809e17a57d1c1b3929a54fb259398c1fa9
Sha256: bf18345ccf28ee5540d5a11559a4dff3d908ffa8e93a4c06d3e5ae408c0fec60
                                        
                                            GET /onsite/js/sharedUtils.0bc3da446707ca1edb02.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: IlT6kPnA9ssToQg2br24zjaYpouwzHuGVmlqFIP+L8Pw+7i15Yy2jhHVcSD2xOHx5RWAdZWRMJE=
x-amz-request-id: FDHRXCM9F36M1V2Y
last-modified: Thu, 22 Sep 2022 20:56:47 GMT
etag: "af06dc05c43c0e0ef631aa6578eb2b20"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: nWL.VwGMlkCnpf2w6hy7LSuPMY5QeZrD
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 40566
x-served-by: cache-lga21967-LGA, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8181
vary: Accept-Encoding
content-length: 13237
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34307), with no line terminators
Size:   13237
Md5:    ac1e18ce6cac8daaaef31bed3c074515
Sha1:   8ea498fa5964d40d6e9d771a57b2c2d4951c7a83
Sha256: 7c027fff21e5b62a108e839ed90d91b856969e798318524b06faf4232c490544
                                        
                                            GET /onsite/js/signup_forms.47564cabd447e0caeb79.js?cb=1 HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: gOGqJffLj4AyKttnk4HnLQClK31k93MkdrDcfE1uaoIaY+1Pk8e0n3DUWutMyfZy8McC3mfuuUA=
x-amz-request-id: NB2XG3YCBMHKQSVG
last-modified: Thu, 08 Sep 2022 18:16:36 GMT
etag: "2d63267addf14fe8300469051c594504"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: YzUvVFTSTm9rqYmTEJ4211JqvsZ4AZ2T
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21950-LGA, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 5279
vary: Accept-Encoding
content-length: 11607
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (35080), with no line terminators
Size:   11607
Md5:    baeffa65b049c4924b49cbfffc1afb97
Sha1:   3a35818b9a6babada70426a59576d901075fc66e
Sha256: 379d738619d85f7219a98c01eb67a5b54bc926d62cf02328ab45669fd0641a4d
                                        
                                            GET /_next/static/chunks/7832-33b3cc9b3ca3f8fe.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 28 Apr 2022 08:46:57 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 28 Apr 2022 08:22:49 GMT
etag: W/"1fd1-1806f43ffa8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 40wJriaE42hs_A6vmGQyKILSsa-O--bt9zKG9t60JBcUaDETdvTwmw==
age: 13224198
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27618), with no line terminators
Size:   10717
Md5:    8b5854293289f3b3557c1f2eb8aab2bd
Sha1:   738e357b232c50f321460b7541cca94fd97cff76
Sha256: 9faf087c823839ddd1e4241a60befa503ee2d76f6d350fee116971740c54ed97
                                        
                                            GET /onsite/js/fender_analytics.b753a4263579a29a452c.js?cb=1 HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: AAvTkxUkmn1nhj3iNswxgEddMkNCaLEoFYU8uvfLxh/TAQztrGjDPwoZe5ofoJQtFoTaE8Fp7ME=
x-amz-request-id: ST1DZM45FMXDHFQH
last-modified: Tue, 27 Sep 2022 21:33:03 GMT
etag: "6bad3e1e666b70ad024f4e213c466fb0"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: K07yjFr4xSPCpq8xLpZz92YJ8R.g8eja
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21924-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 9503
vary: Accept-Encoding
content-length: 10684
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27732), with no line terminators
Size:   10684
Md5:    906f95b9074e0ab4e5ab14293f285191
Sha1:   f2457ae9855b67adb365356680a9f6eb6143c955
Sha256: c721196d5c3530a99c9474d91f0fcb66191b98b28ae97392c53e9509258c06c6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5491
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:18 GMT
Last-Modified: Wed, 28 Sep 2022 08:38:47 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /onsite/js/sentry.32defc2659e6aaee877c.js HTTP/1.1 
Host: static.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: iq43u9z8C5ggfgPwFsn+4bKUQtK7mcyE9p8ercG9UOmhgEJVt0S8OxGaklyy2Cyy2H5tse9JGrQ=
x-amz-request-id: KNB7YRE35ZYYP34A
last-modified: Mon, 27 Jun 2022 21:34:56 GMT
etag: "28b2f273ea92b5951335870743671025"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: SEi8mXkr3rDKIOIawsPVx86hWqhxnHRI
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21963-LGA, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 4837
vary: Accept-Encoding
content-length: 13736
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (39962), with no line terminators
Size:   13736
Md5:    93429c6be72678683e9267a528e4c0b4
Sha1:   dec00b93c3128f0094770ae508f24cb3f25fb317
Sha256: f8e4e0da84f668d6f21293c30e6bfa6b1460cd2cc9b4e84cade80e81a680f477
                                        
                                            GET /_next/static/chunks/pages/index-c084668850f7e77d.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Sat, 28 May 2022 01:29:43 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Fri, 27 May 2022 08:25:21 GMT
etag: W/"d9e-181049ebd68"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RyEkCZNs8Ao14upogL24gj1bb97S0S0IjQ3ROtPhdOCMEUEKCvRWgg==
age: 10658432
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   11463
Md5:    8efd750d3802ac886d7fd52061a6f05b
Sha1:   bf89c39d05215a6db042480303077d3225041441
Sha256: 8d1740fc2790a74f3d028be6b8b86f6fd1dd4bd4f1b58ced16460b4cad998b59
                                        
                                            GET /custom-fonts/api/v1/company-fonts/onsite?company_id=Yi6Zf4 HTTP/1.1 
Host: fast.a.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-credentials: true
access-control-allow-headers:
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
allow: GET, HEAD, OPTIONS
cache-control: max-age=10
server: nginx
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 7341977
x-served-by: cache-bos4673-BOS, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 11265
vary: Cookie
strict-transport-security: max-age=900
content-length: 684
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (684), with no line terminators
Size:   684
Md5:    db6d69701ff651b373e85f41ab219120
Sha1:   8c0ca2ff37d846104e0ce35a754a2a8225467694
Sha256: 1591ec1046dc8ff4c40fde7c001c110c2af0f430062846ad2d6a2baacb77a2b3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5D0D16CD6ABF37218811F7AC6166B47A3BFDB18B2EBB3FF7445225003A72A23B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15293
Expires: Wed, 28 Sep 2022 14:25:11 GMT
Date: Wed, 28 Sep 2022 10:10:18 GMT
Connection: keep-alive

                                        
                                            GET /onsite/js/vendors~ClientStore.b6bb5f35dfd04ba9f47d.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: aAT9YNPHXMkd4zPzmzQR3BQ489vnSlJiJVhluMNuidWpVdEcwZm+6rUBXd7aKwL93iVgI97xPEs=
x-amz-request-id: K6EQ8EXPNZW31WZ7
last-modified: Fri, 09 Sep 2022 18:52:53 GMT
etag: "f264fe5ef7ace72b1eda057aeb9598fb"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: yTLdvAoGf.XWyb34L.BTuzlisQMxuFKk
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21932-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1308
vary: Accept-Encoding
content-length: 10707
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30947)
Size:   10707
Md5:    5381db77099778cd6ad36abaf776f10a
Sha1:   d1353b83d76d3f8e5f78b39668aa11d152cc9af5
Sha256: 5461ad39f712558b7f8098f68cc7efab57bfe0636f2bfe6876a65280f485a394
                                        
                                            GET /onsite/js/ClientStore.8019e179203640b35dca.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: lVpMc9s+8Y8P1QNL78CRgNLQHxIFTmnKuN0JozZefTz3APfuHBwpBccPkT2GeZpTb5nBIk4/XYk=
x-amz-request-id: 3Z7508950WCD1X4W
last-modified: Mon, 19 Sep 2022 19:09:59 GMT
etag: "d2d66e87f2c5ac2f26b185de0faac076"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: H0euP1ayJ5xGjv3oQp.MXYNGpesbavnV
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21958-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1329
vary: Accept-Encoding
content-length: 24192
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   24192
Md5:    cefe1ef4a199967a85dbf8aa7875f419
Sha1:   7722c4d6ca6e91b0f8ad06905998f6279d347dba
Sha256: 18065e3aa2ff79b3d2611e5abd4775dc670d8871c00847e0a534b74b8b138200
                                        
                                            GET /scripts/jaedqlm0z HTTP/1.1 
Host: footway.postaffiliatepro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.201.28.212
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 10:10:18 GMT
content-length: 6035
etag: "6a36-5e83c72d81980"
expires: Wed, 28 Sep 2022 10:12:05 GMT
cache-control: max-age=120
last-modified: Fri, 09 Sep 2022 11:00:06 GMT
x-srv: 3
x-content-type-options: nosniff
content-encoding: gzip
x-varnish: 991035239 993958142
age: 13
vary: Accept-Encoding
via: 1.1 varnish (2.lb-app.pap.ws-eu)
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1107)
Size:   6035
Md5:    e4bd19c3a3a3c2bcbc7f95bd18fe73eb
Sha1:   f22b9c87960b76dd52f944ac39fea96be231837f
Sha256: 14cfb9ea09b3a1ee6fdedcb41d42fcded017b51cd63d0f7658bd3e18e249a917
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /scripts/raedqlm0z?accountId=default1&url=S_www.caliroots.com%2Fit%2Fsearch%2Fabbigliamento&referrer=&isInIframe=false&getParams=%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&anchor= HTTP/1.1 
Host: footway.postaffiliatepro.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         91.201.28.212
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
date: Wed, 28 Sep 2022 10:10:18 GMT
content-length: 66
set-cookie: PAPVisitorId=oHDXal4QdzbqDoa0EyzGx9gL9TPhPd0Q;Max-Age=31556926;Path=/;Domain=.postaffiliatepro.com;Secure;SameSite=None;
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   66
Md5:    4f507d7f1ed05690cfe39e057e9585e2
Sha1:   1cc2a0a156e8d085a80b3dcb8696a683d5cc09f1
Sha256: 9aec1bc32aba03d1de4fea84ab594b340bbda9b633a76f13126d3af8b0778088
                                        
                                            GET /css2?family=Anton:ital,wght@0,400&family=IBM+Plex+Sans:ital,wght@0,400&family=Roboto:ital,wght@0,400;0,500&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 10:10:18 GMT
date: Wed, 28 Sep 2022 10:10:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1236
Md5:    4c880834f21762b56afceadc55f37f4d
Sha1:   81d98ec9e8613ebb17098d5c2d5c65eb6ff772b3
Sha256: 134cd807539e4a23a4120db88ad19cb0a11b6b554929d8ffbf0a2c7648520be0
                                        
                                            GET /onsite/js/532.dd9a1df84d96cf83ca19.css HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: text/css
                                        
x-amz-id-2: jtucqzmrYtlgWrpq9clIFvB2PaRjWdWN5dy5Nscxi2Ya+HgwhgANvQwoIbBV5nmO8yGFIjL/8Wk=
x-amz-request-id: WFP87PVA506CZAPP
last-modified: Wed, 17 Aug 2022 17:44:03 GMT
etag: "a178d611a5a0600884426f0e16e9f9e4"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: RkiQqM98M60WhQqw5YfZS.AnEeHh.cVG
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21982-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1319
vary: Accept-Encoding
content-length: 1654
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6145)
Size:   1654
Md5:    0dc1c7a389b78ca81cb988e822f60b27
Sha1:   46b51d1f25d7fd5801faf6fade531a522ebcf959
Sha256: 173dfa0bd0f19b6527e56113ebe3e9b56602cdde00eb79c8b589a64e128be82a
                                        
                                            GET /onsite/js/styles.06769e22f72371c9b731.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Xv1AaeSg/BPqg8lNJMiumLyy3sibys6Y4qwgX2AWpXGoW9hB2FyZzPRSroG+6PgF+J5l6wR+JDg=
x-amz-request-id: DS80GCBD5ETRK30K
last-modified: Wed, 17 Aug 2022 18:55:58 GMT
etag: "1e42456f05009fb98935fe5367b13871"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: uIrezUe.BVtxwxXd25BkIOXcJMJmp_o7
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21975-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1318
vary: Accept-Encoding
content-length: 117
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   117
Md5:    165a43fbc3f6ac64ee453c40594d4b6e
Sha1:   88770190662a5df69ee6b5f7f4a7f783d27d357f
Sha256: 408d62a598fc868660dadf1c79b30e3101030c3288d44bae48671873449c839e
                                        
                                            GET /onsite/js/vendors~Render.d67bcbf78caa39f7838e.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: BZZkWwM1Y8+ss3UPIDfbFxfsiEJucVvgTUXgxIa5tpSyZ+Laj3d9CzGrw7N6OZ1AVLgFk1A655I=
x-amz-request-id: DS84E9BSHWAC4HBK
last-modified: Wed, 17 Aug 2022 18:55:58 GMT
etag: "6a206c674547fef2d1036a3d87692532"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: d6QTiSCS2YciwASQ7YGvFnxhSzhivVeT
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31024
x-served-by: cache-lga21981-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1305
vary: Accept-Encoding
content-length: 13275
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (40196)
Size:   13275
Md5:    520f7b234642ce7dade1029ca5c3cdc7
Sha1:   23d3ce4694e261e3ffe7ba60093070770e56bc28
Sha256: 41eb65de2458c7fdceb667ca9d2458e0a9101d174fe7505847e7d33805f3ed5b
                                        
                                            GET /onsite/js/Render.2a035822fa66f501e3eb.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Jg0K5XbN7FOCEuTle7GYiKpDhi7uqbdeyEY05W7uBQsHpPdXtR2OEPF9Kag/uEM7DMYiZ+4hhRg=
x-amz-request-id: C3WVPXMWEVVP105T
last-modified: Tue, 20 Sep 2022 18:42:20 GMT
etag: "f18f6a10e9d615b24fa231b293f0211a"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: P.KIGrgtgwCIk3n.G4FfbX5bPnX3E2Zf
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:18 GMT
age: 31023
x-served-by: cache-lga21944-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1396
vary: Accept-Encoding
content-length: 26374
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18300)
Size:   26374
Md5:    155e6ad6de27e0351aeae16329503ee6
Sha1:   890209ff739a02fdc4388e2e4b1ba8431c93731b
Sha256: 81e8443a0576773cc71146dc870c8395663e779ccf90989d6b652f2c6b3e476e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4751
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:18 GMT
Last-Modified: Wed, 28 Sep 2022 08:51:07 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 08:41:09 GMT
expires: Wed, 28 Sep 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 5349
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v2/projects/744654683193/locations/global/catalogs/default_catalog/userEvents:collect?key=AIzaSyDTrRzK3Bbp9WVNGEKf8O4tIuO1vFqLAww&uri=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&user_event=%7B%22eventType%22%3A%22search%22%2C%22visitorId%22%3A%22TAY0hcd30RiR%22%2C%22searchQuery%22%3A%22%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE%26q%3Dabbigliamento%22%2C%22productDetails%22%3A%5B%7B%22product%22%3A%7B%22id%22%3A%2260341-01%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260382-40%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260425-14%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260630-77%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260649-12%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260649-19%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260481-22%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260785-13%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260481-37%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-69%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260506-16%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260717-40%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260417-84%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-50%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260628-38%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-74%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260781-56%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260488-95%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260781-75%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260776-07%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260374-35%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-15%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260778-52%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-57%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260658-58%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260712-35%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260716-81%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2203990-00%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260715-70%22%7D%7D%2C%7B%22product%22%3A%7B%22id%22%3A%2260741-24%22%7D%7D%5D%2C%22attributes%22%3A%7B%22gtmSchema%22%3A%7B%22text%22%3A%5B%22CLOUD_RETAIL%22%5D%7D%7D%7D&ets=1664359815930 HTTP/1.1 
Host: retail.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: image/gif
                                        
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Origin, X-Origin, Referer
date: Wed, 28 Sep 2022 10:10:18 GMT
server: ESF
content-length: 7
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server-timing: gfet4t7; dur=73
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a,\012- data
Size:   7
Md5:    1f2d8b41aba487921856cacd6c0d52e8
Sha1:   6b0bd0238861923bd2e9ee98ff1f8412521d7c9c
Sha256: f82624464e9e95dfae29e0e54c360aff84dda3c419fc8c3bd10ef668bbe7df9e
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 28 Sep 2022 10:10:18 GMT
expires: Wed, 28 Sep 2022 10:10:18 GMT
cache-control: private, max-age=3600
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15693
Md5:    890f716858b5f72587e47c5eca121cb5
Sha1:   91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
Sha256: 7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 7rynFG+eDIklKX1njYzjVPdhCua8+zHLvgZYSHnBdYol86DaJtAuhcLEhKuQgWqLHHuNKyVGYjRHYXAQlch9Fw==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 10:10:18 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4751
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:18 GMT
Last-Modified: Wed, 28 Sep 2022 08:51:07 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /_next/static/chunks/pages/show/%5BfilterKey%5D-a1015b7356857c31.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Fri, 22 Jul 2022 03:06:49 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Thu, 14 Jul 2022 13:26:14 GMT
etag: W/"2a19-181fce374f0"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rXDZcEuPuPRGIah6yF56X03yF3ynFYk0WMRh3wk4FI7efD0FEpryfg==
age: 5900606
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6143
Md5:    7434cb6df4047ae28ad64bb81a233c6b
Sha1:   b8da35b3276d2bf1f473d5d22e5ff4f0f5361231
Sha256: b4dd3182a7dbe4daa546adaa629a63f731a5970fa38b9ff2c3bc2e6271061e73
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /pagead/regclk?auid=1896993827.1664359816&url=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento&tft=1664359815837&tfd=5270&gclid=EAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&gclsrc=aw HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         172.217.21.162
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 10:10:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_next/static/chunks/pages/article/%5Bslug%5D-8aca8b39f09a6e1f.js HTTP/1.1 
Host: web-assets.footway.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.87
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Tue, 16 Aug 2022 06:55:44 GMT
server: nginx/1.20.1
x-powered-by: Express
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 16 Aug 2022 06:51:17 GMT
etag: W/"2259-182a56bba88"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dAoe8BvbJzgd3h4f6U5ysuY_W6mZscIYZBDmJzPV14ipWXkTG5okKw==
age: 3726871
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8793), with no line terminators
Size:   9960
Md5:    4c03e305855f6c309dc6b96a3e37c00e
Sha1:   d3b1be3df6e44eec71e833a4c237e1ec25c500dc
Sha256: aa32e9aeb67ba1a47c6f9bee5d2d73a86c762b1f5c923387b1b105f769ae8151
                                        
                                            GET /onsite/js/Dropdown.c6604b0b8b4394acea8d.js HTTP/1.1 
Host: static-tracking.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: vA5ZXvx0m8sWj8AplMKnAWegr8ZT1YzSEnOnZa2SKpWDkOhZjZ+VII31GS6tzVtShecFke1+HDs=
x-amz-request-id: 58PNFG7Z9K7E3XMF
last-modified: Thu, 15 Sep 2022 21:33:02 GMT
etag: "8f74b2f29f55749368045b6aad26eb7a"
cache-control: max-age=2592000,stale-while-revalidate=10800
x-amz-meta-surrogate-control: max-age=31536000
x-amz-meta-surrogate-key: fender-asset
x-amz-version-id: WTJogXcuL2bitqaEeMDL_ljHjoLg0bob
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
accept-ranges: bytes
date: Wed, 28 Sep 2022 10:10:19 GMT
age: 31021
x-served-by: cache-lga21932-LGA, cache-bma1662-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 37
vary: Accept-Encoding
content-length: 2297
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3031)
Size:   2297
Md5:    2489da6ac776102f4b9707ae3ca7dfff
Sha1:   f0742342e702ccb0d926153cc8723c81a335905e
Sha256: 215c9cdd10c70654f2666a485ce0141c131fa6f3265dab125713d8e99de3f2e7
                                        
                                            POST /g/collect?v=2&tid=G-86XNSJYE58&gtm=2oe9q0&_p=1255866932&cid=272365130.1664359816&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664359816&sct=1&seg=0&dl=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&dt=abbigliamento%20%7C%20Streetwear%20e%20scarpe%20da%20ginnastica%20premium%20%7C%20Caliroots&en=page_view&_fv=1&_nsi=1&_ss=1&ep.store_country=IT&ep.store_code=CAL&ep.footway_user_id=TAY0hcd30RiR HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.caliroots.com
date: Wed, 28 Sep 2022 10:10:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4831
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:19 GMT
Last-Modified: Wed, 28 Sep 2022 08:49:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST /v1/metric HTTP/1.1 
Host: telemetrics.klaviyo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 684
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.19
HTTP/2 204 No Content
                                        
date: Wed, 28 Sep 2022 10:10:19 GMT
x-amzn-requestid: ba7fc1fb-93e4-45c0-851b-3ec61f9deb52
access-control-allow-origin: *
x-amz-apigw-id: ZKmNyGaPIAMFThg=
x-amzn-trace-id: Root=1-63341d8b-2f28bb6c3b783bfc39976d6e;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A3j0m6FDhwG4UKPzvcgl3S5UjKuFiuLX3cLFESro8iaMls9XgTwfJA==
X-Firefox-Spdy: h2

                                        
                                            GET /pagead/viewthroughconversion/753773818/?random=1664359816705&cv=9&fst=1664359816705&num=1&label=ZnmZCLiJiLIBEPrZtucC&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&ig=0&data=ecomm_pagetype%3DSearch%20Results%3Becomm_prodid%3D60341-01%2C60382-40%2C60425-14&frm=0&url=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&tiba=abbigliamento%20%7C%20Streetwear%20e%20scarpe%20da%20ginnastica%20premium%20%7C%20Caliroots&auid=1896993827.1664359816&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 10:10:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1230
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 10:25:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2785), with no line terminators
Size:   1230
Md5:    b95ecfdd25bc033ca44f560d65d70a26
Sha1:   0e9f743903367dc3aea4bc18e0184cea717a6567
Sha256: eb5bd3edf5c223d7db3eb4a8d43f1524e6c711159fdc82efe5099589603f0a82
                                        
                                            GET /syncframe?topUrl=www.caliroots.com&origin=onetag HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.157
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:18 GMT
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=de7e1eda-d7c6-41ea-a997-d494b29be39f; expires=Mon, 23 Oct 2023 10:10:18 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 930983
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Size:   5079
Md5:    aa0e4c7a81090fe64df48162d6dac1d5
Sha1:   ae72765a2313ad2ef4bb7e3f043bdf99ec1d1030
Sha256: 095ef44352d5ba9b714f3aeb6f7ee80b9f49b4c57bf3eac6a07d2206cb75f92b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-22195409-5&cid=272365130.1664359816&jid=561105569&gjid=1440121357&_gid=1336532264.1664359817&_u=YADAAEAKAAAAgC~&z=80739280 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.caliroots.com
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.165.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.caliroots.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 28 Sep 2022 10:10:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3572
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:19 GMT
Last-Modified: Wed, 28 Sep 2022 09:10:47 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 312

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3572
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:19 GMT
Last-Modified: Wed, 28 Sep 2022 09:10:47 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /pagead/1p-user-list/753773818/?random=1664359816705&cv=9&fst=1664359200000&num=1&label=ZnmZCLiJiLIBEPrZtucC&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&data=ecomm_pagetype%3DSearch%20Results%3Becomm_prodid%3D60341-01%2C60382-40%2C60425-14&frm=0&url=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&tiba=abbigliamento%20%7C%20Streetwear%20e%20scarpe%20da%20ginnastica%20premium%20%7C%20Caliroots&async=1&fmt=3&is_vtc=1&random=1204488792&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 10:10:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-22195409-5&cid=272365130.1664359816&jid=561105569&_u=YADAAEAKAAAAgC~&z=795075340 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 10:10:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 10:10:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tr/?id=1234169126998888&ev=PageView&dl=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&rl=&if=false&ts=1664359817114&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664359817112.887137786&it=1664359816722&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 10:10:19 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=1234169126998888&ev=Search&dl=https%3A%2F%2Fwww.caliroots.com%2Fit%2Fsearch%2Fabbigliamento%3Fgclid%3DEAIaIQobChMIjqLYrer--QIVlrt3Ch3HWQNIEAAYASAAEgJq5fD_BwE&rl=&if=false&ts=1664359817117&cd[content_category]=list%20impression&cd[content_ids]=%5B%2260341-01%22%2C%2260382-40%22%2C%2260425-14%22%5D&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=30&fbp=fb.1.1664359817112.887137786&it=1664359816722&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.caliroots.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 10:10:19 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /dna HTTP/1.1 
Host: dnacdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=ExPV1F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVHdERjcTFXVWFMVTFsenpjTHA2bG1seGVRMTIzeUZmeHh0RzB4VzJQenA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         178.250.2.146
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:19 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=w1Drvl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVHdERjcTFXVWFMVTFsenpjTHA2bG1UMWE2bXZXV0EySXlOMTJNZ3lma1Q; expires=Mon, 23 Oct 2023 10:10:19 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 302497
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

                                        
                                            GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         178.250.0.157
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 10:10:19 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 512853
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:20 GMT
Last-Modified: Wed, 28 Sep 2022 09:20:57 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cwt3tFRWp1eRP5t0u9s7cvXatBPyoDfYEJoAIN4FXRt9Afi79j-2JA==
Age: 2963

                                        
                                            GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-vtKEaBHErucDNospy-lYpTK9zSOdKCb-WLKkug&google_cm&google_hm=ay12dEtFYUJIRXJ1Y0ROb3NweS1sWXBUSzl6U09kS0NiLVdMS2t1Zw HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.130
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-vtKEaBHErucDNospy-lYpTK9zSOdKCb-WLKkug&google_cm=&google_hm=ay12dEtFYUJIRXJ1Y0ROb3NweS1sWXBUSzl6U09kS0NiLVdMS2t1Zw&google_tc=
date: Wed, 28 Sep 2022 10:10:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 10:25:20 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   440
Md5:    b567d8c8fccf5846e45463c08db4f7d4
Sha1:   e8de4b954eb151f2789d60acdf349d4c34cbb75d
Sha256: 4ce05ca41e4abbdf6a8cff03676c5a8531f25f5b83fe31f05ce6d4abbc5e802a
                                        
                                            GET /rum?cm_dsp_id=20&external_user_id=k-Teco1BHErucDNospy-lYpTK9zSMJpcDlHs6Gvw HTTP/1.1 
Host: r.casalemedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.18.126
HTTP/2 302 Found
                                        
date: Wed, 28 Sep 2022 10:10:20 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-Teco1BHErucDNospy-lYpTK9zSMJpcDlHs6Gvw&C=1
cf-ray: 751bb04b6c67b4fa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YzQdjKEArT8lV1zjV9rLlgAA; Path=/; Domain=casalemedia.com; Expires=Thu, 28 Sep 2023 10:10:20 GMT; Max-Age=31536000; Secure; SameSite=None CMPS=4362; Path=/; Domain=casalemedia.com; Expires=Tue, 27 Dec 2022 10:10:20 GMT; Max-Age=7776000; Secure; SameSite=None CMPRO=4362; Path=/; Domain=casalemedia.com; Expires=Tue, 27 Dec 2022 10:10:20 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3oT84%2F5TBCpSuryg9yLDuPdPcMAi6KZKmTfYdbLFi%2FX9yrLXPLTiTXPFgBQIGiREyqXdHDvn%2BLSnFvagZEC9L3LWPhPruhjPituqu7%2F5qAUYznDvGyGs0U4QLjmKgz6icDhT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /cksync.php?cs=3&type=crt&ovsid=k-RXrwAxHErucDNospy-lYpTK9zSNzH9EMNMobnA HTTP/1.1 
Host: contextual.media.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.22
HTTP/2 200 OK
content-type: image/gif
                                        
server: Apache
content-length: 45
set-cookie: visitor-id=3073614203580276000V10; Expires=Thu, 28 Sep 2023 10:10:20 GMT; domain=.media.net; Path=/; data-c-ts=1664359820;Expires=Fri, 28 Oct 2022 10:10:20 GMT;path=/;domain=.media.net; data-c=k-RXrwAxHErucDNospy-lYpTK9zSNzH9EMNMobnA~~3;Expires=Fri, 28 Oct 2022 10:10:20 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 28 Sep 2022 10:10:20 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:10:20 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 87a, 1 x 1\012- data
Size:   45
Md5:    99cceceaed4d575484b69ddaf9ed66a7
Sha1:   1e3a3b15296b585833a22d987a387aa58aa1642d
Sha256: 832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5246
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:20 GMT
Last-Modified: Wed, 28 Sep 2022 08:42:54 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5995
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:20 GMT
Last-Modified: Wed, 28 Sep 2022 08:30:25 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.180
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 28 Sep 2022 10:10:20 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 92ad030e-243e-4cb1-a683-91df29e6466e
Set-Cookie: uuid2=6433193607512282270; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 27-Dec-2022 10:10:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5628
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:20 GMT
Last-Modified: Wed, 28 Sep 2022 08:36:32 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /tap.php?v=6434&nid=2149&put=k-w_K2OBHErucDNospy-lYpTK9zSOzkppVnqPP4A&expires=30 HTTP/1.1 
Host: pixel.rubiconproject.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         213.19.162.90
HTTP/1.1 204 No Content
Content-Type: image/gif
                                        
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: deb9f124eecce7a554c70ca983265c95

                                        
                                            GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-vtKEaBHErucDNospy-lYpTK9zSOdKCb-WLKkug&google_cm=&google_hm=ay12dEtFYUJIRXJ1Y0ROb3NweS1sWXBUSzl6U09kS0NiLVdMS2t1Zw&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.130
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-vtKEaBHErucDNospy-lYpTK9zSOdKCb-WLKkug&google_error=3
date: Wed, 28 Sep 2022 10:10:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   332
Md5:    624fae4310808be4f813a6afc05266ae
Sha1:   a36cbae57d4d7f88fafd8e3ff5b969482589b8e5
Sha256: e7d269c4cfe69fc3e94ed74f0e4b195fc1702a423753d214306a7e9fa4b49115
                                        
                                            GET /rum?cm_dsp_id=20&external_user_id=k-Teco1BHErucDNospy-lYpTK9zSMJpcDlHs6Gvw&C=1 HTTP/1.1 
Host: r.casalemedia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.18.126
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 28 Sep 2022 10:10:20 GMT
content-length: 43
cf-ray: 751bb04c2d63b4fa-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5m2pfQ%2BSzy%2B6onOcNVPvTA1jcGiGRPQMyMsjfE%2BTUfhetRSaC7AAQtyWXe3mSo11voAj7UcjItcjQtsuh3J3UFJcMvaNcfc8nbdNToItH9%2FFuZ9vgRNVUlNxFW6mJNifjKRz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:10:20 GMT
Last-Modified: Wed, 28 Sep 2022 09:31:09 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2YBp4lB3ossu4M4lb_xp66ldCHJGXGIN6IoLjfWgWcanSPUnq0vaHA==
Age: 2351

                                        
                                            GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.210.180
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 28 Sep 2022 10:10:20 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 38f62091-556b-4db2-accb-e78f3a37da23
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /redir/?partnerid=79&partneruserid=k-CGzXShHErucDNospy-lYpTK9zSMwGM67G5q9yA HTTP/1.1 
Host: rtb-csync.smartadserver.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.86.138.145
HTTP/1.1 404 Not Found
content-type: text/plain; charset=utf-8
                                        
date: Wed, 28 Sep 2022 10:10:20 GMT
content-length: 21


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   21
Md5:    efa6ba503d1db3c0aeb36d2dfe12081a
Sha1:   bcb085dea063066be3fed25872f48e310261dc8f
Sha256: 673c79de9e33392bc95881a3d58488cf44e0509352a299e09bf119e2b09d170a
                                        
                                            GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g HTTP/1.1 
Host: simage2.pubmatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.64.190.80
HTTP/2 200 OK
content-type: image/gif; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 10:10:20 GMT
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g&KRTB&23144-uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g&KRTB&23286-uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g&KRTB&23287-uid:k--zwCnRHErucDNospy-lYpTK9zSPbghpjf-Me0g; domain=pubmatic.com; secure; expires=Fri, 28-Oct-2022 10:10:20 GMT; path=/ PugT=1664359820; domain=pubmatic.com; secure; expires=Fri, 28-Oct-2022 10:10:20 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /um?eid=80&uid=k-vFpyYBHErucDNospy-lYpTK9zSNgoxfSgAIQBw HTTP/1.1 
Host: criteo-sync.teads.tv
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.195.255.234
HTTP/2 200 OK
content-type: image/gif
                                        
server: akka-http/10.2.9
content-length: 23
expires: Wed, 28 Sep 2022 10:10:20 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:10:20 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   23
Md5:    da5b449fff36752a93779fa4067cd2eb
Sha1:   71a96eea77f21ab5f1819b96c4cedd5cd34476ca
Sha256: 328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache