HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 19 Dec 2021 20:42:55 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Set-Cookie: PHPSESSID=d6detes9eov3n21mqil738q2s5; expires=Mon, 20-Dec-2021 00:42:55 GMT; Max-Age=14400; path=/; domain=carmodelz.com; HttpOnly
Set-Cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:55 GMT; Max-Age=31536000; path=/en/; domain=carmodelz.com; HttpOnly
Set-Cookie: store=en; expires=Mon, 19-Dec-2022 20:42:55 GMT; Max-Age=31536000; path=/en/
Set-Cookie: X-Magento-Vary=814024c5c19c4628b5ce9da20e39855021d15547; expires=Mon, 20-Dec-2021 00:42:55 GMT; Max-Age=14400; path=/; HttpOnly
Location: https://www.carmodelz.com/en/
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Expires: Sat, 19 Dec 2020 20:42:55 GMT
Content-Security-Policy: worker-src blob:; font-src *.bootstrapcdn.com *.gstatic.com *.googleapis.com *.hotjar.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.multisafepay.com https://pay.google.com 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com cdn.dnky.co webchat.dotdigital.com *.hotjar.com *.youtube.com *.youtube-nocookie.com *.multisafepay.com https://pay.google.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com data: *.google.com *.google.nl stats.g.doubleclick.net *.googleadservices.com *.google-analytics.com *.gstatic.com *.multisafepay.com *.google.fr *.google.ie 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com js.authorize.net jstest.authorize.net js.braintreegateway.com cdn-scripts.signifyd.com www.youtube.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net cdn.dnky.co api.comapi.com webchat.dotdigital.com *.facebook.net *.fontawesome.com *.giropay.de *.google.com *.googleapis.com *.gstatic.com *.hotjar.com *.googletagmanager.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com https://pay.google.com *.google.fr *.google.ie *.googleadservices.com googleads.g.doubleclick.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com cdn.dnky.co webchat.dotdigital.com *.bootstrapcdn.com *.fontawesome.com *.giropay.de *.googleapis.com maxcdn.bootstrapcdn.com *.multisafepay.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net api.comapi.com webchat.dotdigital.com *.bootstrapcdn.com *.gstatic.com *.googleadservices.com *.google-analytics.com *.hotjar.com *.hotjar.io wss://*.hotjar.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com 'self' 'unsafe-inline'; child-src 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
HTTP/2 302
server: nginx
date: Sun, 19 Dec 2021 20:42:57 GMT
content-type: text/html; charset=UTF-8
location: https://www.carmodelz.com/en/?___store=en
set-cookie: PHPSESSID=pde3o35q7ttgba9l2iulpnkh1o; expires=Mon, 20-Dec-2021 00:42:56 GMT; Max-Age=14400; path=/; domain=www.carmodelz.com; secure; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/en/
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/en/
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/nl/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/de/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/fr/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/es/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/it/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/pt/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/e/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/s/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/i/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/p/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/n/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/d/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/f/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:56 GMT; Max-Age=31536000; path=/; domain=www.carmodelz.com; HttpOnly
set-cookie: X-Magento-Vary=814024c5c19c4628b5ce9da20e39855021d15547; expires=Mon, 20-Dec-2021 00:42:57 GMT; Max-Age=14400; path=/; secure; HttpOnly
x-magento-tags: store,cms_b,cms_b_block_header_top_links,cms_b_block_header_top_left,cms_b_block_header_top_right,cms_b_block_footer_links,cms_b_block_footer_links2,cms_b_block_footer_primary_bottom_left,cms_b_block_footer_primary_bottom_right,cms_b_block_footer_column1,cms_b_block_footer_column2,cms_b_block_footer_column3,cms_b_block_footer_column4,cms_b_block_footer_column5,cms_b_block_footer_column6,cms_b_block_footer_payment,cat_c,store_group,cms_b_block_nav_links,cms_b_block_nav_dropdown,cms_p_2,cat_c_p_2,cat_p_2899,cat_p,cat_p_2879,cat_p_2471,cat_p_2192,cat_p_3252,cat_p_2928,cat_p_3399,cat_p_3398,cat_p_3397,cat_p_3396,cat_p_3395,cat_p_3085,cat_p_2744,cat_p_3374,cat_p_3367,cat_p_3366,cat_p_3364,cat_p_1614,cat_p_1349,cat_p_3349,FPC
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Sat, 19 Dec 2020 20:42:57 GMT
content-security-policy: worker-src blob:; font-src *.bootstrapcdn.com *.gstatic.com *.googleapis.com *.hotjar.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.multisafepay.com https://pay.google.com 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com cdn.dnky.co webchat.dotdigital.com *.hotjar.com *.youtube.com *.youtube-nocookie.com *.multisafepay.com https://pay.google.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com data: *.google.com *.google.nl stats.g.doubleclick.net *.googleadservices.com *.google-analytics.com *.gstatic.com *.multisafepay.com *.google.fr *.google.ie 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com js.authorize.net jstest.authorize.net js.braintreegateway.com cdn-scripts.signifyd.com www.youtube.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net cdn.dnky.co api.comapi.com webchat.dotdigital.com *.facebook.net *.fontawesome.com *.giropay.de *.google.com *.googleapis.com *.gstatic.com *.hotjar.com *.googletagmanager.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com https://pay.google.com *.google.fr *.google.ie *.googleadservices.com googleads.g.doubleclick.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com cdn.dnky.co webchat.dotdigital.com *.bootstrapcdn.com *.fontawesome.com *.giropay.de *.googleapis.com maxcdn.bootstrapcdn.com *.multisafepay.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net api.comapi.com webchat.dotdigital.com *.bootstrapcdn.com *.gstatic.com *.googleadservices.com *.google-analytics.com *.hotjar.com *.hotjar.io wss://*.hotjar.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com 'self' 'unsafe-inline'; child-src 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
HTTP/2 302
server: nginx
date: Sun, 19 Dec 2021 20:42:57 GMT
content-type: text/html; charset=UTF-8
location: https://www.carmodelz.com/en/
set-cookie: PHPSESSID=2tgvvhppkb9l7qn4tv203mrfb2; expires=Mon, 20-Dec-2021 00:42:57 GMT; Max-Age=14400; path=/; domain=www.carmodelz.com; secure; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/nl/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/de/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/fr/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/es/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/it/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/pt/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/e/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/s/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/i/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/p/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/n/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/d/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/f/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/; domain=www.carmodelz.com; HttpOnly
set-cookie: X-Magento-Vary=814024c5c19c4628b5ce9da20e39855021d15547; expires=Mon, 20-Dec-2021 00:42:57 GMT; Max-Age=14400; path=/; secure; HttpOnly
x-magento-tags: store,cms_b,cms_b_block_header_top_links,cms_b_block_header_top_left,cms_b_block_header_top_right,cms_b_block_footer_links,cms_b_block_footer_links2,cms_b_block_footer_primary_bottom_left,cms_b_block_footer_primary_bottom_right,cms_b_block_footer_column1,cms_b_block_footer_column2,cms_b_block_footer_column3,cms_b_block_footer_column4,cms_b_block_footer_column5,cms_b_block_footer_column6,cms_b_block_footer_payment,cat_c,store_group,cms_b_block_nav_links,cms_b_block_nav_dropdown,cms_p_2,cat_c_p_2,cat_p_2899,cat_p,cat_p_2879,cat_p_2471,cat_p_2192,cat_p_3252,cat_p_2928,cat_p_3399,cat_p_3398,cat_p_3397,cat_p_3396,cat_p_3395,cat_p_3085,cat_p_2744,cat_p_3374,cat_p_3367,cat_p_3366,cat_p_3364,cat_p_1614,cat_p_1349,cat_p_3349,FPC
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Sat, 19 Dec 2020 20:42:57 GMT
content-security-policy: worker-src blob:; font-src *.bootstrapcdn.com *.gstatic.com *.googleapis.com *.hotjar.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.multisafepay.com https://pay.google.com 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com cdn.dnky.co webchat.dotdigital.com *.hotjar.com *.youtube.com *.youtube-nocookie.com *.multisafepay.com https://pay.google.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com data: *.google.com *.google.nl stats.g.doubleclick.net *.googleadservices.com *.google-analytics.com *.gstatic.com *.multisafepay.com *.google.fr *.google.ie 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com js.authorize.net jstest.authorize.net js.braintreegateway.com cdn-scripts.signifyd.com www.youtube.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net cdn.dnky.co api.comapi.com webchat.dotdigital.com *.facebook.net *.fontawesome.com *.giropay.de *.google.com *.googleapis.com *.gstatic.com *.hotjar.com *.googletagmanager.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com https://pay.google.com *.google.fr *.google.ie *.googleadservices.com googleads.g.doubleclick.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com cdn.dnky.co webchat.dotdigital.com *.bootstrapcdn.com *.fontawesome.com *.giropay.de *.googleapis.com maxcdn.bootstrapcdn.com *.multisafepay.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net api.comapi.com webchat.dotdigital.com *.bootstrapcdn.com *.gstatic.com *.googleadservices.com *.google-analytics.com *.hotjar.com *.hotjar.io wss://*.hotjar.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com 'self' 'unsafe-inline'; child-src 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
HTTP/2 302
server: nginx
date: Sun, 19 Dec 2021 20:42:58 GMT
content-type: text/html; charset=UTF-8
location: https://www.carmodelz.com/en/?___store=en
set-cookie: PHPSESSID=8lpa08tqdn4fre414h60qv6010; expires=Mon, 20-Dec-2021 00:42:57 GMT; Max-Age=14400; path=/; domain=www.carmodelz.com; secure; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:57 GMT; Max-Age=31536000; path=/en/
set-cookie: store=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/en/
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/en/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/nl/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/de/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/fr/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/es/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/it/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/pt/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/e/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/s/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/i/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/p/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/n/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/d/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/f/; domain=www.carmodelz.com; HttpOnly
set-cookie: geoip_store_code=en; expires=Mon, 19-Dec-2022 20:42:58 GMT; Max-Age=31536000; path=/; domain=www.carmodelz.com; HttpOnly
set-cookie: X-Magento-Vary=814024c5c19c4628b5ce9da20e39855021d15547; expires=Mon, 20-Dec-2021 00:42:58 GMT; Max-Age=14400; path=/; secure; HttpOnly
x-magento-tags: store,cms_b,cms_b_block_header_top_links,cms_b_block_header_top_left,cms_b_block_header_top_right,cms_b_block_footer_links,cms_b_block_footer_links2,cms_b_block_footer_primary_bottom_left,cms_b_block_footer_primary_bottom_right,cms_b_block_footer_column1,cms_b_block_footer_column2,cms_b_block_footer_column3,cms_b_block_footer_column4,cms_b_block_footer_column5,cms_b_block_footer_column6,cms_b_block_footer_payment,cat_c,store_group,cms_b_block_nav_links,cms_b_block_nav_dropdown,cms_p_2,cat_c_p_2,cat_p_2899,cat_p,cat_p_2879,cat_p_2471,cat_p_2192,cat_p_3252,cat_p_2928,cat_p_3399,cat_p_3398,cat_p_3397,cat_p_3396,cat_p_3395,cat_p_3085,cat_p_2744,cat_p_3374,cat_p_3367,cat_p_3366,cat_p_3364,cat_p_1614,cat_p_1349,cat_p_3349,FPC
pragma: no-cache
cache-control: max-age=0, must-revalidate, no-cache, no-store
expires: Sat, 19 Dec 2020 20:42:58 GMT
content-security-policy: worker-src blob:; font-src *.bootstrapcdn.com *.gstatic.com *.googleapis.com *.hotjar.com *.fontawesome.com maxcdn.bootstrapcdn.com 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.multisafepay.com https://pay.google.com 'self'; frame-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com cdn.dnky.co webchat.dotdigital.com *.hotjar.com *.youtube.com *.youtube-nocookie.com *.multisafepay.com https://pay.google.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com www.googleadservices.com www.google-analytics.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com s.ytimg.com data: *.google.com *.google.nl stats.g.doubleclick.net *.googleadservices.com *.google-analytics.com *.gstatic.com *.multisafepay.com *.google.fr *.google.ie 'self' 'unsafe-inline'; script-src assets.adobedtm.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com secure.authorize.net test.authorize.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com video.google.com vimeo.com www.vimeo.com js.authorize.net jstest.authorize.net js.braintreegateway.com cdn-scripts.signifyd.com www.youtube.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net cdn.dnky.co api.comapi.com webchat.dotdigital.com *.facebook.net *.fontawesome.com *.giropay.de *.google.com *.googleapis.com *.gstatic.com *.hotjar.com *.googletagmanager.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com https://pay.google.com *.google.fr *.google.ie *.googleadservices.com googleads.g.doubleclick.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src getfirebug.com cdn.dnky.co webchat.dotdigital.com *.bootstrapcdn.com *.fontawesome.com *.giropay.de *.googleapis.com maxcdn.bootstrapcdn.com *.multisafepay.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com r1-t.trackedlink.net r2-t.trackedlink.net r3-t.trackedlink.net r1.trackedweb.net r2.trackedweb.net r3.trackedweb.net static.trackedweb.net api.comapi.com webchat.dotdigital.com *.bootstrapcdn.com *.gstatic.com *.googleadservices.com *.google-analytics.com *.hotjar.com *.hotjar.io wss://*.hotjar.com *.doubleclick.net https://*.smartlook.com https://*.smartlook.cloud *.multisafepay.com 'self' 'unsafe-inline'; child-src 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
|