Overview

URL mta3.guliobati-europe.com/click/np7/fy6/rs/8xx6/1lc/rs/Link-6/aHR0cHM6Ly9sb3Z2aXNhZHZlcnRpc2luZy5nbzJjbG91ZC5vcmcvYWZmX2M/b2ZmZXJfaWQ9NzA4JmFmZl9pZD0xMDg4JnNvdXJjZT1iJmZpbGVfaWQ9NTMxNw==.html
IP141.95.235.22
ASNOVH SAS
Location France
Report completed2022-09-27 09:26:04 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-27 2 guliobati-europe.com Sinkholed


Files

No files detected



Passive DNS (50)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2022-09-27 04:54:22 UTC 13.107.21.200
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 54.187.71.185
mnemonic passive DNS img-getpocket.cdn.mozilla.net (1) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS us-central1-adaptive-growth.cloudfunctions.net (2) 3390 2017-06-26 09:18:55 UTC 2022-09-27 07:22:05 UTC 216.239.36.54
mnemonic passive DNS errors.client.optimizely.com (2) 7604 2017-01-30 06:09:04 UTC 2022-09-26 13:57:49 UTC 3.215.196.133
mnemonic passive DNS cdn.hellofresh.com (1) 65617 2016-11-03 03:28:55 UTC 2022-09-27 09:18:07 UTC 104.18.42.99
mnemonic passive DNS img.hellofresh.com (7) 59671 2019-05-17 20:21:43 UTC 2022-09-27 08:15:21 UTC 23.38.201.77
mnemonic passive DNS cdn.solvvy.com (3) 15174 2019-03-23 10:21:49 UTC 2022-09-27 06:09:13 UTC 34.98.108.207
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-27 04:52:24 UTC 157.240.200.14
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-27 08:12:18 UTC 142.250.74.130
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-09-27 07:37:46 UTC 142.250.74.162
mnemonic passive DNS www.hellofresh.co.uk (51) 282010 2017-04-14 08:00:30 UTC 2022-09-26 20:37:06 UTC 104.18.109.55
mnemonic passive DNS ocsp.pki.goog (21) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS tms.hft.hellofresh.co.uk (7) 430987 2021-03-05 15:42:48 UTC 2022-09-26 08:10:23 UTC 34.110.220.115
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-27 05:08:12 UTC 142.250.74.3
mnemonic passive DNS ad.doubleclick.net (1) 186 2013-05-06 20:24:43 UTC 2022-09-27 04:59:31 UTC 216.58.207.198
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 16:23:46 UTC 2022-09-27 06:49:11 UTC 143.204.55.105
mnemonic passive DNS cdn.pdst.fm (1) 3387 2019-01-23 14:37:22 UTC 2022-09-27 07:22:05 UTC 35.244.142.80
mnemonic passive DNS logx.optimizely.com (5) 1233 2016-10-05 13:33:23 UTC 2022-09-26 06:51:09 UTC 3.217.242.142
mnemonic passive DNS r3.o.lencr.org (3) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.77.32
mnemonic passive DNS lovvisadvertising.go2cloud.org (1) 0 2019-11-19 05:40:48 UTC 2022-09-20 05:23:17 UTC 52.210.174.128 Domain (go2cloud.org) ranked at: 11575
mnemonic passive DNS www.googletagmanager.com (2) 75 2012-12-25 14:52:06 UTC 2022-09-27 04:39:28 UTC 142.250.74.72
mnemonic passive DNS www.hellofresh.com (4) 42555 2017-05-23 00:03:56 UTC 2022-09-27 08:15:21 UTC 104.18.42.99
mnemonic passive DNS a10561433763.cdn.optimizely.com (1) 89603 2019-09-18 20:32:39 UTC 2022-09-27 09:18:07 UTC 104.110.8.48
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-09-27 04:28:41 UTC 151.101.85.140
mnemonic passive DNS www.googleadservices.com (1) 107 2012-07-21 05:05:30 UTC 2022-09-27 03:24:25 UTC 216.58.207.194
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-27 04:52:54 UTC 143.204.55.84
mnemonic passive DNS cdn.smooch.io (1) 27410 2020-04-02 09:25:54 UTC 2022-09-26 20:04:59 UTC 143.204.55.27
mnemonic passive DNS www.hellofresh.co.uk (51) 282010 2017-04-14 08:00:30 UTC 2022-09-26 20:37:06 UTC 104.18.110.55
mnemonic passive DNS hf-website-live.s3-eu-west-1.amazonaws.com (1) 240985 2019-11-05 10:29:32 UTC 2022-09-27 08:15:21 UTC 52.92.0.218
mnemonic passive DNS collector-905.tvsquared.com (1) 97235 2017-02-02 15:07:33 UTC 2022-09-27 09:18:10 UTC 3.132.200.162
mnemonic passive DNS alb.reddit.com (2) 1521 2017-06-15 05:33:56 UTC 2022-09-27 05:08:51 UTC 151.101.85.140
mnemonic passive DNS i.geistm.com (1) 2299 2017-01-30 18:00:10 UTC 2022-09-27 03:16:19 UTC 52.205.193.150
mnemonic passive DNS script.hotjar.com (2) 887 2020-11-05 16:23:46 UTC 2022-09-27 05:02:29 UTC 143.204.55.40
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.25
mnemonic passive DNS mta3.guliobati-europe.com (1) 0 2022-02-04 13:26:42 UTC 2022-09-27 01:16:56 UTC 141.95.235.22 Unknown ranking
mnemonic passive DNS ocsp.sca1b.amazontrust.com (8) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-27 05:02:33 UTC 172.64.155.188
mnemonic passive DNS cdn.optimizely.com (1) 694 2018-03-19 19:09:21 UTC 2022-09-27 04:05:03 UTC 23.38.200.155
mnemonic passive DNS hellofresh-uk.648q.net (2) 0 2019-08-01 11:34:25 UTC 2022-09-26 17:27:02 UTC 52.210.225.248 Unknown ranking
mnemonic passive DNS www.ojrq.net (1) 8784 2017-08-21 02:02:26 UTC 2022-09-27 02:30:45 UTC 34.95.127.121
mnemonic passive DNS ocsp.godaddy.com (2) 698 2012-05-20 19:28:57 UTC 2022-09-26 04:29:02 UTC 192.124.249.24
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.164
mnemonic passive DNS o46710.ingest.sentry.io (1) 65751 2020-06-17 10:52:39 UTC 2022-09-27 08:15:22 UTC 34.120.195.249
mnemonic passive DNS cdn3.optimizely.com (1) 4377 2017-01-30 05:10:52 UTC 2022-09-27 05:23:12 UTC 104.110.9.127
mnemonic passive DNS api.solvvy.com (1) 15365 2017-01-31 13:20:11 UTC 2022-09-27 06:09:21 UTC 35.186.249.46
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-02 22:47:44 UTC 2022-09-27 04:52:22 UTC 64.233.162.156


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 141.95.235.22

Date UQ / IDS / BL URL IP
2022-10-19 16:03:04 +0000
0 - 0 - 9 mta3.guliobati-europe.com/view/m10/ea6/rs/7q7 (...) 141.95.235.22
2022-09-27 22:30:22 +0000
0 - 0 - 19 mta3.guliobati-europe.com/view/lip/drv/rs/4tr (...) 141.95.235.22
2022-09-27 10:25:22 +0000
0 - 0 - 1 mta3.guliobati-europe.com/click/np7/fy6/rs/8x (...) 141.95.235.22
2022-09-27 09:26:04 +0000
0 - 0 - 1 mta3.guliobati-europe.com/click/np7/fy6/rs/8x (...) 141.95.235.22

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-11-28 12:36:59 +0000
0 - 0 - 1 biecz.htw.pl/dokoncz_rownania_reakcji.php 176.31.124.7
2022-11-28 12:34:52 +0000
0 - 0 - 3 sdsando.com/az/i/ii/login.php 51.79.197.167
2022-11-28 12:12:34 +0000
0 - 0 - 8 getgreat-bonus.life/?u=8czkd0x&o=4tx8ary&cid= (...) 141.94.212.230
2022-11-28 12:01:34 +0000
0 - 0 - 1 psddesign.own0.com/t4449-topic 94.23.73.212
2022-11-28 11:35:59 +0000
0 - 0 - 14 provedornet.com.br/ 158.69.118.43

Last 5 reports on domain: guliobati-europe.com

Date UQ / IDS / BL URL IP
2022-10-31 07:35:23 +0000
0 - 0 - 15 mta2.guliobati-europe.com/view/iy0/b79/rs/7qc (...) 141.95.235.21
2022-10-19 16:03:04 +0000
0 - 0 - 9 mta3.guliobati-europe.com/view/m10/ea6/rs/7q7 (...) 141.95.235.22
2022-09-27 22:30:22 +0000
0 - 0 - 19 mta3.guliobati-europe.com/view/lip/drv/rs/4tr (...) 141.95.235.22
2022-09-27 10:25:22 +0000
0 - 0 - 1 mta3.guliobati-europe.com/click/np7/fy6/rs/8x (...) 141.95.235.22
2022-09-27 09:26:04 +0000
0 - 0 - 1 mta3.guliobati-europe.com/click/np7/fy6/rs/8x (...) 141.95.235.22

No other reports with similar screenshot



JavaScript

Executed Scripts (81)


Executed Evals (103)

#1 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 8fb5d5c0465c2f5d0cbb8abde65f30fa8ccee492010f05b016fd205eea76dec6

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(53),
        b = google_tag_manager["GTM-KMWJG5K"].macro(54);
    return a !== b ? !0 : !1
})();
                                    

#2 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 52db1561164c4a8a0a910cbb5745b805ff176a9e0f781b17a77d48bccc509f01

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(75) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#3 JavaScript::Eval (size: 172, repeated: 1) - SHA256: afd4a1c277bcbb932c3fb168831692205d5b98a0fefe5172d4532920b2cb16aa

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(179) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#4 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 25758ea97eff6db8fdd3adcc04e0d25f6e2a203996286c67192a715e71be4ea2

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(20) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#5 JavaScript::Eval (size: 124, repeated: 1) - SHA256: 7518baa3c45ad98a49b31fb31d9db444cf76af5b3578c251b5be90e274227ec3

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(35),
        b = google_tag_manager["GTM-KMWJG5K"].macro(36);
    return a || b
})();
                                    

#6 JavaScript::Eval (size: 742, repeated: 1) - SHA256: a6f0068a568f562227c127fdec708d377b6cb9d4b929e808e3d68b484457e029

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(37),
        b = google_tag_manager["GTM-KMWJG5K"].macro(38),
        c = google_tag_manager["GTM-KMWJG5K"].macro(39);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#7 JavaScript::Eval (size: 144, repeated: 1) - SHA256: bd18a961cd8adbb6919301427c3bb2d82cd89128850cad21b947e165254559b2

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(41)
    });
    return b
})();
                                    

#8 JavaScript::Eval (size: 1420, repeated: 1) - SHA256: 365849a256c30199b90de01ef34a1887f0afb4783fb3debb41f6b544f85953e2

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(43));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#9 JavaScript::Eval (size: 145, repeated: 1) - SHA256: 86c231d36052c17a2a28863c6dca3dc282e8003879d396fb4bf3e87a1cea6a39

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(180)
    });
    return b
})();
                                    

#10 JavaScript::Eval (size: 144, repeated: 1) - SHA256: cda90ee83882b7e1cc3a6bfa9e5525a80a6ab3628486b2b4d398dea1b7188d91

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(30)
    });
    return b
})();
                                    

#11 JavaScript::Eval (size: 437, repeated: 1) - SHA256: f58a94b1c4ce4beb544851d2eda967102edaf7a7f2f3a656666e38b8420a9146

                                        (function() {
    var a = 0,
        b = 0;
    "number" == typeof window.innerWidth ? (a = window.innerWidth, b = window.innerHeight) : document.documentElement && (document.documentElement.clientWidth || document.documentElement.clientHeight) ? (a = document.documentElement.clientWidth, b = document.documentElement.clientHeight) : document.body && (document.body.clientWidth || document.body.clientHeight) && (a = document.body.clientWidth, b = document.body.clientHeight);
    return a + "x" + b
})();
                                    

#12 JavaScript::Eval (size: 649, repeated: 1) - SHA256: 08d507c8cae3b6398a2c45478736f58c9c3b72fe7896500f5599e67de7aeacca

                                        (function() {
    var a = google_tag_manager["GTM-DLKG"].macro(94),
        b = google_tag_manager["GTM-DLKG"].macro(95),
        c = google_tag_manager["GTM-DLKG"].macro(96),
        d = "DeliveryIntervals SelectSurveyOption CancelSubscription Feedback MealPreferences BoxSize HeaderComponent Entered LeaveCancellation".split(" "); - 1 != a.indexOf("PauseSubmit") && -1 != google_tag_manager["GTM-DLKG"].macro(97).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : -1 != a.indexOf("Unpause") && -1 != google_tag_manager["GTM-DLKG"].macro(98).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : "Cancellation Funnel" == b && -1 != d.indexOf(c) && -1 !=
        a.indexOf("|") && (a = a.split("|")[0]);
    return a
})();
                                    

#13 JavaScript::Eval (size: 124, repeated: 1) - SHA256: b3a03dc9aea05624643b8a88995baa232c7eb6828159a82b59074fcae8f50770

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(12),
        b = google_tag_manager["GTM-KMWJG5K"].macro(13);
    return a || b
})();
                                    

#14 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 68f7ee6de6629a89bce506a19c24ad59446a450f5b6da44397d25091a255c051

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(22),
        b = google_tag_manager["GTM-KMWJG5K"].macro(23);
    return a !== b ? !0 : !1
})();
                                    

#15 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 744433a7faa9d3be040f96c5121385fb50fafd47d7a8f71c4ab5915c49a73527

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(123),
        b = google_tag_manager["GTM-KMWJG5K"].macro(124);
    return a !== b ? !0 : !1
})();
                                    

#16 JavaScript::Eval (size: 124, repeated: 1) - SHA256: 2a2e917d458347cb8a8305d1a4b4e9f108242759b07cd72c9cbd939864a41044

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(86),
        b = google_tag_manager["GTM-KMWJG5K"].macro(87);
    return a || b
})();
                                    

#17 JavaScript::Eval (size: 129, repeated: 1) - SHA256: aee1b17b6410a632fe455380187c8dcefa324cb31a9180dbe954773604fc8936

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(2),
        b = google_tag_manager["GTM-KMWJG5K"].macro(3);
    return a !== b ? !0 : !1
})();
                                    

#18 JavaScript::Eval (size: 122, repeated: 1) - SHA256: ae8fb5aa5d6a05c02199913bf8fac40dcf0f7737592a83be14614bda07d40e3e

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(8),
        b = google_tag_manager["GTM-KMWJG5K"].macro(9);
    return a || b
})();
                                    

#19 JavaScript::Eval (size: 145, repeated: 1) - SHA256: 67e4c6f8c57060002276cb028b040149f692a36331ea8898b7eb608bf03658b0

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(139)
    });
    return b
})();
                                    

#20 JavaScript::Eval (size: 1421, repeated: 1) - SHA256: 0a7a0b08762c11ef85c8a0a883984ad1acea5e82e1380b5670276aa64c10437e

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(141));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#21 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 81882f892220af83f228f13595964e1ddbd68a647dfb38d45ebee73acafcb0f0

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(10),
        b = google_tag_manager["GTM-KMWJG5K"].macro(11);
    return a !== b ? !0 : !1
})();
                                    

#22 JavaScript::Eval (size: 88, repeated: 1) - SHA256: c7c5a76efc739a55534f9d32c21e209cb6f605c3de6e3d6abc2f5a1158f652fc

                                        (function() {
    var a = window.navigator.userLanguage || window.navigator.language;
    return a
})();
                                    

#23 JavaScript::Eval (size: 62, repeated: 1) - SHA256: 80014c7a3ceacbb86a60c5045094d2abe8c04a98f4ff100852e1c16ed4127219

                                        (function() {
    var a = "chefschoice";
    return a.replace(/ /g, "")
})();
                                    

#24 JavaScript::Eval (size: 145, repeated: 1) - SHA256: a604e2ba6daaa51977a94459d8e264f393ad4772e10d7a040243a83cb1bc7f1d

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(109)
    });
    return b
})();
                                    

#25 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 1afb735e83f743e2e47ee1ca40d57366077915a04b8c70b206434da505e04fd1

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(144),
        b = google_tag_manager["GTM-KMWJG5K"].macro(145);
    return a !== b ? !0 : !1
})();
                                    

#26 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 514b94fe7768ccb31af594f7e8a92de846deab96c8d694aac0b6fb022e88df75

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(190),
        b = google_tag_manager["GTM-KMWJG5K"].macro(191);
    return a !== b ? !0 : !1
})();
                                    

#27 JavaScript::Eval (size: 43, repeated: 1) - SHA256: 007cddfce59ab3c7b0d940e987ebe2c27ee1c2a171052809bdfd91f94a66f1db

                                        (function() {
    return navigator.userAgent
})();
                                    

#28 JavaScript::Eval (size: 68, repeated: 1) - SHA256: dba9548a74568742c5f058172eb98a0b94a46265c49aec0d1d37c0b53aec661a

                                        (function() {
    return window.screen.width + "x" + window.screen.height
})();
                                    

#29 JavaScript::Eval (size: 649, repeated: 1) - SHA256: 7a902491fb1f07d3b29b469ed57f5f59a1daf2433ddb1a529cd1d17bbd18e0fd

                                        (function() {
    var a = google_tag_manager["GTM-DLKG"].macro(89),
        b = google_tag_manager["GTM-DLKG"].macro(90),
        c = google_tag_manager["GTM-DLKG"].macro(91),
        d = "DeliveryIntervals SelectSurveyOption CancelSubscription Feedback MealPreferences BoxSize HeaderComponent Entered LeaveCancellation".split(" "); - 1 != a.indexOf("PauseSubmit") && -1 != google_tag_manager["GTM-DLKG"].macro(92).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : -1 != a.indexOf("Unpause") && -1 != google_tag_manager["GTM-DLKG"].macro(93).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : "Cancellation Funnel" == b && -1 != d.indexOf(c) && -1 !=
        a.indexOf("|") && (a = a.split("|")[0]);
    return a
})();
                                    

#30 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 9d926848d3a55f4d14b4ff12f736b697cf9c38f594c2312fbf15aeac011b3794

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(140) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#31 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 9f906dd644bbf3ef1684ce0bdd2b60cd7eeb1b1a81b54790e0e48025dcfc137e

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(146),
        b = google_tag_manager["GTM-KMWJG5K"].macro(147);
    return a || b
})();
                                    

#32 JavaScript::Eval (size: 124, repeated: 1) - SHA256: 3c9e53d85b2bcb3c5e6e00590996f1a266e8e3469595f75ef15d428ad5777b3c

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(73),
        b = google_tag_manager["GTM-KMWJG5K"].macro(74);
    return a || b
})();
                                    

#33 JavaScript::Eval (size: 745, repeated: 1) - SHA256: dbc14edc4518e183b2256094b0637e82162338933b8f63c6ed66abdf57a3ec3d

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(149),
        b = google_tag_manager["GTM-KMWJG5K"].macro(150),
        c = google_tag_manager["GTM-KMWJG5K"].macro(151);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#34 JavaScript::Eval (size: 654, repeated: 1) - SHA256: cbe8f12c4ff2080522491d2357014c69ca9be8035275e9ae5b5f5e6a68d24652

                                        (function() {
    var a = google_tag_manager["GTM-DLKG"].macro(167),
        b = google_tag_manager["GTM-DLKG"].macro(168),
        c = google_tag_manager["GTM-DLKG"].macro(169),
        d = "DeliveryIntervals SelectSurveyOption CancelSubscription Feedback MealPreferences BoxSize HeaderComponent Entered LeaveCancellation".split(" "); - 1 != a.indexOf("PauseSubmit") && -1 != google_tag_manager["GTM-DLKG"].macro(170).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : -1 != a.indexOf("Unpause") && -1 != google_tag_manager["GTM-DLKG"].macro(171).indexOf("my-account/deliveries/calendar") ? a = "Calendar" + a : "Cancellation Funnel" == b && -1 != d.indexOf(c) && -1 !=
        a.indexOf("|") && (a = a.split("|")[0]);
    return a
})();
                                    

#35 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 05d3c1e4bab4504e5c8d8af9cbb64bd8f60036310e1446375963213cfc7e3449

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(174),
        b = google_tag_manager["GTM-KMWJG5K"].macro(175);
    return a || b
})();
                                    

#36 JavaScript::Eval (size: 199, repeated: 1) - SHA256: 0edb537e46c9d3920cc2b0e5fca62079bc5f04bff7eafc292be3a61cc380a877

                                        (function() {
    function d(a, e) {
        a = a.split("\x3d");
        c[a[0]] = a[1]
    }
    var b = document.cookie.match("(^|;)\\s*OptanonConsent\\s*\x3d\\s*([^;]+)").pop();
    b = b.split("\x26");
    var c = {};
    b.forEach(d);
    return c.groups
})();
                                    

#37 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 89d9af3e4f9775955c8639b5c9ca57d0ff08c46b9e26c3d40c9fe2e9ae1607b4

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(107) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#38 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 27f1e771aa1e0fca1e45b0597317d4528454f37085045e47a9ece78b3657974b

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(119),
        b = google_tag_manager["GTM-KMWJG5K"].macro(120);
    return a !== b ? !0 : !1
})();
                                    

#39 JavaScript::Eval (size: 75, repeated: 1) - SHA256: 77e3db49b60a10907a46e4e5b9407df87619e3c8f5764f3e70c5f5f26f9b0b16

                                        (function() {
    return document.location.pathname + document.location.search
})();
                                    

#40 JavaScript::Eval (size: 1421, repeated: 1) - SHA256: 604b9dd77d18664d445ea59c5ff4094e30cf553c7f29ce2ff3e1fc1b48cf66a0

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(116));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#41 JavaScript::Eval (size: 126, repeated: 1) - SHA256: d2d4e38a6e581aa70b294faa80eee14980a7381027b78c538e5256305e8487a0

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(159),
        b = google_tag_manager["GTM-KMWJG5K"].macro(160);
    return a || b
})();
                                    

#42 JavaScript::Eval (size: 2118, repeated: 1) - SHA256: 7330393c2ff9cd3ef1d510c439c8667dfa436580d7bd221aa6dc7534108778dd

                                        (function() {
    window.mobilecheck = function() {
        var a = !1,
            b = navigator.userAgent || navigator.vendor || window.opera;
        if (/(android|bb\d+|meego).+mobile|avantgo|bada\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|iris|kindle|lge |maemo|midp|mmp|mobile.+firefox|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\.(browser|link)|vodafone|wap|windows (ce|phone)|xda|xiino/i.test(b) || /1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\-(n|u)|c55\/|capi|ccwa|cdm\-|cell|chtm|cldc|cmd\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\-s|devi|dica|dmob|do(c|p)o|ds(12|\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\-|_)|g1 u|g560|gene|gf\-5|g\-mo|go(\.w|od)|gr(ad|un)|haie|hcit|hd\-(m|p|t)|hei\-|hi(pt|ta)|hp( i|ip)|hs\-c|ht(c(\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\-(20|go|ma)|i230|iac( |\-|\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\/)|klon|kpt |kwc\-|kyo(c|k)|le(no|xi)|lg( g|\/(k|l|u)|50|54|\-[a-w])|libw|lynx|m1\-w|m3ga|m50\/|ma(te|ui|xo)|mc(01|21|ca)|m\-cr|me(rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\-2|po(ck|rt|se)|prox|psio|pt\-g|qa\-a|qc(07|12|21|32|60|\-[2-7]|i\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\-|oo|p\-)|sdk\/|se(c(\-|0|1)|47|mc|nd|ri)|sgh\-|shar|sie(\-|m)|sk\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\-|v\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\-|tdg\-|tel(i|m)|tim\-|t\-mo|to(pl|sh)|ts(70|m\-|m3|m5)|tx\-9|up(\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\-|your|zeto|zte\-/i.test(b.substr(0,
                4))) a = !0;
        return a
    };
    return window.mobilecheck()
})();
                                    

#43 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 9a0fa5d12893f93429533a6538226949628416d6e4fbd6480e5fb55772ad7349

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(42) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#44 JavaScript::Eval (size: 131, repeated: 1) - SHA256: effb16215fb996fff6e9609f1a537b54a7aa600a20574caffa5a724a438fef1d

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(78),
        b = google_tag_manager["GTM-KMWJG5K"].macro(79);
    return a !== b ? !0 : !1
})();
                                    

#45 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 9a0105ebfda2a3075eb11cdd0f5257f9634bc2ccf3bc1f39e0022ab7facaffec

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(110) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#46 JavaScript::Eval (size: 131, repeated: 1) - SHA256: e418bb01ccb79e351b3e8595171f4bf431db161cea3216aad88b3ae3a83cb969

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(33),
        b = google_tag_manager["GTM-KMWJG5K"].macro(34);
    return a !== b ? !0 : !1
})();
                                    

#47 JavaScript::Eval (size: 745, repeated: 1) - SHA256: d0910a441069f8930de44beddfef07fa1a14edbc8ad4650870788e4a8e92e044

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(104),
        b = google_tag_manager["GTM-KMWJG5K"].macro(105),
        c = google_tag_manager["GTM-KMWJG5K"].macro(106);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#48 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 82c3f0883095ceecb3f86dacfb82b4e42d6044f356661d0b6349873787b86880

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(135) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#49 JavaScript::Eval (size: 124, repeated: 1) - SHA256: cf681a74fe8f638eda2c55ef3f9408f433093afe72f30f4c354ee1b9dd8c9c37

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(80),
        b = google_tag_manager["GTM-KMWJG5K"].macro(81);
    return a || b
})();
                                    

#50 JavaScript::Eval (size: 202, repeated: 1) - SHA256: 093aaf756cad74a9819597ed0c777bbba8d0818392d5c1754ddea3592d208b7e

                                        (function() {
    function d(a, e) {
        a = a.split("\x3d");
        c[a[0]] = a[1]
    }
    var b = document.cookie.match("(^|;)\\s*OptanonConsent\\s*\x3d\\s*([^;]+)").pop();
    b = b.split("\x26");
    var c = {};
    b.forEach(d);
    return c.consentId
})();
                                    

#51 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 0a5e5efced418b4359da4c54e648d1419639d0e873bb06fe57a44a44a1283d17

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(58) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#52 JavaScript::Eval (size: 124, repeated: 1) - SHA256: f4277a36b31b6e7628f8013410af8311e8b65eb074d8e04dd0c5dc55eecfbf28

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(24),
        b = google_tag_manager["GTM-KMWJG5K"].macro(25);
    return a || b
})();
                                    

#53 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 7396fcc3fb0aed9e89651d00e8bef34c74616b0f1157c8f5cb94f36f4ac53e8a

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(125),
        b = google_tag_manager["GTM-KMWJG5K"].macro(126);
    return a || b
})();
                                    

#54 JavaScript::Eval (size: 126, repeated: 1) - SHA256: ba24aec7b8f4b4022ee61975c291379dbfc78cdfc3b797ee48c84964b95abee7

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(133),
        b = google_tag_manager["GTM-KMWJG5K"].macro(134);
    return a || b
})();
                                    

#55 JavaScript::Eval (size: 745, repeated: 1) - SHA256: 3e5932c3d19dec2d86b337b810cfe57d3d66e012945b8b0e136785640affdf8b

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(176),
        b = google_tag_manager["GTM-KMWJG5K"].macro(177),
        c = google_tag_manager["GTM-KMWJG5K"].macro(178);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#56 JavaScript::Eval (size: 131, repeated: 1) - SHA256: cbc1553f00bc92d641337b340036e432acd4dbf7a092a58253dff9f38467b1f8

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(65),
        b = google_tag_manager["GTM-KMWJG5K"].macro(66);
    return a !== b ? !0 : !1
})();
                                    

#57 JavaScript::Eval (size: 47, repeated: 1) - SHA256: 0b0baeb1d9c708a2ebe0feced3d1f71ed6144e89b3e243f1f6d66df89a038fa1

                                        (function() {
    return (new Date).toISOString()
})();
                                    

#58 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 9cc82b58f5916a037ac968fb2664bc580fe7f63d6471ce4b1a85a7fe5fae4758

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(121),
        b = google_tag_manager["GTM-KMWJG5K"].macro(122);
    return a || b
})();
                                    

#59 JavaScript::Eval (size: 172, repeated: 1) - SHA256: bbc60521eacc6b830feb8dcc104ef4223bce8f8d73785832df13356fd5e5d09c

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(153) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#60 JavaScript::Eval (size: 745, repeated: 1) - SHA256: afae16b363a0c5ff17cdd67fedf2162f29f5f8e0544691bf91dc3fff2ff84790

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(136),
        b = google_tag_manager["GTM-KMWJG5K"].macro(137),
        c = google_tag_manager["GTM-KMWJG5K"].macro(138);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#61 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 3a959ddf8a93d70952a8b6d68fc7e10911ca62ae49c2b8a186b271df56b9a8f5

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(162),
        b = google_tag_manager["GTM-KMWJG5K"].macro(163);
    return a !== b ? !0 : !1
})();
                                    

#62 JavaScript::Eval (size: 1421, repeated: 1) - SHA256: d3857ff9f6e3554f094b54c10e50db5a72a7f4ada68e8e193110e76548df4c89

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(182));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#63 JavaScript::Eval (size: 742, repeated: 1) - SHA256: 542ccca887d9c2192725dd8108e1ae4e0f91f64b219a5a78d1896422a1d88632

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(26),
        b = google_tag_manager["GTM-KMWJG5K"].macro(27),
        c = google_tag_manager["GTM-KMWJG5K"].macro(28);
    if ("Cancellation Funnel" == a && ("Entered" == b || "LeaveCancellation" == b)) var d = c;
    else if ("Cancellation Funnel" == a && ("SelectSurveyOption" == b || "Feedback" == b)) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && "CancelSubscription" == b) d = c.split("|")[1];
    else if ("Cancellation Funnel" == a && ("DeliveryIntervals" == b || "MealPreferences" == b || "BoxSize" == b)) d = c.split("|")[1];
    else if (-1 != c.indexOf("PauseSubmit") || -1 != c.indexOf("Unpause")) d =
        c.split("|")[1];
    else if ("selectMealChoice" == a || "unselectMealChoice" == a || "submitMealChoice" == a || "StartMealChoice" == a || "viewRecipe" == a) d = c.split("|")[1];
    return d
})();
                                    

#64 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 912480075e0367537240243ea8476978122cef460cc5f56adb876277e6b82c7c

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(131),
        b = google_tag_manager["GTM-KMWJG5K"].macro(132);
    return a !== b ? !0 : !1
})();
                                    

#65 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 53c57c4973e9f2ef8207b1551912f92942d6cd6616cef77d96487dba8256a1e2

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(185),
        b = google_tag_manager["GTM-KMWJG5K"].macro(186);
    return a !== b ? !0 : !1
})();
                                    

#66 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 3f0c7eecf5ac16afe37ccadd807c739c02d39a9445aeb2961ad4a89d81714647

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(29) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#67 JavaScript::Eval (size: 119, repeated: 1) - SHA256: 2d6bcd6ec66c38b4fd6188fabae2457fdb75dad9f1b2dc00843071f838f61a38

                                        (function() {
    return document.location.hostname.match(/(everyplate.*\.?.*|greenchef.*\.?.*|hellofresh.*\.?.*)/gi)[0]
})();
                                    

#68 JavaScript::Eval (size: 1420, repeated: 1) - SHA256: 3e31d880dfba05e5a160c98acc7f8fb7dd959e26013c6d2bc0c7c18b80ac06f2

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(31));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#69 JavaScript::Eval (size: 171, repeated: 1) - SHA256: 20870305ee294540ba811847b1177218f9ac56714a18191166a5106224cc042e

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(40) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#70 JavaScript::Eval (size: 172, repeated: 1) - SHA256: b9eea489c773f906b2e712bc14c9554e40810f838349e784af3f3acea5d0f604

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(115) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#71 JavaScript::Eval (size: 124, repeated: 1) - SHA256: e9b0dc04651bd2bf398e9de678890f3803462397695a40fcde3c60f734daffad

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(18),
        b = google_tag_manager["GTM-KMWJG5K"].macro(19);
    return a || b
})();
                                    

#72 JavaScript::Eval (size: 124, repeated: 1) - SHA256: 4601e8184e43721bd4b066e32d5a291614b483f0dbf000bab3851a6019370a06

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(67),
        b = google_tag_manager["GTM-KMWJG5K"].macro(68);
    return a || b
})();
                                    

#73 JavaScript::Eval (size: 131, repeated: 1) - SHA256: d95a9c012e3279676228af078fbf816c0e894d65066ac99fc9bcbe7d409411c3

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(84),
        b = google_tag_manager["GTM-KMWJG5K"].macro(85);
    return a !== b ? !0 : !1
})();
                                    

#74 JavaScript::Eval (size: 145, repeated: 1) - SHA256: 5d2d94faedb886e45af365fcc6739c2b7a78dbcab1b0d9a828a779929ed81afa

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(114)
    });
    return b
})();
                                    

#75 JavaScript::Eval (size: 126, repeated: 1) - SHA256: 76bb2ec09347529c1c17f5043415cd8f4f67e4f0e11a9ab1876c757227bd8e11

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(187),
        b = google_tag_manager["GTM-KMWJG5K"].macro(188);
    return a || b
})();
                                    

#76 JavaScript::Eval (size: 122, repeated: 1) - SHA256: ceb1338183cf75cc34549f8ea404a24102e40a726e3bdc40bd3750294cba135d

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(4),
        b = google_tag_manager["GTM-KMWJG5K"].macro(5);
    return a || b
})();
                                    

#77 JavaScript::Eval (size: 155, repeated: 1) - SHA256: b9b41337af1d442f9178f3809aed6b6c084afe93ad1efd2f9e8b0862c7c18e93

                                        (function() {
    var a = "undefined";
    if (a && "undefined" != a) return !0;
    a = "undefined";
    var b = "undefined";
    return "coupons" == a && b.includes("coupon add success") ? !0 : !1
})();
                                    

#78 JavaScript::Eval (size: 131, repeated: 1) - SHA256: fb7672f777d44c5911e592a7f90d4c4a2779e0f1952b5fcef2f7fad178201d84

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(45),
        b = google_tag_manager["GTM-KMWJG5K"].macro(46);
    return a !== b ? !0 : !1
})();
                                    

#79 JavaScript::Eval (size: 339, repeated: 1) - SHA256: 6cda750f79e6dbbd767f289f85c5be0f0e88fc37608f433e6fec48965f7a2fc5

                                        (function() {
    var a = -1 != document.location.pathname.indexOf("/shop") ? "shop" : -1 != document.location.pathname.indexOf("/wine") ? "wineclub" : -1 != document.location.pathname.indexOf("/checkout") && null != document.getElementById("checkout-type") ? document.getElementById("checkout-type").value : "regular";
    "undefined" == typeof a && (a = "regular");
    return a
})();
                                    

#80 JavaScript::Eval (size: 1421, repeated: 1) - SHA256: 34286173d5ed458d52f1b20e8c74acc7b2d8a8391250fd32bb0949c6ab047d9f

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(111));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#81 JavaScript::Eval (size: 111, repeated: 1) - SHA256: f9bb3f9435c3c015eca5a16d661e9dafdba05ee42575b1a3995aeb905a8b7739

                                        var $ = optimizely.get('jquery');
navigator && navigator.userAgent && !navigator.userAgent.match(/HelloFresh/i);
                                    

#82 JavaScript::Eval (size: 55, repeated: 1) - SHA256: 7298340c9215e92c591ef8f21c78035181c3cc1ffd71ccc91e062f563f6e3fac

                                        (function() {
    return window.screen.colorDepth + "-bit"
})();
                                    

#83 JavaScript::Eval (size: 209, repeated: 1) - SHA256: de77b26846de0b68f5beb8506a369cbbd714cfd0c90db0df05e0f7018b910591

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        if (a.hasOwnProperty("gaEventAction") && "coupons" == a.gaEventCategory && a.gaEventAction.includes("coupon add success")) return a
    });
    return b[0].gaEventLabel
})();
                                    

#84 JavaScript::Eval (size: 230, repeated: 1) - SHA256: 1d55d87702f6593e6ad943d20246f8abcc542faaed8524dff897dd67f6b2a54c

                                        (function() {
    var c = "\/pages\/resolution",
        b = void 0,
        a = /^\/recipes\/((?!-5).)*$/;
    a.test(c) && (b = "Recipe Collection");
    a = /^\/recipes\/.*-5.*$/;
    a.test(c) && (b = "Individual Recipe");
    a = /^\/recipes\/$/;
    a.test(c) && (b = "Recipe Hub");
    return b
})();
                                    

#85 JavaScript::Eval (size: 1420, repeated: 1) - SHA256: bf7dd5a8610df8cf8e080d76282b8ea2fe1e7053708aa638bc0fc0ad7814b94c

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(59));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#86 JavaScript::Eval (size: 1421, repeated: 1) - SHA256: 164044c8af82337ba00bdb50745a93a4a231614778e166265c9dd2b485ee7e66

                                        (function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-KMWJG5K"].macro(154));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
                                    

#87 JavaScript::Eval (size: 124, repeated: 1) - SHA256: d1f8fa9614ab7de827cf4dcca3ab99fa736713410f161fd25149ce67f848ffc2

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(55),
        b = google_tag_manager["GTM-KMWJG5K"].macro(56);
    return a || b
})();
                                    

#88 JavaScript::Eval (size: 126, repeated: 1) - SHA256: dae0475e6d90889ec454ba4dd1b094378048e265e6c50d5601a995e7d09357e2

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(102),
        b = google_tag_manager["GTM-KMWJG5K"].macro(103);
    return a || b
})();
                                    

#89 JavaScript::Eval (size: 86, repeated: 1) - SHA256: fabd1dcad9208ea69544e02593f15f7184726d544d1806a0df5f3ce40548069a

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(108);
    if (a) return "UK-" + a
})();
                                    

#90 JavaScript::Eval (size: 145, repeated: 1) - SHA256: f32be2ce37a4d194323c54eda2e487346b04e8e5798fb7fd92821bb1b9705cce

                                        (function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-KMWJG5K"].macro(152)
    });
    return b
})();
                                    

#91 JavaScript::Eval (size: 126, repeated: 1) - SHA256: ed9962283db0ebd42b14bc5f76571f3a868686424bcea774201145619c6342e4

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(192),
        b = google_tag_manager["GTM-KMWJG5K"].macro(193);
    return a || b
})();
                                    

#92 JavaScript::Eval (size: 129, repeated: 1) - SHA256: 8185881c8be8b8367900c0c2f64ccf6efc22f3f5fb9ec05cb1b3176114570e45

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(6),
        b = google_tag_manager["GTM-KMWJG5K"].macro(7);
    return a !== b ? !0 : !1
})();
                                    

#93 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 577add0e5bcf5ece009b95049bfa183c8259a55ee0e7524b859036252130f612

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(157),
        b = google_tag_manager["GTM-KMWJG5K"].macro(158);
    return a !== b ? !0 : !1
})();
                                    

#94 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 5a212eee8f3889faadaf12577675adfddce0add0f7b2c98f6162551e9f711346

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(172),
        b = google_tag_manager["GTM-KMWJG5K"].macro(173);
    return a !== b ? !0 : !1
})();
                                    

#95 JavaScript::Eval (size: 131, repeated: 1) - SHA256: cd599498639bbffea9944d0fdeb6cc2a97b76c52a86a6cb0b4b8470975e47ee0

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(16),
        b = google_tag_manager["GTM-KMWJG5K"].macro(17);
    return a !== b ? !0 : !1
})();
                                    

#96 JavaScript::Eval (size: 124, repeated: 1) - SHA256: 30b615be1b8e0389e84aa1bab64b64df18c7e1a77d6d99e9b19e68e754ee4198

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(47),
        b = google_tag_manager["GTM-KMWJG5K"].macro(48);
    return a || b
})();
                                    

#97 JavaScript::Eval (size: 171, repeated: 1) - SHA256: c035471bb608012fd2b80a4fc757b6876ef9b6c85f121d64636a40416fc866bd

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(57) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#98 JavaScript::Eval (size: 68, repeated: 1) - SHA256: fd2b744565245f173e7f9fea939d9298f44569201f3cd2ab0ef094cbc89bfaa3

                                        (function() {
    var a = localStorage.getItem("email_sha256");
    return a
})();
                                    

#99 JavaScript::Eval (size: 131, repeated: 1) - SHA256: b87f3661b6a19e72f2b15442eacaca2c24d2a1e4e0efb09de79f385ff332fe35

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(71),
        b = google_tag_manager["GTM-KMWJG5K"].macro(72);
    return a !== b ? !0 : !1
})();
                                    

#100 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 9fd119feda8db60dff018cb417bdbf0abef59d3f1e899426aadd4200032710ce

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(148) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#101 JavaScript::Eval (size: 172, repeated: 1) - SHA256: 2729b04ef78f533da9f0f0ed020c473c118337e896d5b64bfc84b6946a005b50

                                        (function() {
    return google_tag_manager["GTM-KMWJG5K"].macro(181) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
                                    

#102 JavaScript::Eval (size: 133, repeated: 1) - SHA256: 3eef8d9ad9d1dc064d6b46e75cc6947fb756e20e64d7603965748e66d5fbe775

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(100),
        b = google_tag_manager["GTM-KMWJG5K"].macro(101);
    return a !== b ? !0 : !1
})();
                                    

#103 JavaScript::Eval (size: 126, repeated: 1) - SHA256: c2f02be780e58ece47c7e2b188792bbaa7050424deba1eafa2bdbeef8e440270

                                        (function() {
    var a = google_tag_manager["GTM-KMWJG5K"].macro(164),
        b = google_tag_manager["GTM-KMWJG5K"].macro(165);
    return a || b
})();
                                    

Executed Writes (0)



HTTP Transactions (163)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 08:53:36 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jdc8RTw8xcdbsGHqL2d_5yxXBvJ53J8dxKjOAvolQ0CngvkNtJ8Ulg==
Age: 1936


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11007
Expires: Tue, 27 Sep 2022 12:29:19 GMT
Date: Tue, 27 Sep 2022 09:25:52 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: phVunEAfLdWMqjxi3TaBYbvFKQ9cWY0uA9hrFs2-R2Z1rGVLqmDOdA==
age: 99
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 09:25:52 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 09:10:46 GMT
Expires: Tue, 27 Sep 2022 09:38:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4n4LFnRb5h4ediU-MMHkcF0IwEfBicj467PhR4C0ypmozEEUAfSWNw==
Age: 907


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /click/np7/fy6/rs/8xx6/1lc/rs/Link-6/aHR0cHM6Ly9sb3Z2aXNhZHZlcnRpc2luZy5nbzJjbG91ZC5vcmcvYWZmX2M/b2ZmZXJfaWQ9NzA4JmFmZl9pZD0xMDg4JnNvdXJjZT1iJmZpbGVfaWQ9NTMxNw==.html HTTP/1.1 
Host: mta3.guliobati-europe.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         141.95.235.22
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 27 Sep 2022 09:25:52 GMT
Server: Apache/2.4.38 (Debian)
Location: https://lovvisadvertising.go2cloud.org/aff_c?offer_id=708&aff_id=1088&source=b&file_id=5317
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6240
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:53 GMT
Last-Modified: Tue, 27 Sep 2022 07:41:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:53 GMT
Last-Modified: Tue, 27 Sep 2022 09:21:54 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P4BigXprwIsC2WKabRHRvNwaEwZmAxHSU-QErVCqYtzfY2IMgZRkLQ==
Age: 239

                                        
                                            GET /aff_c?offer_id=708&aff_id=1088&source=b&file_id=5317 HTTP/1.1 
Host: lovvisadvertising.go2cloud.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         52.210.174.128
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Tue, 27 Sep 2022 09:25:53 GMT
Content-Length: 237
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Location: https://hellofresh-uk.648q.net/c/2514511/1331715/7901
P3p: CP="NOI CUR OUR NOR INT"
Pragma: no-cache
Set-Cookie: enc_aff_session_708=ENC03454c519f5b9b9fb8d38dd2e7a9468fe0c5ca9f506139c096dd5d364b152da281dc7bdf2e18f2a984b34d00f0f1e7c30b597a0b6836c03df253d5451a966efbdf06c25831e4b5897e37a003afeddec3071b491537ebfd79e19b773aac0c7009e5fca47f45beab14f0d3e15eadce52b13957993d8b28647e4e433c2c964339b8b91eb1bb17; expires=Thu, 27 Oct 2022 09:25:53 GMT; path=/; SameSite=None; Secure ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiI5Ni4wIiwibW9iaWxlX2NhcnJpZXIiOiI/IiwidXNlcl9hZ2VudCI6Ik1vemlsbGEvNS4wIChYMTE7IExpbnV4IFg4Nl82NDsgUnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wIiwiYWNjZXB0X2xhbmd1YWdlIjoiZW4tVVMsZW47cT0wLjUiLCJjb25uZWN0aW9uX3NwZWVkIjoiYnJvYWRiYW5kIn0=; expires=Thu, 21 Aug 2025 20:05:53 GMT; path=/; SameSite=None; Secure
Tracking_id: 10233f3ea721dc42035d8495070682
X-Robots-Tag: noindex, nofollow
Access-Control-Allow-Origin: *
X-Request-Id: 8edaeddc84446dd9f0b2fb3d9e89685b
Access-Control-Allow-Headers: Tune-SDK-Version


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   237
Md5:    3fa4b1d6f2de4493e99d361369176e14
Sha1:   c6d89d25d52b7f082f34e30171d466c28ffefcb5
Sha256: fc277a90ff94304ed00f28385468d2501a4b4e64d293a7211775b9a50789d27c
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TIYT88dH0itwT+TWMeID/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.71.185
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: spb6WoI0evEe/9BDiOCnxfAfK5o=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:53 GMT
Last-Modified: Tue, 27 Sep 2022 07:54:49 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MFtV0wLGYYh2vrVm9VXZAKLXir1mltrGGwOSsWzNMVBRiX0miQOz9g==
Age: 5464

                                        
                                            GET /c/2514511/1331715/7901 HTTP/1.1 
Host: hellofresh-uk.648q.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         52.210.225.248
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:25:53 GMT
content-length: 168
location: https://www.ojrq.net/p/?return=https%3A%2F%2Fhellofresh-uk.648q.net%2Fc%2F2514511%2F1331715%2F7901%3Flevel%3D1&cid=7901&tpsync=yes
set-cookie: AWSALB=uToJk/R8/l8T/owxfsF6n69luPV0RBh9Vp8tizVRQIWY9pJTPSlIp/TcYHt/g9bNGv9nn7uvm+cUUzQ8cHD3fjdBAuCW6s6clKcPvRSvq3qwORZxbl9VednPj7qa; Expires=Tue, 04 Oct 2022 09:25:53 GMT; Path=/ AWSALBCORS=uToJk/R8/l8T/owxfsF6n69luPV0RBh9Vp8tizVRQIWY9pJTPSlIp/TcYHt/g9bNGv9nn7uvm+cUUzQ8cHD3fjdBAuCW6s6clKcPvRSvq3qwORZxbl9VednPj7qa; Expires=Tue, 04 Oct 2022 09:25:53 GMT; Path=/; SameSite=None; Secure
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 27 Sep 2022 09:25:53 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   168
Md5:    f42a5978ae681ac932e2dfc08fe48b82
Sha1:   d860fa3e6cf8136b2cf53650939380603b46970a
Sha256: dfc1065fbf8aaac63167b8194bc4fe74110701e4176b5de1a351f365472db6f1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:53 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 05:55:43 GMT
Expires: Sat, 01 Oct 2022 05:55:42 GMT
Etag: "f80af77a4f80f4a99e00036fddef62d5be7f86a0"
Cache-Control: max-age=332388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751331d29abdb527-OSL

                                        
                                            GET /p/?return=https%3A%2F%2Fhellofresh-uk.648q.net%2Fc%2F2514511%2F1331715%2F7901%3Flevel%3D1&cid=7901&tpsync=yes HTTP/1.1 
Host: www.ojrq.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: brwsr=36bfc155-3e22-11ed-815c-e90fbb888e4e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.95.127.121
HTTP/2 302 Found
                                        
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 27 Sep 2022 09:25:53 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
set-cookie: brwsr=36bfc155-3e22-11ed-815c-e90fbb888e4e; Domain=.ojrq.net; Path=/; Secure; Max-Age=62208000; Expires=Mon, 16 Sep 2024 09:25:53 GMT; HttpOnly; SameSite=None
location: https://hellofresh-uk.648q.net/c/2514511/1331715/7901?level=1&brwsr=36bfc155-3e22-11ed-815c-e90fbb888e4e&brwsrsig=zbISOp3d5x5wz37VGowAX1t03bGV7Q
content-length: 0
date: Tue, 27 Sep 2022 09:25:53 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /c/2514511/1331715/7901?level=1&brwsr=36bfc155-3e22-11ed-815c-e90fbb888e4e&brwsrsig=zbISOp3d5x5wz37VGowAX1t03bGV7Q HTTP/1.1 
Host: hellofresh-uk.648q.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=uToJk/R8/l8T/owxfsF6n69luPV0RBh9Vp8tizVRQIWY9pJTPSlIp/TcYHt/g9bNGv9nn7uvm+cUUzQ8cHD3fjdBAuCW6s6clKcPvRSvq3qwORZxbl9VednPj7qa; AWSALBCORS=uToJk/R8/l8T/owxfsF6n69luPV0RBh9Vp8tizVRQIWY9pJTPSlIp/TcYHt/g9bNGv9nn7uvm+cUUzQ8cHD3fjdBAuCW6s6clKcPvRSvq3qwORZxbl9VednPj7qa
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         52.210.225.248
HTTP/2 301 Moved Permanently
                                        
date: Tue, 27 Sep 2022 09:25:53 GMT
content-length: 0
location: http://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
set-cookie: AWSALB=cnsPVLiFrEjqt1EqE9ViPrXFd0ZD2PFcwuIfPTYDalxDYvKymnmmjElk0LFSDD8AQjBMoQ84/L9KtrlTsUGJtNxOYJQ2XD5nTSEIge4tKHbj/XjIRtVzFY9fK26r; Expires=Tue, 04 Oct 2022 09:25:53 GMT; Path=/ AWSALBCORS=cnsPVLiFrEjqt1EqE9ViPrXFd0ZD2PFcwuIfPTYDalxDYvKymnmmjElk0LFSDD8AQjBMoQ84/L9KtrlTsUGJtNxOYJQ2XD5nTSEIge4tKHbj/XjIRtVzFY9fK26r; Expires=Tue, 04 Oct 2022 09:25:53 GMT; Path=/; SameSite=None; Secure brwsr=36bfc155-3e22-11ed-815c-e90fbb888e4e; Domain=.648q.net; Path=/; Secure; Max-Age=62208000; Expires=Mon, 16 Sep 2024 09:25:53 GMT; HttpOnly; SameSite=None irld=L2e2WC8XG4xQrVEyRpHUkE3bP0P220C1miQQox2n3hRzv3QBC; Path=/; Secure; Max-Age=15552000; Expires=Sun, 26 Mar 2023 09:25:53 GMT; HttpOnly; SameSite=None
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 27 Sep 2022 09:25:53 GMT
p3p: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
X-Firefox-Spdy: h2

                                        
                                            GET /pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.18.110.55
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 27 Sep 2022 09:25:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 27 Sep 2022 10:25:53 GMT
Location: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Set-Cookie: __cf_bm=h2mlPwHCsjf_C.YCnhU1UshTfxcADyzm1vnGaDP4umU-1664270753-0-AWrSCjPh3w7HpyUJlMGzVfcem4KjoIU2vmHj57aoT5Vr1g2T1Wu934UbxB/sdokjuEHrDwgdbNFF2xaa3F3b5qU=; path=/; expires=Tue, 27-Sep-22 09:55:53 GMT; domain=.hellofresh.co.uk; HttpOnly; SameSite=None __cfruid=c59f755455e6bf4a23993ba58ffefa7b07c4e4ce-1664270753; path=/; domain=.hellofresh.co.uk; HttpOnly
Server: cloudflare
CF-RAY: 751331d37ab4b4f9-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:53 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 05:55:43 GMT
Expires: Sat, 01 Oct 2022 05:55:42 GMT
Etag: "f80af77a4f80f4a99e00036fddef62d5be7f86a0"
Cache-Control: max-age=332388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751331d34be7b527-OSL

                                        
                                            GET /assets/fonts/source-sans-pro-v11/latin-regular.woff2 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
content-length: 15908
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: "76d8cbb0496cb184eff868152b67ad45"
last-modified: Thu, 21 Feb 2019 10:26:05 GMT
x-amz-id-2: 5lPvVskWGEg7Zwt8sRZVHr+MgEsGjRN96pEfqW/PPVZI9xSieQdkNzjpYLZeCDHTk6nKaagBKp4=
x-amz-request-id: YDN64F1M15XKKXFW
x-envoy-upstream-service-time: 43
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5156735
expires: Wed, 27 Sep 2023 09:25:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8dcd1b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15908, version 1.0\012- data
Size:   15908
Md5:    76d8cbb0496cb184eff868152b67ad45
Sha1:   d4ae4e38ca7bb859c359e9df16efeb35a009053c
Sha256: cb992eae898417162c48b37712991d9ad8053c4a64fce51aff195edc69dc35f2
                                        
                                            GET /assets/fonts/agrandir-v1/Agrandir-HelloFresh_Regular.woff2 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
content-length: 23704
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: "021fc9cc68ba65a1b90ac6cc63f14e6b"
last-modified: Tue, 02 Mar 2021 13:26:12 GMT
x-amz-id-2: NwC/n4WszBUIbK0pTlI0srgQlv2JJUYvdrHpviRYdDuOM0xs8ID9aCfILA3uDDNtIma5jLj6GHYqLPPK9UfUWA==
x-amz-request-id: 8SYN3EQPGKYYN9C6
x-envoy-upstream-service-time: 30
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 6004898
expires: Tue, 27 Sep 2022 13:25:54 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8dcd7b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 23704, version 3.-32768\012- data
Size:   23704
Md5:    021fc9cc68ba65a1b90ac6cc63f14e6b
Sha1:   80d9a94446ef23cfbf8b84129f4e3006e85af3f2
Sha256: 460c21e6ad4856a0b727beb6175ecf7dad82ae8f91d4b9639ba693e8ce8409cb
                                        
                                            GET /assets/fonts/source-sans-pro-v11/latin-600.woff2 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
content-length: 15784
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: "b3866d3fbe239e8754f4db4795ce2817"
last-modified: Thu, 21 Feb 2019 10:26:04 GMT
x-amz-id-2: id1mWUxJCQWNCb+SEeGlSDtnePRu9kRvxdyatGZAMpHSZemoKzU3MsiTjufu1yM06TZMpA+Ul/g=
x-amz-request-id: 6E8HSNKYYJMCGYH7
x-envoy-upstream-service-time: 45
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5599472
expires: Wed, 27 Sep 2023 09:25:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8dcddb4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15784, version 1.0\012- data
Size:   15784
Md5:    b3866d3fbe239e8754f4db4795ce2817
Sha1:   a0c7bead0f83f1a6419f026c899de3af7c9e55e2
Sha256: d8381e66783011957eabadb622d7899061bf93e78fff38ebfe00ab743d6c8e60
                                        
                                            GET /js/10774230797.js HTTP/1.1 
Host: cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.155
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-amz-id-2: C5BsZKGWoRdX+DeOCy13BVUTLcC2NSOWGABrvuGSmNzoCa5n0eVw9Uv8jXLW8hWwtXtOlIweKsA=
x-amz-request-id: KPVY5SWW37NX6YSZ
x-amz-replication-status: PENDING
last-modified: Tue, 27 Sep 2022 07:37:29 GMT
etag: "570ff02f051373be3e8dca66a35af7f4"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 18286
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: DjnyNgx1VoZlYXdLWXp71pxX_OxSJsic
accept-ranges: bytes
server: AmazonS3
content-length: 191601
vary: Accept-Encoding
cache-control: max-age=600
date: Tue, 27 Sep 2022 09:25:54 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65468)
Size:   191601
Md5:    570ff02f051373be3e8dca66a35af7f4
Sha1:   4fb19e1425f4fe2ba511bbae2b5109141de7a372
Sha256: 17d381c36e4dda280d9d5b2082c3f4303cf8c84ce45e5b9dd64a83b0dff7b709
                                        
                                            GET /assets/releases/web-infra/_next/static/chunks/81472.55ad46a12e8871a7.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"ce23ca4b9c560b8c52bdba3d28b381da"
last-modified: Mon, 29 Aug 2022 13:07:56 GMT
x-amz-id-2: sVvmQebu2NOxjDro0HqDGx5KBad+PCV8Dg+JRjoQKNZ5Qh+/O+K0nHmVz0MpXKVCsdis6P0ZRJI=
x-amz-request-id: F059KG13MF8TKSV3
x-envoy-upstream-service-time: 23
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 377141
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8fd0fb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13279)
Size:   5639
Md5:    6fa9b72660d1a00d3384627b003841ce
Sha1:   91f3df2cc5937dca38f0ef9055e62d0933f8e16f
Sha256: 61d6a10185cebc961466fe53b15e794fc6c49c4e9ed78d32731ac31d9e91c82f
                                        
                                            GET /logo/ModularLandingPages/Logo6.png HTTP/1.1 
Host: cdn.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.42.99
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
content-length: 5987
x-amz-id-2: 399Ksut/qiB4JkcBNwQmHgUritAVbK2NjVKUv2+z2IRybCGoacPWq5Js8nCr2Imd5kZSOZaEh74=
x-amz-request-id: 9VD43S3PXZVATMS0
last-modified: Fri, 02 Oct 2020 13:44:13 GMT
etag: "903a2c519b88166dfcff2d3b48b77a90"
x-amz-version-id: null
cf-cache-status: HIT
age: 15165857
expires: Tue, 27 Sep 2022 13:25:54 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cf_bm=O3Rmuql4vlT8XXm18fhkLdmtRu9izQYOulxu.oK2Q_0-1664270754-0-AbUQiBFP6YDIAhOhx3hp4OjDuAa2E3fRwrfziuibnjFevLNLmzfT9cAwQbGDY1YtSTsg3JPItmvXg8h3BYVwQYRBoYAKXF9VjqNOgkXrKnOd; path=/; expires=Tue, 27-Sep-22 09:55:54 GMT; domain=.hellofresh.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d9f8c50b02-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 210 x 68, 8-bit/color RGBA, non-interlaced\012- data
Size:   5987
Md5:    903a2c519b88166dfcff2d3b48b77a90
Sha1:   f9a6bb9119537c3292ebcc41fc237e8a253f529e
Sha256: a83a5880c00ded3890a17e5e1eb70f5792cd631bfe45bedba840b9a6c7aab118
                                        
                                            GET /f_auto,fl_lossy,q_auto/hellofresh_website/gb/cms/landing_pages/resolution/reason-check-mark-copy.png HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="reason-check-mark-copy.webp"
etag: "3b01505325a88404def34c152c93bfc9"
last-modified: Sat, 10 Oct 2020 08:09:04 GMT
content-length: 428
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=4;start=2022-09-27T09:25:54.897Z;desc=hit,rtt;dur=4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   428
Md5:    3b01505325a88404def34c152c93bfc9
Sha1:   7a523ae16ffd7b6f2f1e1e78b13db3c6a8df2050
Sha256: 6e5cf776282520195cb89b92b94cf6a402bde62df75be668fffd59002058b41d
                                        
                                            GET /f_auto,fl_lossy,q_auto/hellofresh_website/be/cms/landing_pages/icon-facebook.svg HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="icon-facebook.webp"
etag: "25a295a551b7b2b421c8297166eabe03"
last-modified: Fri, 11 Feb 2022 10:44:31 GMT
content-length: 148
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=3;start=2022-09-27T09:25:54.901Z;desc=hit,rtt;dur=4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   148
Md5:    25a295a551b7b2b421c8297166eabe03
Sha1:   7c65f16425576ddaa1bd0a8ebd05fee8e99af6c3
Sha256: e05fe32b622f725d30adeeda1b91502830182d340a97ba4f4a1bf27b24b2fb0f
                                        
                                            GET /f_auto,fl_lossy,q_auto/hellofresh_website/be/cms/landing_pages/icon-twitter.svg HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="icon-twitter.webp"
etag: "ea783665af7249cf489f25371db8e8cf"
last-modified: Fri, 11 Feb 2022 11:02:16 GMT
content-length: 228
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=3;start=2022-09-27T09:25:54.906Z;desc=hit,rtt;dur=3
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   228
Md5:    ea783665af7249cf489f25371db8e8cf
Sha1:   12b454fa7f3ad58d23af45dd5fd8ee7bde185e11
Sha256: 4018aa045c1f0ab31d6b0adb53d8b9c09e442cb8136b8837b77acf8ecb27c662
                                        
                                            GET /assets/releases/web-infra/_next/static/chunks/15048.990d1bed5a7eb080.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"34a1f8a0e9f60e5c55e4e4841f5f19f6"
last-modified: Mon, 29 Aug 2022 13:07:53 GMT
x-amz-id-2: XEVI+OHm02Bu/UiQjnkZiiURdhBipSoSvmjgvaSMX7En9sZawjPP7HFn2mHrly35MlQJx0cPy78=
x-amz-request-id: F0501MZ1EGJYGVJN
x-envoy-upstream-service-time: 62
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2491914
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8ecf3b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8886)
Size:   2299
Md5:    831d2198af8be8d9baf9564965199f9d
Sha1:   4841a127eb9195b18e838801e0f35daedec75889
Sha256: 1c778b9e6947b5e850daa9ab8f1aa7c4174f49a9a5d3f54fbdd6079c06de0b50
                                        
                                            GET /assets/releases/web-infra/_next/static/0.7871.0/_buildManifest.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"8f05db6fe45a82af325158937d1985e5"
last-modified: Tue, 27 Sep 2022 09:07:21 GMT
x-amz-id-2: WO2Dyh7mdNYyrY0s9f4Q+QZBbjU/BP916ce+an/K3ZPY+GB2SXyV8BzGUW4sexwa8zjgCNd/aR4=
x-amz-request-id: Q7JC09WRVQAQR5FR
x-envoy-upstream-service-time: 79
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d93d7cb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59682), with no line terminators
Size:   15246
Md5:    0dd7d09267b977c99034cc858ffed6ed
Sha1:   7ea1bafb7b7a472471ccc88b6b218e41f9f1d4d8
Sha256: 4e29e38c5ef291f0ad7d2fb144a6d5600cefeb3bade416368634ecf8794f947b
                                        
                                            GET /assets/releases/web-infra/_next/static/0.7871.0/_middlewareManifest.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"7c3f7e060745668041278118c0bb3d6d"
last-modified: Tue, 27 Sep 2022 09:07:21 GMT
x-amz-id-2: D5czsUaeCF6Dy5PZO0ragNIASd45xgxnXeQ/JoGByqE/o8/agxeVNRvKh0OuqcCM+nNfLjTUgto=
x-amz-request-id: Q7J53Q0M8QSDDYYS
x-envoy-upstream-service-time: 13
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d93d7eb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   9216
Md5:    9a22bea585c52002c029e09c3aba8b08
Sha1:   602ae577f0e1dc56d1e79ca2cf5ec5cbe24ce3b1
Sha256: 83f76722a853f6855bab6d74b0831a1c22f1f82abdde1a9a673101c4a3d2f295
                                        
                                            GET /assets/releases/web-infra/_next/static/chunks/72916-0f6acff2f6580292.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"79bf121075c87fd981b41f410cf62800"
last-modified: Mon, 26 Sep 2022 12:40:12 GMT
x-amz-id-2: 5z0Sb9m+48PIkP+epvA4YWh7iVkK8QgOC7DIu06UttdbARV+LLU2zrqx72xS1eIb4zZfl3WG40Y=
x-amz-request-id: DAV7FKHYY881PDXP
x-envoy-upstream-service-time: 35
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 70389
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d92d7ab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16036)
Size:   13191
Md5:    c573b5ffd60be5835d8767be947dc9cb
Sha1:   31d363cf52ee1c234b19a0ec333bdc691279a810
Sha256: c5adbd70b833b96401986f454afd91797c4fa62a2ed74767358af44f16a7f415
                                        
                                            GET /assets/releases/web-infra/_next/static/chunks/pages/landing-pages/%5B%5B...page%5D%5D-6a795753bd9f4500.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"6e4fde339e84de3c0a02381d5e0343ed"
last-modified: Mon, 26 Sep 2022 18:40:40 GMT
x-amz-id-2: PjzORC2y5qF7HH1IvdboCmLeGTZ5CjZS7YQ+jAFg1bPZ1u2EhPmuLulu5TCDYmomnsVRhrN6QsY=
x-amz-request-id: EQ9RC7FE6F8BT2MV
x-envoy-upstream-service-time: 36
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 52076
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d92d7bb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   37943
Md5:    04e28ac91324ed1244aca1692df4401d
Sha1:   9bb9fabf07994509c74b02c04906ec91930194a7
Sha256: fc4bfc9cd31cd8cf9d7d9ada44e012cfed09e7db975d8d1489b945e12b935df8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-6P09-hgjmDFe4Y7P1KnXtJAuvJNen8XsBVIexf521SOxMivJ4t7A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 17:53:33 GMT
age: 55941
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8255
Md5:    fa70ece15044b7318cb11ae5e37a64e7
Sha1:   04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
Sha256: 8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
                                        
                                            GET /assets/releases/web-infra/_next/static/0.7871.0/_ssgManifest.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"5352cb582146311d1540f6075d1f265e"
last-modified: Tue, 27 Sep 2022 09:07:21 GMT
x-amz-id-2: 2uVbrgokTaH5p/3DuU3bkq7IW2u9LNKqa/y3UuoDHsiK6FcOwRDdYqm6uDlOz/iarJUXmCIg1ic=
x-amz-request-id: Q7J1G5N64S5HBXPA
x-envoy-upstream-service-time: 28
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d93d7db4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13264
Md5:    30f22063521f2d70bb04b6cf4fd2f75d
Sha1:   6a2c81eac44f202e27eb9d9a97f8630fc9b7b554
Sha256: 175a9e1eaa8e32af9b35f065cc992d3a211b9e43f2810875779a7e5a929297c4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:54 GMT
Last-Modified: Tue, 27 Sep 2022 08:27:59 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AHOeaqykXBOvVxlxb9dWiQl9m7hDTk0GjyqWdVku_tC2hAflE3LfwQ==
Age: 3475

                                        
                                            GET /be/cms/landing_pages/icon-instagram.svg HTTP/1.1 
Host: hf-website-live.s3-eu-west-1.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.92.0.218
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
x-amz-id-2: aj/pr6/8c83/gdI59zIbWOFXMnEO4F2jijexu8vqga+QuCa47982Uo1v204b1EXhJAuCHe5PaNw=
x-amz-request-id: 3SWNMX2V4R4K415H
Date: Tue, 27 Sep 2022 09:25:56 GMT
Last-Modified: Fri, 10 May 2019 15:44:00 GMT
ETag: "db043cd1054261048bfa63e85c17a53f"
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 1731


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1511)
Size:   1731
Md5:    db043cd1054261048bfa63e85c17a53f
Sha1:   7c3fca8242acb21671aba549bd98fc3ac071b28d
Sha256: 57d9375c2dc299e563e0eac59d6ba491d99870760dce4b2d2db8893e79301684
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-KMWJG5K HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 09:25:55 GMT
expires: Tue, 27 Sep 2022 09:25:55 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84668
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (38467)
Size:   84668
Md5:    d15fadf0b1d50c5214ca1deede150070
Sha1:   f503f5238b96b3e00a1ce0c0d3b3c7795f591eb9
Sha256: 445b4e1f3a67e55f9398a33d9acc6454d58215832cff85a3a584788f6182b0a1
                                        
                                            GET /gtm.js?id=GTM-DLKG HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 09:25:55 GMT
expires: Tue, 27 Sep 2022 09:25:55 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68157
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25992)
Size:   68157
Md5:    7dc3a2f4836bc84492900ce3092fb076
Sha1:   4ba9898e0b505a485d017ec67fe21e79b3f6ac2c
Sha256: fc299eabe287c3d24c7745a44aa7ffaa0d309566a4a455c8eceec23055c4b836
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED2C29982F6BB846BFC47D9848DBA3164A8D7C876156A8A3A84A71840FEFB14D"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7084
Expires: Tue, 27 Sep 2022 11:23:59 GMT
Date: Tue, 27 Sep 2022 09:25:55 GMT
Connection: keep-alive

                                        
                                            POST /api/5396938/envelope/?sentry_key=5c397ef08a6c49098d09dfd70fddf09e&sentry_version=7 HTTP/1.1 
Host: o46710.ingest.sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.hellofresh.co.uk
Content-Length: 409
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.195.249
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 09:25:55 GMT
content-length: 2
access-control-allow-origin: https://www.hellofresh.co.uk
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED2C29982F6BB846BFC47D9848DBA3164A8D7C876156A8A3A84A71840FEFB14D"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7084
Expires: Tue, 27 Sep 2022 11:23:59 GMT
Date: Tue, 27 Sep 2022 09:25:55 GMT
Connection: keep-alive

                                        
                                            GET /assets/fonts/agrandir-v1/Agrandir-HelloFresh_Regular.woff2 HTTP/1.1 
Host: www.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.42.99
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:56 GMT
content-length: 23704
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 3000
etag: "021fc9cc68ba65a1b90ac6cc63f14e6b"
last-modified: Tue, 02 Mar 2021 13:26:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-id-2: jiphBqS8zzg+iMezX+yb3JxGhc3ZTvF2ZO1ZP0kYEKUUF/OpLFsqs2cztJCRZsNC8ALGwQeXfDU=
x-amz-request-id: FVCDXBP34KZQ4BNR
x-envoy-upstream-service-time: 32
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 11668207
expires: Tue, 27 Sep 2022 13:25:56 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cf_bm=C_eCl8Nvj.Zg4Q2WxqUWri_sAG5ZTf1jb9bwA_Cn0WY-1664270756-0-AWP8l9TercskwDTxJD60jxFEXl6jwfNekAHw/kJMdTpdLV5/4eJLEA03Mb2ID+t2kaQ1wN3a8wlSxpRwQxD91gbojAfzNS7uA5ekGnRvRHLW; path=/; expires=Tue, 27-Sep-22 09:55:56 GMT; domain=.hellofresh.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331e168540b02-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 23704, version 3.-32768\012- data
Size:   23704
Md5:    021fc9cc68ba65a1b90ac6cc63f14e6b
Sha1:   80d9a94446ef23cfbf8b84129f4e3006e85af3f2
Sha256: 460c21e6ad4856a0b727beb6175ecf7dad82ae8f91d4b9639ba693e8ce8409cb
                                        
                                            GET /assets/fonts/source-sans-pro-v11/latin-regular.woff2 HTTP/1.1 
Host: www.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.42.99
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:56 GMT
content-length: 15908
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: public, max-age=31536000
etag: "76d8cbb0496cb184eff868152b67ad45"
last-modified: Thu, 21 Feb 2019 10:26:05 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-id-2: nHNy7nLRR+5gK6s7oJqiJyOte5FljzJypz9nP5SFryvuqnpUAx10h/HL6ELnRFT5vYGCNJcnPtg=
x-amz-request-id: M67G9X3XAKP8A51Q
x-envoy-upstream-service-time: 60
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2934692
expires: Wed, 27 Sep 2023 09:25:56 GMT
accept-ranges: bytes
set-cookie: __cf_bm=N3avc9M_mVMFydR0MiOWUHTXz.bFoamrDuCFpZ71B4A-1664270756-0-AbLTZxIGTXYnEGQ0HBi/awyOC4dbxwyriihl4XiFfpNUDPT0rQzn2m3FhKQxNcwh+Uz0h7wqeA1zFegQ//l5+xf0kJRgEjwyFCTWNIVgArUd; path=/; expires=Tue, 27-Sep-22 09:55:56 GMT; domain=.hellofresh.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331e1785d0b02-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15908, version 1.0\012- data
Size:   15908
Md5:    76d8cbb0496cb184eff868152b67ad45
Sha1:   d4ae4e38ca7bb859c359e9df16efeb35a009053c
Sha256: cb992eae898417162c48b37712991d9ad8053c4a64fce51aff195edc69dc35f2
                                        
                                            GET /assets/fonts/source-sans-pro-v11/latin-600.woff2 HTTP/1.1 
Host: www.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.42.99
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
date: Tue, 27 Sep 2022 09:25:56 GMT
content-length: 15784
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: public, max-age=31536000
etag: "b3866d3fbe239e8754f4db4795ce2817"
last-modified: Thu, 21 Feb 2019 10:26:04 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-id-2: H1KsnM2lMH1C7MstADkkLEE7TGgdPtXvFQ0Utot8TgwUux1RIZJ2JMZ6yOBzTIytxlLGu8yCRjc=
x-amz-request-id: X5MC43TDM7P87MJT
x-envoy-upstream-service-time: 25
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 9709332
expires: Wed, 27 Sep 2023 09:25:56 GMT
accept-ranges: bytes
set-cookie: __cf_bm=pqm6bbONgrGC4XvPvzZgwWN0C_oIBaPR420JZ92Oy_c-1664270756-0-AZtlvq6RExxuMppQH2s0tdkdpoo9E0FRbaXEaq50yYPUZOsWv4z3SvF58EXCLcF5UCPsrjFuahwWv7xOS73u6CyWGGmQ7yrP1jOxp4FT/7X8; path=/; expires=Tue, 27-Sep-22 09:55:56 GMT; domain=.hellofresh.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331e178650b02-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15784, version 1.0\012- data
Size:   15784
Md5:    b3866d3fbe239e8754f4db4795ce2817
Sha1:   a0c7bead0f83f1a6419f026c899de3af7c9e55e2
Sha256: d8381e66783011957eabadb622d7899061bf93e78fff38ebfe00ab743d6c8e60
                                        
                                            GET /f_auto,fl_lossy,q_auto,w_375/hellofresh_website/au/cms/contentful/InstagramPeople.jpeg HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cf_bm=O3Rmuql4vlT8XXm18fhkLdmtRu9izQYOulxu.oK2Q_0-1664270754-0-AbUQiBFP6YDIAhOhx3hp4OjDuAa2E3fRwrfziuibnjFevLNLmzfT9cAwQbGDY1YtSTsg3JPItmvXg8h3BYVwQYRBoYAKXF9VjqNOgkXrKnOd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="InstagramPeople.webp"
etag: "b561d7b0130ca8bf5da047dae7a5108b"
last-modified: Mon, 30 Aug 2021 15:43:56 GMT
content-length: 21282
date: Tue, 27 Sep 2022 09:25:56 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=3;start=2022-09-27T09:25:56.347Z;desc=hit,rtt;dur=1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 375x469, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   21282
Md5:    b561d7b0130ca8bf5da047dae7a5108b
Sha1:   4d1d93f307d5af702d20e3d942b5ef4a9855b8cf
Sha256: 25ab02afae88680cce85afabf9c83a8be4b2aa40c01d3912b810f7d0a435385a
                                        
                                            GET /f_auto,fl_lossy,q_auto,w_375/hellofresh_website/de/cms/landingpages/Instagram/AilinscatUpdate2.png HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cf_bm=O3Rmuql4vlT8XXm18fhkLdmtRu9izQYOulxu.oK2Q_0-1664270754-0-AbUQiBFP6YDIAhOhx3hp4OjDuAa2E3fRwrfziuibnjFevLNLmzfT9cAwQbGDY1YtSTsg3JPItmvXg8h3BYVwQYRBoYAKXF9VjqNOgkXrKnOd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="AilinscatUpdate2.webp"
etag: "3de6cdf7334fdd4b97a3958f9227e1b4"
last-modified: Thu, 07 Apr 2022 11:29:12 GMT
content-length: 15436
date: Tue, 27 Sep 2022 09:25:56 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=5;start=2022-09-27T09:25:56.352Z;desc=hit,rtt;dur=1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 375x469, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   15436
Md5:    3de6cdf7334fdd4b97a3958f9227e1b4
Sha1:   7af3e9dfa067f47b4c2bf4dfb12ab5e8fa907823
Sha256: 27b33b999bc2817dc737e7864c4ea7377bf2246ac7c272c4516ad06a36ec493a
                                        
                                            GET /f_auto,fl_lossy,q_auto,w_375/hellofresh_website/au/cms/homepage/Instagram/kidscookingedited.jpg HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cf_bm=O3Rmuql4vlT8XXm18fhkLdmtRu9izQYOulxu.oK2Q_0-1664270754-0-AbUQiBFP6YDIAhOhx3hp4OjDuAa2E3fRwrfziuibnjFevLNLmzfT9cAwQbGDY1YtSTsg3JPItmvXg8h3BYVwQYRBoYAKXF9VjqNOgkXrKnOd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="kidscookingedited.webp"
etag: "5bc1e1d5ef9abf693ece5ae643eb81f5"
last-modified: Thu, 02 Sep 2021 15:07:18 GMT
content-length: 24132
date: Tue, 27 Sep 2022 09:25:56 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=3;start=2022-09-27T09:25:56.362Z;desc=hit,rtt;dur=1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 375x469, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   24132
Md5:    5bc1e1d5ef9abf693ece5ae643eb81f5
Sha1:   cd6147f07aa30c58ed0671c13b44a0a21db94ecf
Sha256: 7d7eb86bd83e693e103186ae23e3665cd1be67b2ae0946465e1e279b311e72a0
                                        
                                            GET /f_auto,fl_lossy,q_auto,w_375/hellofresh_website/gb/cms/landing_pages/resolution/IG-Creamypasta.png HTTP/1.1 
Host: img.hellofresh.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cf_bm=O3Rmuql4vlT8XXm18fhkLdmtRu9izQYOulxu.oK2Q_0-1664270754-0-AbUQiBFP6YDIAhOhx3hp4OjDuAa2E3fRwrfziuibnjFevLNLmzfT9cAwQbGDY1YtSTsg3JPItmvXg8h3BYVwQYRBoYAKXF9VjqNOgkXrKnOd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.201.77
HTTP/2 200 OK
content-type: image/webp
                                        
content-disposition: inline; filename="IG-Creamypasta.webp"
etag: "b845319c22f523bcb6f577f3f70c20e3"
last-modified: Thu, 09 Dec 2021 09:16:23 GMT
content-length: 38290
date: Tue, 27 Sep 2022 09:25:56 GMT
cache-control: private, no-transform, immutable, max-age=31536000
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options
access-control-allow-origin: *
accept-ranges: bytes
timing-allow-origin: *
server: Cloudinary
strict-transport-security: max-age=604800
vary: Accept,User-Agent,Save-Data
x-content-type-options: nosniff
server-timing: akam;dur=11;start=2022-09-27T09:25:56.354Z;desc=hit,rtt;dur=1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 375x469, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   38290
Md5:    b845319c22f523bcb6f577f3f70c20e3
Sha1:   a4689f96df849998beabfeda7dea7301a6b792ec
Sha256: 1372dad82ad4e5fac8f6a9064e110304311f4708ad531afe78ada3012ca4abbc
                                        
                                            GET /js/geo4.js HTTP/1.1 
Host: cdn3.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.9.127
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: AmazonS3
Content-Length: 302
x-amz-id-2: +tkr/7Ns7kenSzCK7455ZyE4sN+8K/pZ+M8ci8OpfMRII6vk5qGLnhIQW4kmSFsTbjS5D/kX93I=
Unused62: 8096267
x-amz-version-id: F8W1XaLRNmnJXrMgZ6ZMuxtE6L376GC.
x-amz-server-side-encryption: AES256
ETag: "8777c006589ecabfa3d63a6b5bf24393"
x-amz-replication-status: COMPLETED
x-amz-request-id: M8KPVV219SSHET6W
Cache-Control: max-age=55869
Date: Tue, 27 Sep 2022 09:25:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   302
Md5:    56e10233eaa57653e63ee929e1c619cf
Sha1:   864e4dfc0f6b0a2d73680b80eb476003b303eab7
Sha256: 4515bfcea10a9dfd175ba279138db6023e67d536edb9c9b542b4af85d8fc7146
                                        
                                            GET /gw/plans-config?activationPage=MLP&b2b_voucher=&country=GB&giftCard=false&include=preferences%2Cplans&isFreebie=false&isMobileApp=false&locale=en-GB&publicId=6df56b4e-e647-4c59-a42e-9084a3a5c8d4&userExperiment=&userStatus=&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_medium=cpo&utm_source=affiliate HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
x-requested-by: organic
sentry-trace: a5c162d73ad842ebbae1dc1dec3063c0-8672f34ce3ca88d4-0
Connection: keep-alive
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:25:56 GMT
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"2e21-Bd6WvpWvrVqF57PnzJo7boVpzoY"
vary: Accept-Encoding
x-envoy-upstream-service-time: 92
x-frame-options: SAMEORIGIN
x-request-id: 54c42f0e-53f8-901c-9f0a-44df2d2a9844
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331e3de4eb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (11808), with no line terminators
Size:   2683
Md5:    9115e2abb886f46c0c179fddd14979ae
Sha1:   45879f6a7626f1cc7ed2c16eb1ea43f59fd28fd4
Sha256: 38584e8e275e4bd39a9b2380f0186726c149e9232b1fcf567e1656cd9d68b272
                                        
                                            GET /client_storage/a10561433763.html HTTP/1.1 
Host: a10561433763.cdn.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.110.8.48
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
x-amz-id-2: sAr4+zpP0kU6slUSI7HZPo4ILU4z7FLoMJvwr+KM69UD7WMGXpjfwWOJENNyaa5B2i2AEVm6gBs=
x-amz-request-id: DJBSEEDJNMQE4K0J
x-amz-replication-status: COMPLETED
last-modified: Tue, 27 Sep 2022 07:36:07 GMT
etag: "d387f10c54b4d13156d448a21f0453fa"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: Dxpql__UVnBxldXlpm_Ie3RRWjnYNH4O
accept-ranges: bytes
server: AmazonS3
content-length: 923
vary: Accept-Encoding
cache-control: max-age=120
date: Tue, 27 Sep 2022 09:25:59 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1371)
Size:   923
Md5:    d387f10c54b4d13156d448a21f0453fa
Sha1:   3efdf91bf48bba80c8e16fa62500896294e9fc6a
Sha256: a6da13b0f07759e1bc7c34ce94612fd40ea7d6448e19c1d5d1e51b22950ca554
                                        
                                            POST /s/gts1d4/uk7ys0Qoo1c HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/releases/web-infra/_next/static/chunks/64204.1f64c02a8dc47c35.js HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 09:25:54 GMT
cache-control: public, max-age=31536000
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
etag: W/"4195ce147dd2a337e937b81b0da80c7d"
last-modified: Mon, 05 Sep 2022 15:40:11 GMT
x-amz-id-2: /QVyH/U7Gqd9G0trs1DQYDbbvOaPy495CeUEJt6ZgJKm1fWSsuDal5OxshULO1wPWDs31jNyeJ0=
x-amz-request-id: 548C6N1MAS9C9TSE
x-envoy-upstream-service-time: 28
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1560549
expires: Wed, 27 Sep 2023 09:25:54 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331d8ecf6b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32187)
Size:   9134
Md5:    9a01494e5ea5684066c4c90553f8b685
Sha1:   0d5ee39e80394482ca62de196aeb1fe9693b0c02
Sha256: b13450a4c9c03e801814e1bdd789609c89f7d6916291561b895478b0357b55ac
                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 27 Sep 2022 09:25:59 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    95212d33cfff78ad59f5af5b20c48c53
Sha1:   9b99a4091a6eb716bc68f1428e3c86eca068b25b
Sha256: bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
                                        
                                            POST /s/gts1d4/ZkVyJRQThwM HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ping.min.js HTTP/1.1 
Host: cdn.pdst.fm
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.244.142.80
HTTP/2 200 OK
content-type: application/javascript;
                                        
x-guploader-uploadid: ADPycduiFyEXH1YBSfeZ-ziJ_LfchRu1ZMwZqYwW3zvBPhoUsvrxXgkQ-2IGb_lMjypaRevYrSs9vbgH6WNiVpZVWXGGtw
x-goog-generation: 1622234043862937
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5774
content-encoding: gzip
x-goog-hash: crc32c=oKoi/w==, md5=0AHRyfWpQvpVJO6ssEfoGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 5774
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 27 Sep 2022 08:36:37 GMT
expires: Tue, 27 Sep 2022 09:36:37 GMT
cache-control: public, max-age=3600
age: 2962
last-modified: Fri, 28 May 2021 20:34:03 GMT
etag: "d001d1c9f5a942fa5524eeacb047e819"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26948), with no line terminators
Size:   5774
Md5:    d001d1c9f5a942fa5524eeacb047e819
Sha1:   6ebc303d4e3fe71192400673808f37ce1c6a1d25
Sha256: 63882c75983a011c7ae5041061a95babb9e67fa508b0628e1c00f455ccd40b0a
                                        
                                            POST /s/gts1d4/ZkVyJRQThwM HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:59 GMT
Last-Modified: Tue, 27 Sep 2022 09:03:41 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UiVUErUYT6BvSYS3VIxVO_WpNpvyyfLkH66PNMLs4h0Do5I61vRNnQ==
Age: 1338

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 27 Sep 2022 09:25:59 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 00:09:45 GMT
Expires: Wed, 28 Sep 2022 00:09:45 GMT
ETag: "fd27441fa77a794def13098e6b45d3481b96534f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    1a92dc29ed7fa5a0006df90fcb4514b9
Sha1:   fd27441fa77a794def13098e6b45d3481b96534f
Sha256: ae73929d676711e63f3a3a77eb3055176eb4b75308880ed5b457575505a6ee0d
                                        
                                            GET /deflect/customization/hellofresh/solvvy.js HTTP/1.1 
Host: cdn.solvvy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.98.108.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdsPAA-MpoASbTpHrMspKy8fNPrYWJ5O5EaRmdLD7zt8XVIaS9quZFKXwnnfAAqd3omNDwdGKDmhyoa9Ic6CaIRxHZCkqYEj
x-goog-generation: 1661209349662760
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17336
content-encoding: gzip
x-goog-hash: crc32c=epVW9A==, md5=mSvX4WcjLsr7Hk+Yq3HaOg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17336
access-control-allow-origin: *
server: UploadServer
date: Tue, 27 Sep 2022 09:13:04 GMT
age: 775
last-modified: Mon, 22 Aug 2022 23:02:29 GMT
etag: "992bd7e167232ecafb1e4f98ab71da3a"
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (62537), with no line terminators
Size:   17336
Md5:    992bd7e167232ecafb1e4f98ab71da3a
Sha1:   d04a0ac295c9c8c4932ffa8d3ed0389b90629bed
Sha256: b71e0dadd6de352827ed706f21e103c7eec3fc478ee781bcea3559fd8e069074
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1739
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.217.242.142
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Tue, 27 Sep 2022 09:25:59 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 851f4eff-11bd-4c73-9789-d73df4d96583
Connection: keep-alive

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=event&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&ec=Optimizely&ea=optimizing_multiselect_logic_experimet_gb&el=ccv_based&ev=0&ni=1&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&cd43=0&cd44=0&cd45=0&cd99=UK&cd100=0&gjid=0&_gid=683355498.1664270757&z=1664270757185 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=event&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&ec=VWO&ea=GB-ValueMessaging-DecisionDetox-Control&el=control&ev=0&ni=1&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&cd43=0&cd44=0&cd45=0&cd99=UK&cd100=0&gjid=0&_gid=683355498.1664270757&z=1664270757167 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:59 GMT
Last-Modified: Tue, 27 Sep 2022 08:42:13 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zRoSOgIQ1MOR_Y7PwJLbgBbjO7TbrICZD8R0NdOnc4PG0YZc0Jo8Dw==
Age: 2626

                                        
                                            POST /s/gts1d4/uk7ys0Qoo1c HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:25:59 GMT
Last-Modified: Tue, 27 Sep 2022 08:21:59 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -rNI99BWU26MdrL-mwxYwmrjrvuxmx2E_ZW8Khw1Ouoj_GXfsBJIEg==
Age: 3841

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=event&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&jid=367801055&gjid=790143901&ec=VWO&ea=LandingPage-GB-ValueMessaging-DecisionDetox-Control-0&el=&ev=0&ni=1&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&uid=UK-&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&gjid=790143901&_gid=683355498.1664270757&z=1664270757147 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /tv2track.js HTTP/1.1 
Host: collector-905.tvsquared.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.132.200.162
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=600
Content-Encoding: gzip
Date: Tue, 27 Sep 2022 09:25:59 GMT
ETag: "6305f9ab-2133"
Expires: Tue, 27 Sep 2022 09:35:59 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:59 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1162)
Size:   8499
Md5:    541a38b4f06e41464c0d654e841ac424
Sha1:   d8e6cdf23733cbe85120de52b58c2c7dbe746758
Sha256: 55df73bbedbdb87259af7ccc47efce4497781d0a3154e97a8e07ff059ace234d
                                        
                                            GET /x/HFUK?gtmcb=2137008437 HTTP/1.1 
Host: i.geistm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.205.193.150
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
content-length: 43
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type, Accept
set-cookie: gdpid=6332c1a753e89f0001054023; Max-Age=31536000; Domain=geistm.com; Path=/; Expires=Wed, 27 Sep 2023 09:25:59 GMT; Secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache=Set-Cookie, proxy-revalidate, max-age=0, post-check=0, pre-check=0
expires: Wed, 2 Dec 1837 21:00:12 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    57f187c7a868faeac558007a8eb6cb2e
Sha1:   11ab10ab109fdb53d91d444ac781101f5a6360c6
Sha256: aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
                                        
                                            GET /deflect/customization/hellofresh/25/solvvy.customization.js HTTP/1.1 
Host: cdn.solvvy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.98.108.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdsdLojXxWVHAyTI3MpdYiPkpnJgyf_uGz5MERL6fY87JzzmxdLyGCqyF-p7CJ0UDLMb7wgw0q5EpcP10yCcXyVCZKgC1s_U
x-goog-generation: 1661209349391043
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 157916
content-encoding: gzip
x-goog-hash: crc32c=am/eBw==, md5=rjSIkEFy+xhaZYmQPbCt8Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 157916
access-control-allow-origin: *
server: UploadServer
date: Mon, 26 Sep 2022 23:14:38 GMT
age: 36681
last-modified: Mon, 22 Aug 2022 23:02:29 GMT
etag: "ae3488904172fb185a6589903db0adf1"
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (49690)
Size:   157916
Md5:    ae3488904172fb185a6589903db0adf1
Sha1:   c9c019a54251793dbe9beee2aef386df3f16b451
Sha256: 7f5c47892addbb55e16e1d2ad7ed402fa02b19c2ad62952efd253969adcc1f39
                                        
                                            GET /gw/price-presentation/discount_communication/voucher/HELLOLS60?country=GB&dc_id=&locale=en-GB&skus=GB-CPT12-2-3-0%2CGB-CPT12-2-4-0%2CGB-CPT12-3-2-0%2CGB-CPT12-3-3-0%2CGB-CPT12-3-4-0%2CGB-CPT12-4-2-0%2CGB-CPT12-4-3-0%2CGB-CPT12-4-4-0%2CGB-CPT12-5-2-0%2CGB-CPT12-5-3-0%2CGB-CPT12-5-4-0 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
x-requested-by: organic
sentry-trace: a5c162d73ad842ebbae1dc1dec3063c0-88d80a3b3f504bc5-0
Connection: keep-alive
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB; hf_plans_config_experiment={%22variationKey%22:%22ccv_based%22%2C%22userExperiment%22:%22optimizing_multiselect_logic_experimet_gb%22%2C%22userStatus%22:%22include%22}; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,; solvvy_disabled=; hf_plan_recommendation_experiment={%22stage%22:%22stage01%22%2C%22peopleSize%22:%222%22%2C%22peopleSizeFromProductConfigurator%22:%222%22}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
x-envoy-upstream-service-time: 92
x-frame-options: SAMEORIGIN
x-request-id: 816c3f81-ac46-9c74-b99a-b65f3cf69068
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331f72c80b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (8139)
Size:   1249
Md5:    d6c94293e52e0893afd575788066c546
Sha1:   684d547fafe147319d868b538cbb4ee26b97695e
Sha256: 0991974806c086c8024c718912ba667fa0dfe9ef7172310295ac1e72337ae73d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gw/price-presentation/discount_communication/voucher/HELLOLS60?country=GB&dc_id=90eb4c18-16f2-4d9b-861a-ca99b7c69a09&locale=en-GB&skus=GB-CPT12-2-3-0%2CGB-CPT12-2-4-0%2CGB-CPT12-3-2-0%2CGB-CPT12-3-3-0%2CGB-CPT12-3-4-0%2CGB-CPT12-4-2-0%2CGB-CPT12-4-3-0%2CGB-CPT12-4-4-0%2CGB-CPT12-5-2-0%2CGB-CPT12-5-3-0%2CGB-CPT12-5-4-0 HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
x-requested-by: organic
sentry-trace: a5c162d73ad842ebbae1dc1dec3063c0-9be15daae8904fd8-0
Connection: keep-alive
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB; hf_plans_config_experiment={%22variationKey%22:%22ccv_based%22%2C%22userExperiment%22:%22optimizing_multiselect_logic_experimet_gb%22%2C%22userStatus%22:%22include%22}; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,; solvvy_disabled=; hf_plan_recommendation_experiment={%22stage%22:%22stage01%22%2C%22peopleSize%22:%222%22%2C%22peopleSizeFromProductConfigurator%22:%222%22}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
x-envoy-upstream-service-time: 27
x-frame-options: SAMEORIGIN
x-request-id: e4b16347-405c-986d-b25f-d99256d8836d
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331f75cb9b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (8123)
Size:   800
Md5:    cc565be9660ba753802c11f2cc614edc
Sha1:   0bd73ac74093df74da750e9c04748d2430430c26
Sha256: deec7474b1a323b991f093ade83e3b0215806b60fdeb7255c41469cb04ac2598
                                        
                                            GET /v1/pixels/track?org_id=340&api_key=15674078-445c-4314-9d89-0649badd2803~63tCnblH6741d18TJ7f5lZvN5UL89AKm2mr5Jd6dARPakb8b5urVwm3A12uuNLgi&user_identifier=48e20c71-60f9-4454-abc1-173f58298996&session_identifier=1fbcdb94-b5bf-4a21-8586-34b1cca5a3f4&event=daily_domain_visit&channel=ticket&environment=prod&metadata=eyJkb21haW4iOiJ3d3cuaGVsbG9mcmVzaC5jby51ayIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImV2ZW50X2lkIjoiYmUwYjA4Y2EtODI4Ni00MTRiLTk3NTMtNWM3YmIzMmZmMzkwIn0%3D HTTP/1.1 
Host: api.solvvy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.249.46
HTTP/2 204 No Content
                                        
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: x-total,x-query-id,x-solvvy-session-idle-timeout,x-solvvy-session-absolute-timeout
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
date: Tue, 27 Sep 2022 09:26:00 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /pdst-events-prod-sink HTTP/1.1 
Host: us-central1-adaptive-growth.cloudfunctions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hellofresh.co.uk/
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.239.36.54
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-ROqGvmcGDXooyAXFZHZ+i4au1yQ"
function-execution-id: 3e1w5ixbn4v3
x-powered-by: Express
x-cloud-trace-context: 90b061c8dbb31b2d3e3f1f18ad4f5e5c
content-encoding: gzip
date: Tue, 27 Sep 2022 09:26:00 GMT
server: Google Frontend
cache-control: private
content-length: 22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   22
Md5:    8e7120c76040a47f820e8c87b95dddce
Sha1:   0ae6d0d5578537f5011e44f97e812069362ac7b2
Sha256: e64c6bbbdbf2cc009eeb259cfb5f877274d073ea0ef1770008344cdf7d640c3c
                                        
                                            POST /gw/otlp/traces HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
Content-Length: 24908
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB; hf_plans_config_experiment={%22variationKey%22:%22ccv_based%22%2C%22userExperiment%22:%22optimizing_multiselect_logic_experimet_gb%22%2C%22userStatus%22:%22include%22}; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,; solvvy_disabled=; hf_plan_recommendation_experiment={%22stage%22:%22stage01%22%2C%22peopleSize%22:%222%22%2C%22peopleSizeFromProductConfigurator%22:%222%22}; _rdt_uuid=1664270757510.ba8c06ff-febb-4a68-8bd8-90be464cfc33; __pdst=b1d9dae4e65e4315a8320caab2641677
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 09:26:00 GMT
content-length: 2
access-control-allow-origin: https://www.hellofresh.co.uk
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
x-envoy-upstream-service-time: 185
x-frame-options: SAMEORIGIN
x-request-id: bd9c9d44-7210-9ec0-8749-b6fbf17f982e
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331f79d1eb4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            OPTIONS /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hellofresh.co.uk/
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.217.242.142
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin,X-App-Trace-Id
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Date: Tue, 27 Sep 2022 09:26:00 GMT
Server: nginx/1.21.0
X-Request-Id: d675582f-9cca-46f7-a357-fc0ea7b9f011
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 27 Sep 2022 09:26:00 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 00:09:45 GMT
Expires: Wed, 28 Sep 2022 00:09:45 GMT
ETag: "fd27441fa77a794def13098e6b45d3481b96534f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    1a92dc29ed7fa5a0006df90fcb4514b9
Sha1:   fd27441fa77a794def13098e6b45d3481b96534f
Sha256: ae73929d676711e63f3a3a77eb3055176eb4b75308880ed5b457575505a6ee0d
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 8150
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.217.242.142
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Tue, 27 Sep 2022 09:26:00 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 1a384554-bb3d-428c-8d2e-6500df651a44
Connection: keep-alive

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=event&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&ec=VWO&ea=LandingPage-GB-ValueMessaging-DecisionDetox-Control-0&el=&ev=0&ni=1&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&uid=UK-&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&gjid=0&_gid=683355498.1664270757&z=1664270757228 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 27 Sep 2022 09:26:00 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=event&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&ec=funnel&ea=ProductPreferenceDefault&el=GB-CPT12-3-2-0%7Cchefschoice%7Cwith-coupon&ev=0&ni=1&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&date_isostring=2022-09-27T09:25:57.299Z&cd34=regular&cd99=UK&cm2=1&pa=detail&pr1id=GB-CPT12-3-2-0&pr1nm=Classic%20-%203%20meals%20per%20week%20for%202%20persons&pr1ca=classic-plan-t12&pr1va=chefschoice&pr1br=Hellofresh&pr1cc=HELLOLS60&pr1pr=28.49&pr1qt=1&gjid=0&_gid=683355498.1664270757&z=1664270757301 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
set-cookie: _fbp=fb.1.1664270759477.2133282533; Max-Age=7776000; Domain=hellofresh.co.uk; Path=/; SameSite=Lax; Secure
date: Tue, 27 Sep 2022 09:26:00 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:26:00 GMT
Last-Modified: Tue, 27 Sep 2022 07:54:45 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y-MZmG34cTFKwsO8E8x87aXiS6nYBNoN82cVV8Ha-9x84uH-qOm5IQ==
Age: 5475

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:26:00 GMT
Last-Modified: Tue, 27 Sep 2022 07:54:45 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4i_gA0EXOo_5asIIkaS3cfcNbEE1m853_FbTL4tt4NuNPrkaa7DB4g==
Age: 5475

                                        
                                            POST /pdst-events-prod-sink HTTP/1.1 
Host: us-central1-adaptive-growth.cloudfunctions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/
Content-Type: application/json
Origin: https://www.hellofresh.co.uk
Content-Length: 719
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.239.36.54
HTTP/2 204 No Content
content-type: text/html
                                        
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
function-execution-id: rn5413atfc57
x-powered-by: Express
x-cloud-trace-context: 10c4da48ea4722033c0011edc2ecfc21
date: Tue, 27 Sep 2022 09:26:00 GMT
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1716
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.217.242.142
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Tue, 27 Sep 2022 09:26:00 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 10ccf5d6-df7b-438d-b7e3-ef7fdaa625ce
Connection: keep-alive

                                        
                                            OPTIONS /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.hellofresh.co.uk/
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.215.196.133
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Date: Tue, 27 Sep 2022 09:26:00 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /log HTTP/1.1 
Host: errors.client.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 329
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.215.196.133
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Expose-Headers:
Date: Tue, 27 Sep 2022 09:26:00 GMT
Connection: keep-alive

                                        
                                            GET /measurement?v=1&tid=UA-27893453-2&cid=474966389.1664270757&_gid=683355498.1664270757&t=pageview&dt=HelloFresh%20Recipe%20Boxes&dh=www.hellofresh.co.uk&dr=&de=UTF-8&dl=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&dp=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&sd=24-bit&sr=1280x1024&vp=1280x939&ul=en-US&cd99=UK&cd48=en-GB&cd112=6df56b4e-e647-4c59-a42e-9084a3a5c8d4&gjid=0&_gid=683355498.1664270757&z=1664270757206 HTTP/1.1 
Host: tms.hft.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         34.110.220.115
HTTP/2 200 OK
content-type: text/html
                                        
set-cookie: ir_clickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0; Max-Age=30000000; Domain=hellofresh.co.uk; Path=/; Secure gtm_server_voucher=HELLOLS60; Max-Age=30000000; Domain=hellofresh.co.uk; Path=/; Secure _fbp=fb.1.1664270759803.1955163163; Max-Age=7776000; Domain=hellofresh.co.uk; Path=/; SameSite=Lax; Secure
date: Tue, 27 Sep 2022 09:26:00 GMT
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5209
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:26:00 GMT
Last-Modified: Tue, 27 Sep 2022 07:59:12 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.21.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11367
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2A2C1C17C787655612FB0E3BC6726480; domain=.bing.com; expires=Sun, 22-Oct-2023 09:26:00 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3C80BB7430F4428DAECDD31D45D74D39 Ref B: OSL30EDGE0505 Ref C: 2022-09-27T09:26:00Z
date: Tue, 27 Sep 2022 09:26:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size:   11367
Md5:    293ae3e0fc8b0d5c143fdf9d8490228d
Sha1:   3976c659b908e70818a3a1ac71860b497fe2d1a9
Sha256: 04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&v=1&_r=4&_v=j97&slf_rd=1&tid=UA-27893453-2&cid=474966389.1664270757&jid=367801055 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-30WBVFPQZP&cid=2004027731.1664270758&gtm=2oe9l0&aip=1&z=497333574 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ztq7q2S08U8cdt84Udm6GaVYmQJPxTsM+1JwSIHx/AT/2CoZAXWLN26EDxFh9PZZY0iCMWHfsC6qWWfbtSiOeA==
content-length: 26840
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 09:26:00 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            GET /j/collect?t=dc&aip=1&v=1&_r=3&_v=j97&tid=UA-27893453-2&cid=474966389.1664270757&jid=367801055&gjid=790143901&_gid=683355498.1664270757 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.162.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /pagead/conversion/10818480808/?random=243813159&fst=1664270760321&cv=10&fmt=3&label=x87FCM_BlocDEKjV06Yo&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=3oes9l1&value=0&url=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&tiba=HelloFresh%20Recipe%20Boxes&data=event%3Dpage_view%3Bsource%3Daffiliate%3Bmedium%3Dcpo%3Bcampaign%3DGB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511%3Bcontent%3DTEXT_LINK%3Bpage_path%3D%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1664270757&auid=2032898664.1664270760&bttype=purchase&gcs=G111&gcd=G111&uip=91.90.42.0&s3p=1 HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 302 Found
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/10818480808/?random=2067231053&fst=1664270760321&cv=10&fmt=3&label=x87FCM_BlocDEKjV06Yo&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=3oes9l1&value=0&url=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&tiba=HelloFresh%20Recipe%20Boxes&data=event%3Dpage_view%3Bsource%3Daffiliate%3Bmedium%3Dcpo%3Bcampaign%3DGB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511%3Bcontent%3DTEXT_LINK%3Bpage_path%3D%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1664270757&auid=2032898664.1664270760&gcs=G111&gcd=G111&uip=91.90.42.0&s3p=1&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=qMEyY7OYLeeT78EP_beSoAs&sscte=1&crd=CJqqsQIIm6qxAg&eitems=ChAI8L7KmQYQ66uj9OfPhPJDEh0A-8Q4mHaM3zVF-fuaAZqdkXZR-J8VjR_oU4mTvw&pscrd=Ek9DaEVJOEw3S21RWVE2T2Vsc3FlbXctcmZBUkltQUhDT1JWTXFCVjNlZDZ3Y21xT3k3LWh5bm9xWkZ5c1V2QTl5Zk1yT09UdUk4RHo1ZlJrGlpDaEVJOEw3S21RWVE0TGF0N3RESzhZUDhBUkl1QUZHbHpweGhKUFJpdXpjalZzb1I3LWtmVS15aWpTM21VcDc1aFBKc2QwazI2U3ByZ0ZmZHJxaUV1cEtaVUE
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/viewthroughconversion/949958691/?random=1664270760335&cv=10&fst=1664270760335&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=3oes9l1&url=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&tiba=HelloFresh%20Recipe%20Boxes HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.130
HTTP/2 302 Found
content-type: image/gif
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/949958691/?random=1664270760335&cv=10&fst=1664269200000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=3oes9l1&url=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&tiba=HelloFresh%20Recipe%20Boxes&is_vtc=1&random=843042822
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 27-Sep-2022 09:41:00 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /activity;src=9842650;type=ros;cat=uk_ros;ord=844549885;gtm=3oes9l1;u5=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60;u6=ros;gcs=G111;gcd=G111;auiddc=2032898664.1664270760;s3p=1;~oref=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60? HTTP/1.1 
Host: ad.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.198
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=9842650;type=ros;cat=uk_ros;ord=844549885;gtm=3oes9l1;u5=%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60;u6=ros;gcs=G111;gcd=G111;auiddc=2032898664.1664270760;s3p=1;~oref=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 27-Sep-2022 09:41:00 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5209
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 09:26:00 GMT
Last-Modified: Tue, 27 Sep 2022 07:59:12 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gw/voucher/validate HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
x-requested-by: organic
sentry-trace: a5c162d73ad842ebbae1dc1dec3063c0-b19a8192a4a5410c-0
Content-Type: text/plain;charset=UTF-8
Origin: https://www.hellofresh.co.uk
Content-Length: 309
Connection: keep-alive
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB; hf_plans_config_experiment={%22variationKey%22:%22ccv_based%22%2C%22userExperiment%22:%22optimizing_multiselect_logic_experimet_gb%22%2C%22userStatus%22:%22include%22}; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,; solvvy_disabled=; hf_plan_recommendation_experiment={%22stage%22:%22stage01%22%2C%22peopleSize%22:%222%22%2C%22peopleSizeFromProductConfigurator%22:%222%22}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 27 Sep 2022 09:25:59 GMT
access-control-allow-origin: https://www.hellofresh.co.uk
access-control-expose-headers: X-Debug-Token, X-Debug-Token-Link
b3: 0000000000000000bcedd9ce171c3478-0fdcf2f8759f243e-1
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
x-envoy-upstream-service-time: 81
x-frame-options: SAMEORIGIN
x-request-id: 30cbe79e-bdfb-9171-9ea3-cf3b6d51da05
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751331f72c7bb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (586)
Size:   430335
Md5:    427f3e32ff70f6b40383495ef42745eb
Sha1:   acd28b8506f75d49ed30d35e281372a0d639b776
Sha256: d0f4e8b2420a5f0564b73a31870e48aac5d57669809763006719c51c38647422
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 09:26:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-30WBVFPQZP&cid=2004027731.1664270758&gtm=2oe9l0&aip=1 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         64.233.162.156
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.hellofresh.co.uk
date: Tue, 27 Sep 2022 09:26:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /c/hotjar-546043.js?sv=6 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.84
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 09:26:00 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/d692c5d424b2157e7b4f3b9b3cbfc56d
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DL1eFNVJ_nDQaOlNLk1JuuuC1K0TUzP-8e1NRqacm9jnUepjBext2A==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3789)
Size:   2385
Md5:    eef4ddf2fbf0f290fe9d8f20968a8ace
Sha1:   aa05aecdbf8ae4b7d282089ca26017458c594606
Sha256: 6f64dbe406daf069a0641aa946fc00d9bec7a1d987fabe679ba4de8a57b5090a
                                        
                                            GET /modules.01a02f6e8b126e8c8358.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 65760
date: Fri, 23 Sep 2022 10:32:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "88b47d3464ed75957aaec1d6b297a6e8"
last-modified: Fri, 23 Sep 2022 10:32:03 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bsKM7krqlzVPPu541BDpXuVKUgVdMavgOkDhnjm0hnahFWB9nQ7wrA==
age: 341635
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   65760
Md5:    88b47d3464ed75957aaec1d6b297a6e8
Sha1:   760b0f75cc7a47bfd293e211fc950218675cdf41
Sha256: 84812290eadd6391e8c8083c3016bbb7de5a43346f873080b74052eda996392b
                                        
                                            GET /rp.gif?ts=1664270757511&id=t2_cljuy63e&event=ViewContent&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ba8c06ff-febb-4a68-8bd8-90be464cfc33&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 27 Sep 2022 09:26:01 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /rp.gif?ts=1664270757510&id=t2_cljuy63e&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ba8c06ff-febb-4a68-8bd8-90be464cfc33&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 27 Sep 2022 09:26:01 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.105
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0GOQwF6FrkH_7GoEOT69TgM8JZsfmubL9rNz-a_9XmliiucORULIyQ==
age: 1728534
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size:   1044
Md5:    f6a9ca04b0687ea3c0d98e8430c8c77b
Sha1:   35503b2deb23091a9a9c6c68d4020dbdf879588e
Sha256: 8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
                                        
                                            POST /v1/events HTTP/1.1 
Host: logx.optimizely.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 5162
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.217.242.142
HTTP/1.1 204 No Content
Content-Type: text/plain
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.hellofresh.co.uk
Access-Control-Expose-Headers: X-Results-Data-Source
Date: Tue, 27 Sep 2022 09:26:01 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 40f04b48-33c1-4d8b-bac8-f9d65ec9724f
Connection: keep-alive

                                        
                                            POST /gw/otlp/traces HTTP/1.1 
Host: www.hellofresh.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2NjY5MDAxMzcsImlhdCI6MTY2NDI3MDM5NCwiaXNzIjoic2VuZiIsImp0aSI6ImU2YmJkYTU1LTliMjUtNDU1Ni04MTEzLWJhNjI4NmVjZmE1OCJ9.vN_dLH4FbS6oN_X5-Ge-rwOnRf980DDPPArp5sjey3w
Content-Length: 25196
Origin: https://www.hellofresh.co.uk
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/pages/resolution?irgwc=1&utm_source=affiliate&utm_medium=cpo&utm_campaign=GB_0_WEB_0_BAU_IR%3A%20Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%20Advertising%20SL_2514511&utm_content=TEXT_LINK&irclickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0&c=HELLOLS60
Cookie: __cfruid=4ab25d0ee794ed829ab10e53260f874b0a47ad3e-1664270754; __cf_bm=bnYMgcsk0mpnsMooXe1NsDPgX1LNJyvzkD2Wbtp5mTs-1664270754-0-AbqK0pmFNgidu3eQN2m9Tu/UZJ+MlkbsQsvl7TNFBrzHblLa3O6og9KV66kXkcQ7e8qeRLqWCTQ0TXaFIFlAyhY=; optimizelyEndUserId=oeu1664270753070r0.35838172289276615; hf_public_id=6df56b4e-e647-4c59-a42e-9084a3a5c8d4; locale=en-GB; hf_system_country=GB; hf_plans_config_experiment={%22variationKey%22:%22ccv_based%22%2C%22userExperiment%22:%22optimizing_multiselect_logic_experimet_gb%22%2C%22userStatus%22:%22include%22}; _HFattr=eyJ1dG1fc291cmNlIjoiYWZmaWxpYXRlIiwidXRtX21lZGl1bSI6ImNwbyIsInV0bV9jYW1wYWlnbiI6IkdCXzBfV0VCXzBfQkFVX0lSOiBFbWFpbF9Mb3Z2aXNfNjB4MS0yNXg4LVBDVC00X0lSX0xvdnZpcyBBZHZlcnRpc2luZyBTTF8yNTE0NTExIiwidXRtX2NvbnRlbnQiOiJURVhUX0xJTksifQ%3D%3D; _HFtr=474966389.1664270757; _HFtr_gid=683355498.1664270757; _HFtr_gat=1; hf_cookie_permissions=,C0004,C0001,C0002,C0003,; solvvy_disabled=; hf_plan_recommendation_experiment={%22stage%22:%22stage01%22%2C%22peopleSize%22:%222%22%2C%22peopleSizeFromProductConfigurator%22:%222%22}; _rdt_uuid=1664270757510.ba8c06ff-febb-4a68-8bd8-90be464cfc33; __pdst=b1d9dae4e65e4315a8320caab2641677; _slvs=1fbcdb94-b5bf-4a21-8586-34b1cca5a3f4; _slvddv=true; _tq_id.TV-099045-1.f72c=b07a58c077666f09.1664270758.0.1664270758..; StoredCouponCode=HELLOLS60; _ga_30WBVFPQZP=GS1.1.1664270757.1.1.1664270757.60.0.0; _ga=GA1.1.2004027731.1664270758; _fbp=fb.1.1664270759803.1955163163; FPAU=1.3.2032898664.1664270760; ir_clickid=zG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0; gtm_server_voucher=HELLOLS60
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.109.55
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 09:26:01 GMT
content-length: 2
access-control-allow-origin: https://www.hellofresh.co.uk
content-security-policy: frame-ancestors 'self' https://frontend.pttn.com;
x-envoy-upstream-service-time: 123
x-frame-options: SAMEORIGIN
x-request-id: b096e59a-d17b-989c-8094-24c29ab11d2c
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751332007c00b4e8-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /heatmap-dynamic-view.090f7af857c058ab40b4.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 2827
date: Wed, 07 Sep 2022 09:17:08 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "16c693059e6964759ae9d5fdfd5623b0"
last-modified: Wed, 07 Sep 2022 09:16:56 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EleJFeJpV0Jyctiv5JUH1IUjblJHPRKKeXwFd4XYpP81hXXnpSoHhA==
age: 1728533
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9695)
Size:   2827
Md5:    16c693059e6964759ae9d5fdfd5623b0
Sha1:   41b9de0b59eb991fb9cff058cc2bae2b4c262641
Sha256: b45408bec8e2b462bedfbc2ebbc644dccab390453d47685e3c519fbf52de3077
                                        
                                            GET /smooch.4.29.21.min.js HTTP/1.1 
Host: cdn.smooch.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 22 Aug 2022 06:27:47 GMT
x-amz-replication-status: FAILED
last-modified: Tue, 08 Sep 2020 18:39:13 GMT
etag: W/"6171543f992da858201f8cd3b3505546"
cache-control: max-age=630720000, public
x-amz-version-id: 5osp1uPQgOlnlgVtAwkMXRvrwmvAR3Zv
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 16KF030vg-FGRv7gOSnE_0eKCryrRYEJTfWq1AZlYRdRVt1aPE0V3A==
age: 3121095
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3915
Md5:    e6dfec8f0d225d392de1e2a538b10547
Sha1:   13a4f4cc4f3227544ce345c20437ab31731c2038
Sha256: 99d05db4e125bdb2372e2d9d4f42c1b5145668d4451069654342a1eea3d9c7e8
                                        
                                            GET /p/action/26038352.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.21.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=17EEB6D0219862390368A4FC206D6397; domain=.bing.com; expires=Sun, 22-Oct-2023 09:26:01 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F3E445D1F1BD44F4A41A7AAD7D9CF812 Ref B: OSL30EDGE0505 Ref C: 2022-09-27T09:26:01Z
date: Tue, 27 Sep 2022 09:26:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /action/0?ti=26038352&tm=gtm002&Ver=2&mid=0b9b4e20-77cd-4413-88d7-c5456c8d7f67&sid=6578d2203e4611edb9ce25d7752e7e06&vid=6578c9a03e4611ed861df90da1cd54c2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=HelloFresh%20Recipe%20Boxes&p=https%3A%2F%2Fwww.hellofresh.co.uk%2Fpages%2Fresolution%3Firgwc%3D1%26utm_source%3Daffiliate%26utm_medium%3Dcpo%26utm_campaign%3DGB_0_WEB_0_BAU_IR%253A%2520Email_Lovvis_60x1-25x8-PCT-4_IR_Lovvis%2520Advertising%2520SL_2514511%26utm_content%3DTEXT_LINK%26irclickid%3DzG6Q1lz8uxyNU1AXoSTPUU5XUkDTrXW1D1MORM0%26c%3DHELLOLS60&r=&lt=6939&evt=pageLoad&sv=1&rn=31230 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hellofresh.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers