www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
172.67.176.41301 Moved Permanently 0 B URL HTTP/1.1 www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
IP 172.67.176.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /this-is-why-celine-tie-bag-is-a-must-have-winter-item/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 16:32:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 17:32:58 GMT
Location: https://www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gM7EXhGJJMdJtR6vxzeIEHAdq2BjRyscVAlC03zclVcJcWYa93Glh%2Farzg8Wwv0lZoZhKwhPbGTQMKGxCJUQ8%2FomdD64uCu6LXsgqLZTYiV%2FG0GabSAnYXokDwmjRG503GnLAKPfiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7934537078b5b4f7-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Thu, 02 Feb 2023 19:45:22 GMT
Date: Thu, 02 Feb 2023 16:32:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10002
Expires: Thu, 02 Feb 2023 19:19:41 GMT
Date: Thu, 02 Feb 2023 16:32:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 15:43:31 GMT
content-type: application/json
age: 2968
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3595
Expires: Thu, 02 Feb 2023 17:32:54 GMT
Date: Thu, 02 Feb 2023 16:32:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LL3BHR2O0v6BCshsP3W+FAI63604KO1AHCBBtxp7X253ql67eTUEsHt3dRMyftuvw6mAucC3seg=
x-amz-request-id: 5Z5ZWD49HF2WBFGH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 15:52:02 GMT
age: 2457
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:32:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:32:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:07:19 GMT
age: 1540
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14336
Expires: Thu, 02 Feb 2023 20:31:55 GMT
Date: Thu, 02 Feb 2023 16:32:59 GMT
Connection: keep-alive
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R0Fw92trzoFgCf3lq0Mxig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dVg0J0L+qscCVpTRDJ8sEauqj2s=
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a582a97718072d1c34f98edc9de70ed4
7de5cd40cb9675342bdb13a33d1074d452713f6a
de0f79bf13c30b9d2b97e36335c88fd29d1943f899f33aaa9125cb7cd538b4a8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DE0F79BF13C30B9D2B97E36335C88FD29D1943F899F33AAA9125CB7CD538B4A8"
Last-Modified: Tue, 31 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21598
Expires: Thu, 02 Feb 2023 22:32:59 GMT
Date: Thu, 02 Feb 2023 16:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14298
Expires: Thu, 02 Feb 2023 20:31:19 GMT
Date: Thu, 02 Feb 2023 16:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14298
Expires: Thu, 02 Feb 2023 20:31:19 GMT
Date: Thu, 02 Feb 2023 16:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14298
Expires: Thu, 02 Feb 2023 20:31:19 GMT
Date: Thu, 02 Feb 2023 16:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14298
Expires: Thu, 02 Feb 2023 20:31:19 GMT
Date: Thu, 02 Feb 2023 16:33:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 65483
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 33413
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: e8e96b85-5b24-48b4-bea3-6c1b93c55ca1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGf3oAMFj1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-558cb5ec6f31497d284518be;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AeFT9dVmzOw8800DKN7VouWS3HGHRYp64On9sF62J-aOK_OGtvAa7w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:52 GMT
age: 66009
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 66910
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 66805
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 66746
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
185.76.9.18200 OK 1.4 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=3
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 48d1d0142e5271960715507db05e21b7
ee746b4e5c4939212ef06d2ed30ea11f094d29d7
30a48072d7bcde115d579180fb9c4e24d29d4a8c51eff2235f48f6803eb74629
GET /s/requestform.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:01 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960381
server: CDN77-Turbo
x-77-nzt: AblMCQ2dPmWh
x-77-nzt-ray: c0a4cc28a6957616bde5db63da8e4431
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 13 kB IP 142.250.74.131:0
Hash 808d3b3d53c4e8958902f7f77a409465
1a975f16639c4737bc4123cf704a6f9d5c0c1ab0
623ffbd4141e3130548f150993779622cf9ccef04371bfcbda9ee1b40c9e46fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:40:57 GMT
expires: Sun, 28 Jan 2024 09:40:57 GMT
cache-control: public, max-age=31536000
age: 456726
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 13:13:54 GMT
expires: Fri, 02 Feb 2024 13:13:54 GMT
cache-control: public, max-age=31536000
age: 11949
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19752, version 1.0\012- data
Hash d62145d4db9cd1736127dbac7665f41b
2687b5ba8ddbafc800abd1208069edcefc0ca8f2
c8356c413b566272ba50c98d4ce0546e1fce6177ceb6cf8c2a7efe0a65e085a1
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l521wRZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 07:01:19 GMT
expires: Fri, 02 Feb 2024 07:01:19 GMT
cache-control: public, max-age=31536000
age: 34304
last-modified: Tue, 26 Apr 2022 15:46:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:55:15 GMT
expires: Tue, 30 Jan 2024 18:55:15 GMT
cache-control: public, max-age=31536000
age: 250668
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
142.250.74.163200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 06:56:26 GMT
expires: Sat, 27 Jan 2024 06:56:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
age: 552997
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 677 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash af15e22e0e6c0b8bbd5014871c753d92
808a8a3da4390ab5f7659a25bc8595166afb1635
63cceb786b03b4eb21b00d95c54a7d3cb138b9d57c384a68a5c214b6a95f3f51
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7929
Expires: Thu, 02 Feb 2023 18:45:12 GMT
Date: Thu, 02 Feb 2023 16:33:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7b84738ecc4c957dd526bb04245d67c
2f0158e29600270789f5893ece7c1effcd650dba
dac7086d533de13bb6a7ace203f33530359e60690a0510aeec24853dd4a90837
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAC7086D533DE13BB6A7ACE203F33530359E60690A0510AEEC24853DD4A90837"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7929
Expires: Thu, 02 Feb 2023 18:45:12 GMT
Date: Thu, 02 Feb 2023 16:33:03 GMT
Connection: keep-alive
c.tmyzer.com/c/?s=105238&f=3&fi=99
54.38.64.100200 OK 4.9 kB URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=3&fi=99
IP 54.38.64.100:0
Hash 6370ea4d7a02f23ee546a14abc7f253e
2647ea15d19f2fb0e096f64f854ac4eb35404140
d2030ec7397d7a0bda450f0d2a3af18a971b60fcb7259565dbbbde6bb20ef8b2
GET /c/?s=105238&f=3&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:A691_36264064:01BB_63DBE5BF_1D5866D:29F02
X-IPLB-Instance: 38431
c.tmyzer.com/c/?s=105238&f=2&fi=99
54.38.64.100200 OK 12 kB URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=2&fi=99
IP 54.38.64.100:0
Hash 1ef9d8a91e784ed03e592068d9543188
34d74b90e2dd800f80fafaaf2ba71e3bcbb12a7a
7b3f5fe95f2acfc53b92a5ab0f73374c5a89d60c4da26865516b4f31e895c06c
GET /c/?s=105238&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:DBB6_36264064:01BB_63DBE5BF_1D55893:FFE6
X-IPLB-Instance: 24857
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 98756cae405d9c3b5811994c89fda8f1
4abf184f58b600294859cccac617b4d612919b7a
a609d6353ac127502a7191b18b067ecff5f7897463c8093e1115d95ef6088415
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6309
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Last-Modified: Thu, 02 Feb 2023 14:47:54 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash dff38dffeadd71c065a1ae8e702ff586
531575a2687ab048a09d8518ecebe6eaf1bf925a
5ec4a452f9f49ba07aab0c7b1d20a5d0d8aef755a2ebf0d28474be5bb7f5bce8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: max-age=167836
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Etag: "63dbbdda-138"
Expires: Sat, 04 Feb 2023 15:10:19 GMT
Last-Modified: Thu, 02 Feb 2023 13:42:50 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
185.76.9.18200 OK 24 kB URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 956555aeca14e5469b1b2ed7ea64a979
465289518795028d5a16c64830913fe933d43ced
91f41be9430a8742d4604790d2c5da7a9b243f5b0342604be032aa9e344f35df
GET /s/requestform3.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960383
server: CDN77-Turbo
x-77-nzt: AblMCQ3zJuCh
x-77-nzt-ray: c0a4cc28a6957616bfe5db63f4abb815
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 14 Oct 2021 07:27:53 GMT
ETag: "6167dbf9-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:20FB_91EFC0A6:01BB_63DBE5BF_69B71A9F:237B7
X-IPLB-Instance: 30195
script.4dex.io/localstore.js
104.26.8.169200 OK 5.3 kB URL HTTP/1.1 script.4dex.io/localstore.js
IP 104.26.8.169:0
File type ASCII text, with CRLF line terminators
Hash 70b0d45fa94cf85646507aa1b2d28e59
31febf94224ca7c71ea083b3e384aa5e2859081f
d68d6b745e6515010fc10407d3b53913dce4efcebfd1595daace8b58817f51d4
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1811045
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ffNMYxDjPni7DjiHq1mmvnKgf6dfy6uoP9RsS3vkhJjlDrJn%2FQfD3QJvUqJ4AFdD8IH4bm0ZVI9mZwr508MrZwwtEcbMwY8siiWHD9%2F9bBameN5RUpfy3XUiuvBlli8I"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7934538f0d39b515-OSL
Content-Encoding: br
www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
104.21.31.91200 OK 48 kB URL HTTP/2 www.styleonwards.com/this-is-why-celine-tie-bag-is-a-must-have-winter-item/
IP 104.21.31.91:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 13ac9532f0d1d0d79f027b469170fdfa
71e36e1f74bf93106a956d1c8b8085be89a33952
80b13019fed7efe120f2a449723d747712e2d8e9424fbd98277b6f5c38f3a661
GET /this-is-why-celine-tie-bag-is-a-must-have-winter-item/ HTTP/1.1
Host: www.styleonwards.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:01 GMT
content-type: text/html; charset=UTF-8
cf-ray: 79345373abacb51b-OSL
cache-control: no-store, no-cache
link: <https://www.styleonwards.com/wp-json/>; rel="https://api.w.org/", <https://www.styleonwards.com/wp-json/wp/v2/posts/2045>; rel="alternate"; type="application/json", <https://www.styleonwards.com/?p=2045>; rel=shortlink
set-cookie: HAPPIDS1=s6|Y9vlw|Y9vlw; path=/
cf-cache-status: DYNAMIC
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itcpK5E8lraRyiu9Q4ia2ozeQIc08Em8jhhO4XkKBAZmpe76oPCZQMloVmj5eftmShrpLAGUJO1nNwRgd%2BlxRgglcPsCCJprAzKYnjtEr2VkAq9qzrY3hj2BMEwDayQ9bz4gva079g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 0357ce1eaac9d331781303579d73b50c
2f84b8aef61ded4d952b62558ecf0b4869fa3905
72222d88f13cf90b534ac445d8a0ab59c14dd5935f798a472ffea10b3eae48d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Last-Modified: Thu, 02 Feb 2023 16:09:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ
145.239.192.166200 OK 0 B URL HTTP/1.1 tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ
IP 145.239.192.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wckr.php?ref=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&id=MTIZ HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-IPLB-Request-ID: 5B5A2A9A:20FB_91EFC0A6:01BB_63DBE5BF_69B71AA7:237B7
X-IPLB-Instance: 30195
ocsp.digicert.com/
93.184.220.29200 OK 1.2 kB IP 93.184.220.29:0
Hash 6418152e3e26fd6ebe3f127a0bf90ae3
fee5fc8b63278e34d1d075dbdc4de962608fbdb9
9cd2c42c5173e48b1682618c35c167c2279422543c90db56a7ae3ad791afd7f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:03 GMT
Last-Modified: Thu, 02 Feb 2023 16:09:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
id5-sync.com/api/config/prebid
141.95.33.111200 291 B URL HTTP/1.1 id5-sync.com/api/config/prebid
IP 141.95.33.111:0
Hash f346a4c80d7d6b47bf056c34d89bd223
4700ce95ab45b37c93caa76d1f32dbccf1f885db
6c77c52f572f6b3884d62c8739bdeee35d067770c82032b22f0ace8086ee947a
POST /api/config/prebid HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 95
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:33:03 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
r3.o.lencr.org/
23.36.77.32200 OK 39 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b962f27ad9d35b443b4b3bb1bbfd326b
2111c78ebe0541e365ab6b9be3beb25ccde2700e
69ecf5205d4c4b5539cd1cc1db58f4e721831b585a4205210ad69963502de98b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05877A5CFB2C69854FD69D1B8C7A03513662ACEA95BB61CEB0CC5C5213660EE5"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2672
Expires: Thu, 02 Feb 2023 17:17:35 GMT
Date: Thu, 02 Feb 2023 16:33:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 795fd8179eb3a8f80fe7a7dad686cffa
2d48d68e87cdbd93d21c104cf2cd1b8e6c1deede
e6f376698b22de940593e0c4b11788f2fbae4b359716170c3408af96c668d576
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6F376698B22DE940593E0C4B11788F2FBAE4B359716170C3408AF96C668D576"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10098
Expires: Thu, 02 Feb 2023 19:21:21 GMT
Date: Thu, 02 Feb 2023 16:33:03 GMT
Connection: keep-alive
kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
212.129.3.113200 OK 808 B URL HTTP/1.1 kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
IP 212.129.3.113:0
File type JSON data\012- , ASCII text, with very long lines (2099), with no line terminators
Hash 643080d694202e02dfb4d052004f4fb9
22d373e2ffb02c4dd6f6e9dc32c76d5d47c713ae
0e51822c36a9f5e9790e23785fc0542252f2d1f08241ef3c5537e610e277b643
GET /api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F HTTP/1.1
Host: kvt.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Thu, 02 Feb 2023 16:33:03 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: https://www.styleonwards.com
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
script.4dex.io/adagio.js
104.26.8.169200 OK 23 kB IP 104.26.8.169:0
File type ASCII text, with very long lines (65354)
Hash 0ffb2c9b6dd933ae18ab7dc729d58e69
bb88b2f3fc47452873348d1cdcb7ea3d4a2bbc10
0cd0e55fa43693dfe4b04a225bf7774eb3f66e232828f8d661547728475a12f2
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Last-Modified: Wed, 23 Nov 2022 15:43:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3KPibFmFfxQONyST0ziTxS1i8PIjbw7RcSr%2BvIVpnOkqzpDQrGLk6tDH%2BAI0p%2F%2FZASyadT4J2d%2B1G1YGzfM2qRAl0BO4G2WAqKfszpCN0j0RpPA7TEGPoeg97J7u%2BGt0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7934538f48c90b51-OSL
Content-Encoding: br
lb.eu-1-id5-sync.com/lb/v1
162.19.138.120200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.120:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 24225860f27ac95ee8c743ff52e5851b
fc0807cb5ecac661723f190d1293b47f744ef3ad
5bc611b6903568b3f0efc764c27edfe2518fceb1aa062e724ccecd4c47cc839e
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:33:03 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3de4fcca2691e9899de00c51ec720ad5
c3df63b0511cbdfb588e417692be11efab596f9c
24452e5e022f648140174cec0933dd72d3fbf7f8d566439928b73bbfa5282288
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6195
Cache-Control: max-age=168397
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63dbbc5a-139"
Expires: Sat, 04 Feb 2023 15:19:41 GMT
Last-Modified: Thu, 02 Feb 2023 13:36:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
onetag-sys.com/prebid-request
51.89.9.254200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.89.9.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6006
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0
142.250.74.106200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0
IP 142.250.74.106:0
Hash ceaad604b5d5d01e7574992979780a07
8afbdbf0a97ad6f6c35f8e93a800f0a3fb560a99
7ed9d07fcdbb0a3f566700bb53419bca0c56b64f84844bf639aee8c6ea0af94e
GET /css?family=Oswald%3A300%2C400%2C700%7CMerriweather%3A300%2C400%2C700%2C900%7CQuicksand%3A400%7CLato%3A300%2C400%2C700%7CPassion+One%3A400%2C700%7CWork+Sans%3A200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMontserrat%3A400%2C700%7COpen+Sans+Condensed%3A300%2C700%7COpen+Sans%3A400%2C700%2C800%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CMerriweather%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CWork+Sans%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 16:33:01 GMT
date: Thu, 02 Feb 2023 16:33:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
23.36.76.122200 OK 6.4 kB URL HTTP/2 injections.mmvideocdn.com/prod/configs/01gprs6bbp1vch8p21.js
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (17438), with no line terminators
Hash ba58d3c567a625939011117ac1d44718
fb92b046a497e6036a7d45c7ea6cbb149fd83886
04d1e99076a6684ac101de35ce30d3dc5e95b2c85d9f0f0246f04b209a0db896
GET /prod/configs/01gprs6bbp1vch8p21.js HTTP/1.1
Host: injections.mmvideocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sat, 14 Jan 2023 18:43:03 GMT
etag: "5a1feebb2ed713c1c849c660fac997b8"
x-amz-version-id: avRIzNEMqHV6HpWDjC3BWpJmUL_o_isw
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: dfqHTnX8B9YNIqpAGR7WFhUoRmoiCkAPimFd1ok783Eu06UUuQslTw==
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:33:04 GMT
content-length: 6371
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 14:44:47 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4cb1b1057933a4993e2082bc88e14723
8c18677769c9c8d1681add842bf26fca4d499669
00a57163d569b159f13d400ae360adc3656d8029f231bc3e2df928fccb9b1a6d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00A57163D569B159F13D400AE360ADC3656D8029F231BC3E2DF928FCCB9B1A6D"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4477
Expires: Thu, 02 Feb 2023 17:47:41 GMT
Date: Thu, 02 Feb 2023 16:33:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 14:44:47 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 17eb87c7bf8d86c71a2e67088b651842
0e5ef444b66ffe06540130eb563937731568f623
b836fab15720d1f6e0d3882a99f120831a49a5614c1ba4c592bb8d6fb7f998d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4050
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 15:25:34 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 374
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453914bdb16a5-ARN
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 357
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453914be016a5-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
IP 142.250.74.131:0
Hash d903729f75ca27d0f7410e0d7ae3c560
a2ab51464cad2f78af7ee7cee47f686f4d5daceb
e9fac2565f8ad523f6717da1b1a7c88191977e7e9309ad0c7b5d60bbe8cc89a5
POST /s/gts1d4/QDoKtbZIMRM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
178.250.0.157200 OK 400 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (491), with no line terminators
Hash 07df10500302cb9df483d37ec5e49cb4
ab323cb40debb1e1a9547b406152547368622e21
8c1db8e505610a9ac335eccf4d8ae4ac3287b6db61e10f57b11d1ed7039ab7cf
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 1322191
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
37.252.171.22200 OK 287 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.22:0
File type JSON data\012- , ASCII text, with very long lines (695), with no line terminators
Hash ca9d4e3e516366387f74d6e42ed40773
b8e91eebc0074af9a5f54cb75b1c597e0c513546
4c7adc9f623153a92da7e18f2657a120a899ca983be1502a1114782c2c0856bc
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3719
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d3d85e34-a779-4456-acad-c3c8cd156fb2
Set-Cookie: icu=ChkIq7eJARAKGAEgASgBMMDL754GOAFAAUgBEMDL754GGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 16:33:04 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=4271667097210102078; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 16:33:04 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1001.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 375
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453918bfb16a5-ARN
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 475
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453919c0916a5-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
IP 142.250.74.131:0
Hash d903729f75ca27d0f7410e0d7ae3c560
a2ab51464cad2f78af7ee7cee47f686f4d5daceb
e9fac2565f8ad523f6717da1b1a7c88191977e7e9309ad0c7b5d60bbe8cc89a5
POST /s/gts1d4/QDoKtbZIMRM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 426
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79345391bc1116a5-ARN
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 374
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
cache-control: no-cache, private
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79345391bc1316a5-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
IP 142.250.74.131:0
Hash d903729f75ca27d0f7410e0d7ae3c560
a2ab51464cad2f78af7ee7cee47f686f4d5daceb
e9fac2565f8ad523f6717da1b1a7c88191977e7e9309ad0c7b5d60bbe8cc89a5
POST /s/gts1d4/QDoKtbZIMRM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop
185.76.9.18200 OK 540 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 021a3e2fea75f402e58098bbf89cbe7a
18adf47039b5eb1e3f4238e9191144cb2f615bf2
269168753f959d740827a9b2c8963a655cd4f1ef80c4b5a0b6f39ba80d1e7690
GET /bidder1/moneybid.js?siteid=105238&adid=1&formatid=26322&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ09ON+h
x-77-nzt-ray: c0a4cc28a6957616c0e5db63fc93d205
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
IP 142.250.74.131:0
Hash d903729f75ca27d0f7410e0d7ae3c560
a2ab51464cad2f78af7ee7cee47f686f4d5daceb
e9fac2565f8ad523f6717da1b1a7c88191977e7e9309ad0c7b5d60bbe8cc89a5
POST /s/gts1d4/QDoKtbZIMRM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b39e977b1a75b88dae4d9e4f1eabe018
433aa69f36044c2f4223e152455ac9adec8174ca
59055a92d1994f2e3c777fa748c4ee9a064f429318678a95661b9d73aef2fdb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 20:45:27 GMT
Expires: Wed, 08 Feb 2023 20:45:26 GMT
Etag: "433aa69f36044c2f4223e152455ac9adec8174ca"
Cache-Control: max-age=532941,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7934538e5830b521-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash cf3962aa91fff584f7bbab593001fc50
d1a0c30a75ada454b3fd59b783981768ed7e42ba
34b6d3a64f3b8c84678449d892bd115c818587f1631de858ff97b1eb31db7f1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4689
Cache-Control: max-age=145699
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63db6992-118"
Expires: Sat, 04 Feb 2023 09:01:23 GMT
Last-Modified: Thu, 02 Feb 2023 07:43:14 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 280
ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
185.76.9.18200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=105238&formatId=3
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 68d3dd0712ed9dac5d99dd248b419050
00e8a3176b51e1ef7bbc35a9a13cb39f970a9699
33a40869baea1360cfb8a016c1e8b5b94f25514c79e2eb1acd0e24d1dc1d6b90
GET /s/requestform3.js?siteId=105238&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960383
server: CDN77-Turbo
x-77-nzt: AblMCQ0o3JOh
x-77-nzt-ray: c0a4cc28a6957616bfe5db63c6bfcc15
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133720
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:41:44 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SN7yODZiOnK4ECxbjkzI_JGQVGYt1VB6me5npXwG06l07F-S7RkU_A==
Age: 2462
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ffcae64994dd363a95b7e9535d7a4065
eb74b3e459bb1eb9a6fa47b2ddf519aee073269c
1e8df18b37569a6d367cd344d4bf6eb013784e6be43c8a6ab0485a748f82b784
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E8DF18B37569A6D367CD344D4BF6EB013784E6BE43C8A6AB0485A748F82B784"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9257
Expires: Thu, 02 Feb 2023 19:07:21 GMT
Date: Thu, 02 Feb 2023 16:33:04 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133672
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:40:56 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bB2PZqAgwoZsV-lRyBw6NGfd2oBjQGOAVNh_UuThqNlb4N785cfdqw==
Age: 2414
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad70a6f450827dd5acc92719f20df8c5
d094c2828d19e11ffac158ffb1321787a64dc65d
74caf4fc02d200a1b3037cad1015f58aa53534797b3dd3d5ff44647a7514cad3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 14:43:45 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133694
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:41:18 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3HxtyLTznDnB1D06w1_On14ja-u0QX0ydpmamWv1qlWQRbuvQV5QJQ==
Age: 2436
id5-sync.com/g/v2/12.json
141.95.33.111200 216 B URL HTTP/1.1 id5-sync.com/g/v2/12.json
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 02720737afd8052978091e5a5a5d85b5
15e7f440b53a9924d820d7464048a3efc46944ea
deb6ca1503cab51f460fd58151a83b87bb0aaf3c74b0e7f1250a90180c5e82cf
POST /g/v2/12.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 349
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:33:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.4870401452561367&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18
185.172.90.251200 OK 129 B URL HTTP/2 pbjs.e-planning.net/pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.4870401452561367&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18
IP 185.172.90.251:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7f37db7616b59bfd7f5f8315be722d87
8165c4a333be7ee2f4ec616ff6e8406aa5cdb7c9
43ca120502dfef09e9eac8c1c79de321cf7c43e9f08fd44a8e285e71dcee119a
GET /pbjs/1/2a156/1/www.styleonwards.com/ROS?rnd=0.4870401452561367&e=26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&pbv=7.28.0&ncb=1&vs=FFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&e_criteoId=h4ea_19zM3ZHSVlMNkZLSGQ3VDhsVHJNUVAlMkJWV0NRMFBjdjhUcjhIU0txU2tMelRTVTNGJTJGdlR3N2IlMkJxayUyQlZEejFaSkxTamlVTWdpU2tqVGdGSFp2cUFRNmZBJTNEJTNE&e_pubcid=8f8c354a-f446-454e-9a59-23ef77777a18 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: application/json
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=0, no-cache
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
expires: Thu, 02 Feb 2023 16:33:04 GMT
content-length: 129
x-sid: AMS-928
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133720
Date: Thu, 02 Feb 2023 16:33:04 GMT
Etag: "63db437a-1d7"
Expires: Sat, 04 Feb 2023 05:41:44 GMT
Last-Modified: Thu, 02 Feb 2023 05:00:42 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8Hko7-zQjjtejYLlPx81h--hbtTMtkhYskJ43vsOGS9Z5Z2Vt2Ve4Q==
Age: 2462
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e339189bc4891a9cb9a0fc8ec190631b
1dd91331f11362eb68fcb826719588ee9836863b
dbde8dc20b088d4aa1bf3810d589f39c8e3a2563662a419a679ae37a39090f33
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:46 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tsQE873BM8bffdlvBPsGaYy7pciwd-OeaX8wqM0E-7rWgKDNATggVw==
Age: 2658
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1023
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 81945998cc863146cdaa812efd0766d8
16c338ad84a8ebe39b79ef85ba2a138f34c3455f
3c9c6fc83329799ff0fbfd3744e93849c32bba4414fef5ee40ea0073e8a1263a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4112
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 15:24:32 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=469729,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79345392ee45b521-OSL
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1005
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QDoKtbZIMRM
IP 142.250.74.131:0
Hash d903729f75ca27d0f7410e0d7ae3c560
a2ab51464cad2f78af7ee7cee47f686f4d5daceb
e9fac2565f8ad523f6717da1b1a7c88191977e7e9309ad0c7b5d60bbe8cc89a5
POST /s/gts1d4/QDoKtbZIMRM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1024
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.28.0&cb=50341027735&lsavail=1&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.28.0&cb=50341027735&lsavail=1&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.28.0&cb=50341027735&lsavail=1&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4612
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://www.styleonwards.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
185.255.84.151200 OK 1.1 kB URL HTTP/2 hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F
IP 185.255.84.151:0
ASN #200271 Iguane Solutions SAS
File type JSON data\012- , ASCII text, with very long lines (1072)
Hash 92b4f1d6e1cabd0d6c969e5e0905e5f3
7aa3b4c1c822ac5c5469b3a5facff9e410718d45
3fd2221eeb96cd08cfff67538378cca868a927ec64f11816ada320fa4029f09a
POST /hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&PageReferrer=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&CanonicalUrl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F HTTP/1.1
Host: hb-api.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1818
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept-Encoding, Content-Type
access-control-allow-methods: OPTIONS, POST
access-control-allow-origin: https://www.styleonwards.com
access-control-max-age: 3600
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=dddaf28e4a68998c839a6692b9a6fb40; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 16:33:04 GMT
content-length: 1073
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1074
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 05a3526b6f2eb8cec35f02075b255817
4563626ad9cc06ab3a3d3e0b0327c67eb3ac8a6f
33598c05fbc5da20f356fc48c7d6cd91d41306bbdf17ff9a1fce72bde0b62c67
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:33:04 GMT
Last-Modified: Thu, 02 Feb 2023 15:11:08 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hG3eQbMu6QcmYDgGgp1V2C93o1f1JnDx5Ic80ERhr4RdyqwV6eDsWQ==
Age: 4916
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1024
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ad.360yield.com/pb
3.72.206.120204 No Content 0 B IP 3.72.206.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2663
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:33:04 GMT
access-control-allow-origin: https://www.styleonwards.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
b1h.zemanta.com/api/bidder/prebid/bid/
64.74.236.223204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 64.74.236.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1020
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.66.148.144200 OK 10 kB URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.66.148.144:0
Hash feed533fcfc67e56cfc13af46aaf66b4
47767da98069de5db4fccc057618b08d92d18d5d
ea0b0d62aeabbae472b333c58c20e2bb29f9387e472cae948db3fb01ef461aaf
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1124
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: application/json; charset=utf-8
content-length: 9964
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
x-openrtb-version: 2.5
access-control-allow-origin: https://www.styleonwards.com
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/passback/moneytizer/300x250.png
185.76.9.18200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/passback/moneytizer/300x250.png
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit colormap, non-interlaced\012- data
Hash 2074ad598cbe9af526b502fc7fd7bc48
da9079311db777d1b7be769e74ff9e4445dcdcc7
f2deef450997edbab9c5766cd19c5a92fab6ad60764cff1e8661f12c87b4e186
GET /passback/moneytizer/300x250.png HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: image/png
content-length: 18013
last-modified: Tue, 10 Jan 2023 10:35:12 GMT
expires: Fri, 03 Feb 2023 05:02:56 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400576
server: CDN77-Turbo
x-77-nzt: AblMCQ0VWIn/wKEAAA
x-77-nzt-ray: c0a4cc28a6957616c0e5db63ac92002e
x-cache: HIT
x-age: 41408
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.themoneytizer.com/passback/moneytizer/300x600.png
185.76.9.18200 OK 15 kB URL HTTP/2 ads.themoneytizer.com/passback/moneytizer/300x600.png
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 600, 8-bit colormap, non-interlaced\012- data
Hash 625e670a07c0b51980b5cc613286b647
d119b28a93a801573f9ed3d9494e54edec83ef1f
49b3baee5c32ec1735778224f2bf0318d43bc50100ee3000c6f416eae0749e50
GET /passback/moneytizer/300x600.png HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: image/png
content-length: 15375
last-modified: Tue, 10 Jan 2023 10:34:54 GMT
expires: Fri, 03 Feb 2023 05:02:58 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400578
server: CDN77-Turbo
x-77-nzt: AblMCQ1XnqD/vqEAAA
x-77-nzt-ray: c0a4cc28a6957616c0e5db634d2e412e
x-cache: HIT
x-age: 41406
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.themoneytizer.com/media/tm.png
185.76.9.18200 OK 228 B URL HTTP/2 ads.themoneytizer.com/media/tm.png
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type PNG image data, 19 x 15, 8-bit colormap, non-interlaced\012- data
Hash 27a694e3fa0ab9153f0fa8d274f4bc5c
fde476fa9c8dd1b5c8b49883bbd9e71cb649052d
fb98a2a03c925aa211a860ca87a7f33a100fe74f37915c16b16ce7c0a1247223
GET /media/tm.png HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: image/png
content-length: 228
last-modified: Mon, 07 Nov 2022 09:00:04 GMT
expires: Fri, 03 Feb 2023 05:02:55 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400575
server: CDN77-Turbo
x-77-nzt: AblMCQ1p/sL/waEAAA
x-77-nzt-ray: c0a4cc28a6957616c0e5db63eaa15a2f
x-cache: HIT
x-age: 41409
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=105238&f=2&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=2&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=2&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:A691_36264064:01BB_63DBE5BF_1D58675:29F02
X-IPLB-Instance: 38431
c.tmyzer.com/c/?s=105238&f=3&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=105238&f=3&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=105238&f=3&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:33:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:DBB6_36264064:01BB_63DBE5BF_1D5589D:FFE6
X-IPLB-Instance: 24857
id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
141.95.33.111200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
IP 141.95.33.111:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Thu, 02-Feb-2023 16:38:04 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Thu, 02 Feb 2023 16:33:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ced.sascdn.com/tag/1097/smart.js
23.36.77.48200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Thu, 02 Feb 2023 18:33:04 GMT
Date: Thu, 02 Feb 2023 16:33:04 GMT
Connection: keep-alive
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
54.230.245.59200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 54.230.245.59:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 02 Feb 2023 02:21:29 GMT
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NtncnIQ47ZgpQ6rcivLdC8Uo6yTAYF0ouejaoTP64Hov4vTYoqK2mw==
Age: 51098
a.teads.tv/analytics/tag.js
23.38.201.50200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP 23.38.201.50:0
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Thu, 02 Feb 2023 16:33:04 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e4ef294e427dbd856853cbc0d4c663
062b9217afb6a661a4e71598d919d0baadc41143
ba5e7d77b810caf885ae1ebdc1d464e397e08445e1cbac0a8b6665d5624e291b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4183
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:05 GMT
Last-Modified: Thu, 02 Feb 2023 15:23:22 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258
216.58.211.2302 Found 447 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 46f7292d33ec27b9e6fe334680ac981d
b4cf1b0a40084f17175cb6517d78123dc5901a28
8cb57f3653dd9d81c116a39076583cbc55b3c3d72072cfc64a2c53e59501d607
GET /pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258&google_tc=
date: Thu, 02 Feb 2023 16:33:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 447
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 16:48:05 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 382838
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
23.195.255.234200 OK 0 B URL HTTP/1.1 at.teads.tv/fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3&
IP 23.195.255.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpc?analytics_tag_id=PUB_11398&tfpvi=&gdpr_status=22&gdpr_reason=220&gdpr_consent=&ccpa_consent=&shared_ids=&sv=8480ba3& HTTP/1.1
Host: at.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Content-Length: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Expires: Thu, 02 Feb 2023 16:33:05 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 02 Feb 2023 16:33:05 GMT
Connection: keep-alive
ads.themoneytizer.com/lib_watermark.js
185.76.9.18200 OK 2.4 kB URL HTTP/2 ads.themoneytizer.com/lib_watermark.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 658004e7ca7a031681569d7bb23b1237
a7cc4760e2d1b21065a9a8ed86198747c725653d
f65a85f758f2203e4ed32af22805aaa8e89a9e96b084cde9416998d77a4eca32
GET /lib_watermark.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 16:37:11 GMT
expires: Fri, 03 Feb 2023 05:02:54 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400574
server: CDN77-Turbo
x-77-nzt: AblMCQ1pdHr/wqEAAA
x-77-nzt-ray: c0a4cc28a6957616c0e5db63b064062e
x-cache: HIT
x-age: 41410
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32034)
Hash c54aac7ef64c39b4f384e0d5771d3b46
d3e059104378a3844862a5ed12a13f5d423e86b6
3e1b5002dd64d185f806edeefd333348f423584d876cfc966b5c13884c8fe3da
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 18:53:23 GMT
expires: Sun, 28 Jan 2024 18:53:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 423582
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fe83d453f0f45edeb554970f51ef5c44
8a729f56e5d8dbc3551098a05611c72317877821
1c8ee9df6dfc88bb7fe98765496482f710d0e756cbb2f912fbc31286445fc181
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1401
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:05 GMT
Last-Modified: Thu, 02 Feb 2023 16:09:45 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Origin.FromBundle~1&entry=c~Idfs.Rtus.147.Headers.Bundle~1&entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.33200 OK 676 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.33:0
Hash c6a267c3c31bccba931ec18e493d5ea5
ef8ad7f66eb8365a162104e75121de2e230de1ef
8128cb256b5167e9c032fd2544ea7f21e9d2ae4fc1d58d054edd1f74e2281481
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 15:39:51 GMT
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s6RDrpyM2ettSIoT3yVSyZzYm98ibKYYXupbw6BdUOusxxX-ka4GgA==
age: 3195
X-Firefox-Spdy: h2
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258&google_error=3
104.22.24.87200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258&google_error=3
IP 104.22.24.87:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=34c524b5-0dfc-4cac-5d3a-c9db9273da48&reqId=0370c8c5-ab5d-452e-739b-9800e0bfe772&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Connection: keep-alive
Cookie: zc=34c524b5-0dfc-4cac-5d3a-c9db9273da48; zsc=%3B%C3%2A%B6%07%2C%92%BCQ%9F%5CE%3E%D2%5D%AB%B9%A4k%A6%ED%C5%A5%96u%F9.U%AD%21%0CLCD%CE_%C8%E0%DD%3B%D2%077KAJN%FA%0D%29%8C%CD%94%B3%1F%AC%7C%DA%28-q%AA%B6vX%CC%EFg%D7%93%29s%7C%D6%C2-%09Si%DF%A3W%0B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:05 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
set-cookie: zc=34c524b5-0dfc-4cac-5d3a-c9db9273da48; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453985da40b61-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fd9d44f593884c8dab919d1d0cc5e5a5
a143f2af73b3dff701795d4ed45c3463cc3d35a3
e5c4c26aac0b8eafcc261c5267e9974669a02e5725cfff881c5bea9c052da856
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106679
Date: Thu, 02 Feb 2023 16:33:05 GMT
Etag: "63dacab0-1d7"
Expires: Fri, 03 Feb 2023 22:11:04 GMT
Last-Modified: Wed, 01 Feb 2023 20:25:20 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QhBEiGGKYWfEG3k2kqDlQsG6CgWadgXayG75f5JenOG4d6OvOLUIwA==
Age: 6345
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
108.128.16.246200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP 108.128.16.246:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.styleonwards.com
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Thu, 02 Feb 2023 16:33:05 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 16:33:05 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
vms-players.minutemediaservices.com/mplayer-bridge.html
23.36.76.179200 OK 437 B URL HTTP/2 vms-players.minutemediaservices.com/mplayer-bridge.html
IP 23.36.76.179:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b6f88785c2468cad5fb5f81875b3ed0
b9b6efe64f02216e71bf855b655d8e80cc6c1aa4
23d5d6daf3c6d984e04f38ffe65bcc7f9327b7875a0cca730f974978feecacb6
GET /mplayer-bridge.html HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 11:11:02 GMT
etag: "e97239360af3389bafb536d4d0bdb35f"
x-amz-version-id: .9RAF9XlHfXzYtZBMnFKExfBF741L2yh
accept-ranges: bytes
content-type: text/html
content-encoding: gzip
content-length: 437
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a12d896937e3b818305d973e9e1b7616
266ffdbedf6a194bc957620abb17a3456d8af585
4c2e4fa2f6a3920a1b7b749a3bb7b9ea8c9ee21da1443c39655c27c1f37386ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2991
Cache-Control: max-age=150097
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:06 GMT
Etag: "63db8164-117"
Expires: Sat, 04 Feb 2023 10:14:43 GMT
Last-Modified: Thu, 02 Feb 2023 09:24:52 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279
content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
172.67.69.121200 OK 2.8 kB URL HTTP/2 content.wazimo.com/engine/common/widgets/mmlogger/wzMM.logger.js
IP 172.67.69.121:0
File type ASCII text, with very long lines (741)
Hash 1e911f72c46f5bfd2a892fc9d993aa5f
457728f1dd851c4b93ba79979099a05259609844
6d8eb52f2a3487f4311ae777792c074589403b96aab719ecd3bc962e8027277c
GET /engine/common/widgets/mmlogger/wzMM.logger.js HTTP/1.1
Host: content.wazimo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1534
etag: W/"629f592a-5fe"
last-modified: Tue, 07 Jun 2022 13:56:58 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 733
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PLOdzmBF4Zr9Ntg1Eh%2FCgsY7GWLDqq42P%2BcDIwvhm101MAzI2nWsThCVPWsTLd%2FhrQEy0BBdgOAv%2FY%2Bj2M8bbkad8oTkvj25qOBWpCOjA1LxWpHERVd0D7VRB0Gis2TBAE8J0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7934539e2ea31c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
184.51.252.146200 OK 18 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.65.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash f21fefd2b76d6ca958180868a8fddfb5
2522f3a4d33349b1ab052a5d15c9bba3b2f350fb
fdb2ec2d6e9b6a12e71fa60d1127b0d5ee96c12c29887bcc6a90cf4656b25920
GET /prod/players/mplayer_controls_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "bf8dea21bac40cb7a6ef93646dff933a"
x-amz-version-id: tU.OOPzlTM.HbV3FLp4CJsWdKtWQPfFS
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: JezZPy8VScOo2B1Pz7FFbntzkiabq5x5-N8gRa2xQP7an0GIS9s9_Q==
content-encoding: gzip
content-length: 17916
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/mux.js
184.51.252.146200 OK 79 kB URL HTTP/2 www.oo-syringe.com/prod/mux.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (409)
Hash 504174b4be40a301ff0ce1730563e618
c92f183bff3c0a5beb0d96d3e22ee053b58070b2
8eec15d84a6aab8070d633ff1176e03cb8eed328384e3ae360142a0dfae3d4cc
GET /prod/mux.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 06 May 2021 12:05:42 GMT
etag: "6d13ad5f29e69baba39798f1074bc746"
x-amz-version-id: zKDr1tGTeMrjUohEczWF1VZiqUanfaXu
accept-ranges: bytes
content-encoding: gzip
content-length: 79352
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
184.51.252.146200 OK 2.6 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.65.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (6502), with no line terminators
Hash 16db06d3898d8d9683b26c3e11d1ed56
2cc96e83406a015a8877caab023aa9461ec1644c
2373b409ed096eea0452d92cd2c069e9b94d96077d68740051332211246e20ef
GET /prod/players/mplayer_read_more_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "dc710e7075327a8a3d72f2c34d49ea62"
x-amz-version-id: Py3CKBkCM6isYyGRmzWXav_E8UVxFw5_
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: lJHULZ1frNA_lLFEYBdElEQTmPIjoRy8ErP3Qy8TVVp_F-GWLL9pJQ==
content-encoding: gzip
content-length: 2564
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.65.js
184.51.252.146200 OK 13 kB URL HTTP/2 www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.65.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (40084), with no line terminators
Hash 0d4286199e7088648645df754532b46a
6351fce85f1511448ba807c7c9cd062a1c133780
61df3f63935bc3458f4d3b74e170b36d284ab789f05395d4b2fb284181bb1fa0
GET /prod/players//mplayer_comscore_plugin.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "0a4b539432d7dd08186951d8b8842190"
x-amz-version-id: hvfr3Q7.U3NUWz_yZDzqlp4yg7huEQzO
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: ypLO_YubxfMjim7w00IdO0_JUdmLu4MEXnyKfi7HuCFUqCNa7tUMPA==
content-encoding: gzip
content-length: 13446
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 12:46:14 GMT
expires: Mon, 29 Jan 2024 12:46:14 GMT
cache-control: public, max-age=31536000
age: 359212
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 47 kB URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
File type ASCII text, with very long lines (65457)
Hash 6aca591206a873b40667e26f2d96fcde
821f93a15dd5c3bc80a795859885c9a17008aa6a
40736af99f465d9f887be7b55f0bb48e3c4f839fbef4061be5bda4f418adeeb7
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 15:56:00 GMT
last-modified: Wed, 01 Feb 2023 21:25:54 GMT
etag: W/"ca579f2de02c4700bc4fa6f925ed06a1"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 bc0a0f9f99d36a68240a31a25e39addc.cloudfront.net (CloudFront), 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: PLuqqWRMYk1mJMCJmJDZChTP8rp4REoCdD01EYdqW2egAVbiQafeUw==
age: 2226
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/moat.js
184.51.252.146200 OK 819 B URL HTTP/2 www.oo-syringe.com/prod/moat.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (512)
Hash 97adb33da684235cc6661698b63e575f
c4e103e7d71630e775635f8c1376204920e02236
50467fbe689b30b01578ce0b33bb0515b1af50880820e28a52c2192ad62d85ce
GET /prod/moat.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Jun 2021 07:25:49 GMT
etag: "73ea42f8fec6a330dd719d2e3bf83b41"
x-amz-version-id: cqCb6oftCBR4g3kB01xepxAGq749bs6O
accept-ranges: bytes
content-encoding: gzip
content-length: 819
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
184.51.252.146200 OK 119 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.65.js
IP 184.51.252.146:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 119 kB (118732 bytes)
Hash f2c9e49158355fb6cb43ea5d63f9233a
300393a95254fe65f31f7b1abf9ee0b2fcf074e9
b44a4401e29126e2d0c2e37ffd581b10f18e9afe5934faaa50021c3080ac94a4
GET /prod/players/mplayer_shaka_voltax.4.4.65.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 10:11:24 GMT
etag: "9deb651bfb4ab64c62edceb7a856c6ad"
x-amz-version-id: 12NlOVx4l7vIT2ncxDak_wq6CYhqx8VQ
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: IAO6Uri9S9LcD6Unh07Xz0Fo4gU4L7zZOgrZvMdd7lXaOoA-NsuouQ==
content-encoding: gzip
content-length: 118732
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com
184.51.88.72200 OK 3.9 kB URL HTTP/2 content.voltaxservices.io/playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com
IP 184.51.88.72:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14434), with no line terminators
Hash 2135af14a182e13a4b03018902e41533
4118b1258751b70c9dc596922c0f148ab7c9dbd7
e2f693683471146d6725695838f3402bd91a19f5783a522427373e769a128b3a
GET /playlists/01gprrpe140aq30130/videos?url=jvvru%253C11yyy0uv%257Bngqpyctfu0eqo1vjku%252Fku%252Fyj%257B%252Fegnkpg%252Fvkg%252Fdci%252Fku%252Fc%252Fowuv%252Fjcxg%252Fykpvgt%252Fkvgo1&origin=www.styleonwards.com HTTP/1.1
Host: content.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
restricted-videos-ids: 01gpdg3ph861xwknrqgn,01gpbja2fz7kqc1503bg
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
date: Thu, 02 Feb 2023 16:33:06 GMT
content-length: 3904
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:33:06 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:33:06 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:33:06 GMT
akaas_default=2147483647~rv=88~id=262d7592c0d059ddf0950f5938808075~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=btze1Sza8r7ikjrkHcnnVW
34.149.20.76200 OK 579 B URL HTTP/2 ssc.33across.com/api/v1/hb?guid=btze1Sza8r7ikjrkHcnnVW
IP 34.149.20.76:0
Hash 15afad0d0ea12890c029132beed9a411
147f0f3802dad9de158d96549c29b37f2fe820f2
dbb2da3698f3303c2f07c058585719919ec0cd3cd39a544f10d5d1ac198a9c92
POST /api/v1/hb?guid=btze1Sza8r7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 840
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=d5jv24zaar7ikjrkHcnnVW
34.149.20.76200 OK 579 B URL HTTP/2 ssc.33across.com/api/v1/hb?guid=d5jv24zaar7ikjrkHcnnVW
IP 34.149.20.76:0
Hash 15afad0d0ea12890c029132beed9a411
147f0f3802dad9de158d96549c29b37f2fe820f2
dbb2da3698f3303c2f07c058585719919ec0cd3cd39a544f10d5d1ac198a9c92
POST /api/v1/hb?guid=d5jv24zaar7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 841
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
184.51.252.166200 OK 44 kB URL HTTP/2 bucket1.mm-syringe.com/lib/comScore-JS-6.2.3.180328.min.js
IP 184.51.252.166:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d22f4ba55c6da14e00645d5b640e1a06
5300f2ea6dd9ed727fae3866bc00f4fd21f9eef0
b8a41a59c80716147c952fb02375d0f3149d3e1e617d8ddea4c79f07913d551c
GET /lib/comScore-JS-6.2.3.180328.min.js HTTP/1.1
Host: bucket1.mm-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 31 Mar 2019 15:57:40 GMT
etag: "18a99636882ae65fbb2e600e276380ca"
x-amz-version-id: UP2tnScyf0IkbIh1GVgoQZiM5AlMQNdo
accept-ranges: bytes
content-encoding: gzip
content-length: 43460
unused62: 8096267
date: Thu, 02 Feb 2023 16:33:06 GMT
vary: Accept-Encoding
cache-control: max-age=27368201, private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.googletagmanager.com/ns.html?id=GTM-PL4PD49
142.250.74.168200 OK 92 B URL HTTP/2 www.googletagmanager.com/ns.html?id=GTM-PL4PD49
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a5c242657a321785d7d079994495766f
4733fa0fa6da4a3c0c93ec97c135bb585b4b2f13
8b2ceca2522f9ebefd5894fdf566ef6a7a1e55fe7a19913041c0d4859d8828e6
GET /ns.html?id=GTM-PL4PD49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Thu, 02 Feb 2023 16:33:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=bHj7xyza8r7ikjrkHcnnVW
34.149.20.76200 OK 82 kB URL HTTP/2 ssc.33across.com/api/v1/hb?guid=bHj7xyza8r7ikjrkHcnnVW
IP 34.149.20.76:0
Hash 9b2207a9d61b08ee5617133cfbe4e3d5
87b635e5ed3f6ed073c93f3b42e2db8850454b4b
9256dfc8632a24cdd01a35bbcc330de31f3545f6550eb4335e7793cc0c33385a
POST /api/v1/hb?guid=bHj7xyza8r7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 941
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
184.51.88.72200 OK 58 B URL HTTP/2 factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65
IP 184.51.88.72:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 6f491469198482433392dda49e89abda
46cf7bdc583488d72ff94bec817824069604bbb4
00f30881d413dfe6990e7c91036e1f3a964b8396f76287ed3944b262f3d92601
GET /factors?mmPlayerLvl1=no:desktop:www.styleonwards.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fstyleonwards.com:01gprrjb4arydv8gd5:4.4.65 HTTP/1.1
Host: factor-service.prod.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=600
date: Thu, 02 Feb 2023 16:33:07 GMT
content-length: 58
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:33:07 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:33:07 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:33:07 GMT
akaas_default=2147483647~rv=74~id=80a429b82113a92d8f15f11cd568b6d2~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 15:44:08 GMT
expires: Thu, 02 Feb 2023 17:44:08 GMT
cache-control: public, max-age=7200
age: 2939
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2446
Cache-Control: max-age=95580
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:07 GMT
Etag: "63daae91-139"
Expires: Fri, 03 Feb 2023 19:06:07 GMT
Last-Modified: Wed, 01 Feb 2023 18:25:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
imasdk.googleapis.com/js/sdkloader/ima3.js
216.58.207.234200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (2846)
Size 126 kB (125826 bytes)
Hash 6ed42284d9cb14eefc19b7b02d6ead5c
862c3202660ff851c25f023ef6521e261b563ee7
597bf7014b6939cc86e79b26c7b8701731d1bbd71554c6ddbdc15297c8f3f509
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 125826
date: Thu, 02 Feb 2023 16:33:07 GMT
expires: Thu, 02 Feb 2023 16:33:07 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
drm.mmvideosvc.com/v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com
184.51.88.66200 OK 84 B URL HTTP/2 drm.mmvideosvc.com/v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com
IP 184.51.88.66:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 85f34c51db32c050f20dafc41638ce6b
80563cb1647944652b046db461465562e6916db0
6c32a2d05189a53b3f745e00c7c5a1fbeac4274ab2ba1015db7cc2b6ae1eb06b
GET /v1.0/regulation/01gphqqcvcp6sm4n9c26?origin=www.styleonwards.com HTTP/1.1
Host: drm.mmvideosvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=3600
expires: Thu, 02 Feb 2023 17:33:07 GMT
date: Thu, 02 Feb 2023 16:33:07 GMT
content-length: 84
set-cookie: stateCode=NA; expires=Thu, 09-Feb-2023 16:33:07 GMT
countryCode=NO; expires=Thu, 09-Feb-2023 16:33:07 GMT
cityCode=OSLO; expires=Thu, 09-Feb-2023 16:33:07 GMT
akaas_default=2147483647~rv=62~id=cde112c148483d22a8a16f2858e50245~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 130 B IP 104.18.3.114:0
Hash 467e58641a52f69a3dcb0bbeb777451e
794267e5a87fb5319b08f5fd0e09481e6e320c43
b1ac3642a7cadd36eafd1458f8eb2c938d5583e1f6d1d8eb22ffe64b0fd7d52d
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 10754
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 5 inventory rules not found for mediatype: banner and adUnitCode: 26328, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26711, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26300, Process Seats Booster. unable to get the seat booster engine for organization: 1015
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934539228461c16-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2129130113&cid=1453513369.1675355614&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355613&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2129130113&cid=1453513369.1675355614&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355613&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PEGZJDQ1BR>m=2oe1u0&_p=2129130113&cid=1453513369.1675355614&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675355613&sct=1&seg=0&dl=https%3A%2F%2Fwww.styleonwards.com%2Fthis-is-why-celine-tie-bag-is-a-must-have-winter-item%2F&dt=This%20Is%20Why%20Celine%20Tie%20Bag%20Is%20A%20Must%20Have%20Winter%20Item%20-%20StyleonWards&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.66200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (1493)
Hash 0dece4b354fc41d0430994be26247a47
1063c9471665bb53cc9a4e89c4cf0f1e9f695f8d
71a1c1d814cc6c713b3513212be779f944e9b4002e1fb89ac36e438a1a04e4a0
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:14:00 GMT
expires: Thu, 02 Feb 2023 17:14:00 GMT
cache-control: public, max-age=3600
age: 1147
last-modified: Mon, 31 Oct 2022 17:24:37 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
172.217.21.166200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 172.217.21.166:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 02 Feb 2023 16:33:07 GMT
expires: Thu, 02 Feb 2023 16:33:07 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
onetag-sys.com/usync/?cb=1675355611032
51.89.9.254204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?cb=1675355611032
IP 51.89.9.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1675355611032 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
23.36.76.179200 OK 130 kB URL HTTP/2 vms-players.minutemediaservices.com/01gprrjb4arydv8gd5.js
IP 23.36.76.179:0
ASN #20940 Akamai International B.V.
Size 130 kB (130130 bytes)
Hash 7f781540621d0982144c8b15bf7e5e99
ffce5ac76ba8578f9aaba54cf59c9f050ad58d7d
8de4d1e09bef9383ee092bc9e5b5e1ae1028e0e5de328965a356f9a57b3f473a
GET /01gprrjb4arydv8gd5.js HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 30 Jan 2023 13:26:11 GMT
etag: "362e9608063f9fc3c9c78fc493296b50"
x-amz-version-id: RWBOQfpkYXGPCXohfxbDy3No2UrNVnqx
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Thu, 02 Feb 2023 16:33:05 GMT
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1fa4a1bbc4eef369c1062f928bce8021
93c8b2e83d7238394892d83005f899ec7b1ab3db
549ad164c2c23cbee22a33358e6d837f9546466b11f996adf713b543b11becfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:33:07 GMT
Last-Modified: Thu, 02 Feb 2023 14:46:13 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
dnacdn.net/dna
178.250.2.146200 OK 17 kB IP 178.250.2.146:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash e9bffb175b486d40956dc1dc6c2a33e6
aa7018b24866d46825402623f4bc9dc8e1c1975b
c054c993c7727f4f21a6b7c52b5391767f7e63836fae41796690ec330ff501e0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=lW7D9F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdXaXhRWGl5R0RuNDkyJTJCaW9aSUlaQUw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=JGX5OV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdYTmFCaG5iY1ZiR1V1bDJlSzlrZFgz; expires=Tue, 27 Feb 2024 16:33:07 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 452972
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Thu, 02 Feb 2023 16:33:07 GMT
Connection: keep-alive
Vary: Accept-Encoding
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
185.76.9.18200 OK 10 kB URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (18573)
Hash 99c0c98b8e6a421ee85ea1fe4278254f
d2429e6ef20641cb6cc9a7f4a342ccd78ed7d3b9
ebd3a25efe7d3e9c245e26e828b8edf726eee83cc49457a13acfc1bb7c8f8084
GET /bidder1/moneybid.js?siteid=105238&adid=6&formatid=26328&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ0leFuh
x-77-nzt-ray: c0a4cc28a6957616c0e5db635e14cd05
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.3.103200 OK 27 B IP 104.26.3.103:0
Hash 23064904c9ce1311756093d3cbac26ae
a1f6434da20f239433b2156a9dc8cec3c290faa6
36d016a807231d8c21a9b71cc1bb3ed8e23de63b98e1b921e9c8d4d028e67564
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 176
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5uQTBz5Ty5tSK3oJ5J3%2BFWlqzNZSutGL2EmitDiEiw0FkV5A5QKHtVbe8%2Fbqd24kGsFz79x9wCHfuvAvQbQ7z2vGeE1RtDlFLyFlv9K6vs1lxlTJwb4z31iex%2FYzPBN9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7934539319cab51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.118200 OK 39 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d13b388106166eb9a829d061ee73c76c
ab7fa8e74d845a974600e5c1cdc4dc7346eae2d4
1a8be06bad7fd9cadea19bd0685833082dd2756b5ead73b6d23240bf991f3b4a
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 98182
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9a366aadea9a372ea5d1ee2b655aba1f
f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5
846893d916b5dac30fcbfb9c813166823e21b5daf0245612364dfea87d0eb070
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:57:50 GMT
Expires: Wed, 08 Feb 2023 01:57:49 GMT
Etag: "f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5"
Cache-Control: max-age=465280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793453aa1827b521-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9a366aadea9a372ea5d1ee2b655aba1f
f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5
846893d916b5dac30fcbfb9c813166823e21b5daf0245612364dfea87d0eb070
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:57:50 GMT
Expires: Wed, 08 Feb 2023 01:57:49 GMT
Etag: "f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5"
Cache-Control: max-age=465280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793453aa1db3b509-OSL
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.147.Origin.FromSyncframeBundle~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9a366aadea9a372ea5d1ee2b655aba1f
f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5
846893d916b5dac30fcbfb9c813166823e21b5daf0245612364dfea87d0eb070
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:57:50 GMT
Expires: Wed, 08 Feb 2023 01:57:49 GMT
Etag: "f8ff89c9dd0beda0df93d7bb0fc248884afe8fe5"
Cache-Control: max-age=465280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793453aa29c4fac4-OSL
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.171.22200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.171.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 16:33:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 713d8e5b-cda1-40cd-a19e-3d47189696d0
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1001.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=105238&formatId=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=105238&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:01 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675960381
server: CDN77-Turbo
x-77-nzt: AblMCQ1eQJOh
x-77-nzt-ray: c0a4cc28a6957616bde5db639eb23031
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=20&formatid=26706&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1L17qh
x-77-nzt-ray: c0a4cc28a6957616c0e5db635741d505
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.3.103200 OK 0 B IP 104.26.3.103:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F9PLdfiUrnlYR8XiEtqj0DTanuhPm1UUQ2T90uEiWKthV0QlEOETrDqK8FaXccU6t%2BlOIXEkR3PpiVCiL6QM1t17TMsGZpBID8rxHCKddPtEB15oNNqLQRH0KCu8ZVYJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79345392c973b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.prebid.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.prebid.js
IP 178.250.0.130:0
GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: text/javascript
last-modified: Wed, 18 Jan 2023 01:20:50 GMT
etag: W/"63c74972-162fb"
expires: Fri, 03 Feb 2023 16:33:07 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj&info=JGX5OV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdYTmFCaG5iY1ZiR1V1bDJlSzlrZFgz&idsd=1731223579,-449763723&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj&info=JGX5OV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdYTmFCaG5iY1ZiR1V1bDJlSzlrZFgz&idsd=1731223579,-449763723&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=publishertag&domain=styleonwards.com&sn=FirefoxSyncframe&so=3&topUrl=www.styleonwards.com&bundle=q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj&info=JGX5OV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRoYmQlMkIwYzMlMkYzQ1NPa3Mzbk96ZWdYTmFCaG5iY1ZiR1V1bDJlSzlrZFgz&idsd=1731223579,-449763723&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1217402
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=3&formatid=26323&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ3OMAeh
x-77-nzt-ray: c0a4cc28a6957616c0e5db63f45cd005
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
104.22.24.87200 OK 0 B URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.24.87:0
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.styleonwards.com
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7934538dfa7f0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=2&formatid=26300&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1SVV2h
x-77-nzt-ray: c0a4cc28a6957616c0e5db63ca22d905
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=2a0905e3-1518-4680-ba06-012b12717507%3Be2735ec0-7071-4860-bc0f-7e2bc1c6b3b9%3Be3240279-b20c-4923-b5d8-47c35ebed7ea%3B0dcfaa31-22a6-4548-a31c-f5fd01cdf8e0%3B9ff56e2e-e564-4548-a53d-0158c9d067a5&l_pb_bid_id=15c663212975459%3B1673b299e809fa28%3B1711f8ad8977ec28%3B18a7cb13855a17f%3B19bda3e6e34e2568&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.942436902919516
213.19.162.51200 OK 0 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=2a0905e3-1518-4680-ba06-012b12717507%3Be2735ec0-7071-4860-bc0f-7e2bc1c6b3b9%3Be3240279-b20c-4923-b5d8-47c35ebed7ea%3B0dcfaa31-22a6-4548-a31c-f5fd01cdf8e0%3B9ff56e2e-e564-4548-a53d-0158c9d067a5&l_pb_bid_id=15c663212975459%3B1673b299e809fa28%3B1711f8ad8977ec28%3B18a7cb13855a17f%3B19bda3e6e34e2568&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.942436902919516
IP 213.19.162.51:0
GET /a/api/fastlane.json?account_id=11740&site_id=39560&zone_id=1078244%3B1078244%3B1078244%3B1078330%3B1078244&size_id=15%3B2%3B9%3B15%3B15&alt_size_ids=10%3B19%2C43%2C44%2C117%3B%3B%3B&p_pos=atf&rp_schain=1.0,1!themoneytizer.com,88435,1,,,&eid_pubcid.org=8f8c354a-f446-454e-9a59-23ef77777a18%5E1&rf=https%3A%2F%2Fwww.styleonwards.com&kw=105238&tg_i.name=styleonwards.com&tg_i.siteid=105238&tg_i.pbadslot=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&tk_flint=pbjs_lite_v7.28.0&x_source.tid=2a0905e3-1518-4680-ba06-012b12717507%3Be2735ec0-7071-4860-bc0f-7e2bc1c6b3b9%3Be3240279-b20c-4923-b5d8-47c35ebed7ea%3B0dcfaa31-22a6-4548-a31c-f5fd01cdf8e0%3B9ff56e2e-e564-4548-a53d-0158c9d067a5&l_pb_bid_id=15c663212975459%3B1673b299e809fa28%3B1711f8ad8977ec28%3B18a7cb13855a17f%3B19bda3e6e34e2568&p_screen_res=1280x1024&rp_floor=0.01&rp_secure=1&rp_maxbids=1&p_gpid=%2F105238%2Fstyleonwards.com%2Fdesktop%2F26323%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26322%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26706%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26711%3B%2F105238%2Fstyleonwards.com%2Fdesktop%2F26300&slots=5&rand=0.942436902919516 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDNBGICL-H-58EL; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqC06lnwGxKzu9DtVM30fCgIyPImRVqHACc+FK7xp8gxEsxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBGICL-H-58EL; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqC06lnwGxKzu9DtVM30fCgIyPImRVqHACc+FK7xp8gxEsxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBGICL-H-58EL; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqC06lnwGxKzu9DtVM30fCgIyPImRVqHACc+FK7xp8gxEsxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBGICL-H-58EL; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqC06lnwGxKzu9DtVM30fCgIyPImRVqHACc+FK7xp8gxEsxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDNBGICL-H-58EL; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqC06lnwGxKzu9DtVM30fCgIyPImRVqHACc+FK7xp8gxEsxs95q+7Bym5SY+npH+PNo2B05UvZjL1DzFsJy3JbJsqlSNZOaaDQ=; Domain=.rubiconproject.com; Path=/; Expires=Fri, 02-Feb-2024 16:33:04 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.3.103200 OK 0 B IP 104.26.3.103:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 793
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:06 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2FOmeyiQL6qiBQGRoiflEKOh3QKZxQaL4YbA6fDEGhkUDkR5VfFleJGW6DunOLe2cu5LfWSYPQ0BCnVazmsi9MqIJTK2G4vw8FK%2BBFA4yLngCVtI7JWmFKRE9v3r9tvw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793453a08e89b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /moneybid7_28/build_noconsent/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:59 GMT
expires: Fri, 03 Feb 2023 05:03:22 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400602
server: CDN77-Turbo
x-77-nzt: AblMCQ2xBqb/paEAAA
x-77-nzt-ray: c0a4cc28a6957616bfe5db63fb1e6e24
x-cache: HIT
x-age: 41381
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.styleonwards.com
IP 178.250.0.157:0
GET /syncframe?origin=rtus&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:06 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=29db878a-9ce4-4644-9b87-243754bd8501; expires=Tue, 27 Feb 2024 16:33:07 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 566111
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.styleonwards.com%2F&domain=www.styleonwards.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.styleonwards.com/
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 227848
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=www.styleonwards.com
IP 178.250.0.157:0
GET /syncframe?origin=publishertag&topUrl=www.styleonwards.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=b017af8c-70b6-4e57-9350-bf524e7b0a01; expires=Tue, 27 Feb 2024 16:33:07 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 735304
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.244200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.244:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:05 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "j4o3/UzQJzEULY/aoGayAw=="
expires: Thu, 09 Feb 2023 16:33:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.datadoghq-browser-agent.com/datadog-logs-v4.js
54.230.111.221200 OK 0 B URL HTTP/2 www.datadoghq-browser-agent.com/datadog-logs-v4.js
IP 54.230.111.221:0
GET /datadog-logs-v4.js HTTP/1.1
Host: www.datadoghq-browser-agent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 13:15:36 GMT
server: AmazonS3
content-encoding: br
date: Thu, 02 Feb 2023 16:32:30 GMT
cache-control: max-age=14400, s-maxage=60
etag: W/"5b76e508d971b0eeae4b4bfc84bc97f4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qKDbNzqvdKGyqsY18VuGBfoO5oD6_xzPxIk5lQ3loozsak_4rdHzWQ==
age: 37
timing-allow-origin: *
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 1237893
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:01 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675918976
server: CDN77-Turbo
x-77-nzt: AblMCQ3snGn/vaEAAA
x-77-nzt-ray: c0a4cc28a6957616bde5db639c70bf30
x-cache: HIT
x-age: 41405
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=105238&adid=19&formatid=26711&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.styleonwards.com
cache-control: max-age=604800
x-accel-expires: @1675960384
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ2pcEah
x-77-nzt-ray: c0a4cc28a6957616c0e5db634524d705
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=bpjP6uza8r7ikjrkHcnnVW
34.149.20.76200 OK 0 B URL HTTP/2 ssc.33across.com/api/v1/hb?guid=bpjP6uza8r7ikjrkHcnnVW
IP 34.149.20.76:0
POST /api/v1/hb?guid=bpjP6uza8r7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 841
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=byadUMza8r7ikjrkHcnnVW
34.149.20.76200 OK 0 B URL HTTP/2 ssc.33across.com/api/v1/hb?guid=byadUMza8r7ikjrkHcnnVW
IP 34.149.20.76:0
POST /api/v1/hb?guid=byadUMza8r7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 891
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csync.smilewanted.com/
104.22.68.131200 OK 0 B IP 104.22.68.131:0
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793453a8db6f16a5-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=3
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:01 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675918975
server: CDN77-Turbo
x-77-nzt: AblMCQ3vW67/vqEAAA
x-77-nzt-ray: c0a4cc28a6957616bde5db6399eefd30
x-cache: HIT
x-age: 41406
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybile.js
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:03 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Fri, 03 Feb 2023 05:02:55 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675400575
server: CDN77-Turbo
x-77-nzt: AblMCQ1vvc7/wKEAAA
x-77-nzt-ray: c0a4cc28a6957616bfe5db638abd8815
x-cache: HIT
x-age: 41408
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.3.103200 OK 0 B IP 104.26.3.103:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 151
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tFQAdU2BiuZiq%2B3JlKZnCO0Y9%2B5leuXW5UoD6t3OF%2BvoSrDcPeoqsfm40VKGmueVuaVxmqUGHraooYaH%2BsqKgiLrYQ%2BlLa6AZihdfreg12JlYVttXZKuqmF5JFPU30sT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79345392690fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.styleonwards.com/
x-crto-bundle: q7_tlV9ialdza3hqdnFrdWpadjdwVlBJMmRPY1BtMU9Ec0ZPcEJ3WVQyJTJCcWZmNEczQk14dTdDeWt6NGFCNWMwU2Zvblo0am53ZWhzZE51SnIlMkZtcG9wMlRndnBiT1BWbThhQjh0QkhWYWZZVEtZeVFzJTJGQ1ZTTFhaeiUyQlF6eTBlcEw4b1hj
Origin: https://www.styleonwards.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:05 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
server-processing-duration-in-ticks: 2023233
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ssc.33across.com/api/v1/hb?guid=aiQovMzaer7ikjrkHcnnVW
34.149.20.76200 OK 0 B URL HTTP/2 ssc.33across.com/api/v1/hb?guid=aiQovMzaer7ikjrkHcnnVW
IP 34.149.20.76:0
POST /api/v1/hb?guid=aiQovMzaer7ikjrkHcnnVW HTTP/1.1
Host: ssc.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 822
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
vary: Accept-Encoding, Origin
status: 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.styleonwards.com
date: Thu, 02 Feb 2023 16:33:04 GMT
x-powered-by: 33Across
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bqstreamer.com/tr/
104.26.3.103200 OK 0 B IP 104.26.3.103:0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://www.styleonwards.com
Connection: keep-alive
Referer: https://www.styleonwards.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i4J%2F3wCMNSoHIeiePUhp1TtQcDKXj%2BCvQ%2BXdIo%2FYHTQxuxBbSOv6abkOt4whv11AKcxOgi6E5OCtgvSUYiFNxYjILtx6CDJa6TuDNx9acSpQVf3%2Bpnv%2F1Hr9CBTSFQRk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7934539309bab51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.118200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.118:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:33:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 108789
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2