Overview

URLcj.dotomi.com/i5116nmvuC/mty/BFEDFIDG/BAADDEHJG/A/A/A?v=rH72=SzSY0U0RTS2PTYzRz4Q4Q4UzVUVUQYz1<<6IIEH://LLL.9FON48.1DB/1A719-QPPSSTWYV-QUTSUXSV<<f<6IIE://LLL.9FON48.1DB<<Q<Q<P<P<P<
IP 89.207.16.75 (United States)
ASN#41041 Conversant LLC
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access public lock_open
Report completed2023-03-23 15:04:10 UTC
StatusLoading report..
IDS alerts6
Blocklist alert0
urlquery alerts No alerts detected
Tags None

Domain Summary (46)

Fully Qualifying Domain Name Rank First Seen Last Seen Sent bytes Received bytes IP Comment
logx.optimizely.com (2) 1233 2016-10-05T15:33:23Z 2023-03-29T10:15:21Z 940 858 54.80.39.174
d3nocrch4qti4v.cloudfront.net (2) 0 2017-02-27T20:32:08Z 2023-03-28T11:51:20Z 871 14721 52.222.250.224
tms.hft.everyplate.com (2) 322014 2021-09-03T22:29:24Z 2023-03-23T16:03:58Z 1091 1390 34.160.69.63
tag.wknd.ai (1) 7914 2020-03-12T01:16:57Z 2023-03-29T16:03:20Z 359 9480 34.120.253.250
status.geotrust.com (3) 3662 2017-12-01T09:55:31Z 2023-03-29T05:13:49Z 1029 2358 192.229.221.95
shop.pe (1) 10635 2012-07-24T20:16:22Z 2023-03-29T14:43:39Z 368 652 35.227.244.1
q.quora.com (1) 3239 2017-05-08T21:06:57Z 2023-03-29T17:37:40Z 666 16063 3.209.34.109
stats.g.doubleclick.net (1) 96 2013-06-10T22:21:11Z 2023-03-29T09:08:31Z 519 532 209.85.233.154
cdn0.forter.com (5) 5146 2016-01-26T18:42:32Z 2023-03-29T17:40:39Z 2406 1810 34.192.191.43
static.hotjar.com (1) 641 2014-11-01T06:14:27Z 2023-03-29T05:25:56Z 379 81513 54.230.111.8
shopper.shop.pe (1) 12886 2017-07-18T21:28:17Z 2023-03-28T21:01:48Z 362 9794 35.190.54.17
firefox.settings.services.mozilla.com (2) 867 2020-06-04T22:08:41Z 2023-03-29T05:09:03Z 782 2374 35.241.9.150
ocsp.pki.goog (12) 175 2018-07-01T08:43:07Z 2023-03-29T05:09:04Z 4158 32765 142.250.74.163
cdn3.forter.com (2) 4640 2014-04-09T14:27:26Z 2023-03-29T17:01:09Z 933 9886 3.232.59.66
w.usabilla.com (1) 3254 2012-12-06T08:59:01Z 2023-03-29T06:00:53Z 373 11075 34.252.19.64
web-chat-tag-cdn.s3.eu-west-1.amazonaws.com (3) 104861 2021-07-05T16:07:10Z 2023-03-28T15:03:51Z 1193 63312 3.5.71.169
cdn.nytrng.com (1) 25486 2020-10-02T20:00:48Z 2023-03-28T21:01:49Z 357 481 54.230.111.72
cj.dotomi.com (1) 13192 2014-02-07T10:51:46Z 2023-03-29T12:30:44Z 534 1916 89.207.16.75
images.everyplate.com (4) 174595 2018-07-06T15:28:54Z 2023-03-24T17:38:31Z 2822 121565 2.18.173.70
contile.services.mozilla.com (1) 1114 2021-05-27T20:32:35Z 2023-03-29T05:09:31Z 333 391 34.117.237.239
nytrng.com (1) 3752 2017-05-13T02:54:58Z 2023-03-28T21:01:48Z 520 568 75.2.91.175
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-22T01:36:00Z 2023-03-29T05:09:12Z 3246 55266 34.120.237.76
ocsp.digicert.com (2) 86 2012-05-21T09:02:23Z 2023-03-29T11:45:01Z 682 2110 192.229.221.95
bat.bing.com (2) 387 2014-04-08T11:23:16Z 2023-03-29T05:25:55Z 742 13033 13.107.21.200
ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03T16:20:51Z 2019-03-27T05:05:54Z 1050 3018 54.230.245.118
d6tizftlrpuof.cloudfront.net (1) 0 2013-05-24T02:48:46Z 2023-03-29T08:31:42Z 460 2234 54.230.245.47
script.hotjar.com (1) 887 2020-11-05T17:23:46Z 2023-03-29T08:27:03Z 387 69816 54.230.111.73
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03T13:26:46Z 2023-03-29T05:09:31Z 413 5881 34.160.144.191
ocsp.globalsign.com (1) 2075 2012-07-20T19:46:16Z 2023-03-29T05:11:35Z 359 1906 104.18.21.226
7a37ed0f6797.cdn4.forter.com (1) 115075 2020-11-29T17:41:28Z 2023-03-29T16:47:33Z 392 178713 54.230.111.78
www.emjcd.com (1) 13026 2012-05-22T19:01:00Z 2023-03-29T12:30:44Z 827 1556 89.207.16.75
push.services.mozilla.com (1) 2140 2014-10-24T10:27:06Z 2023-03-29T05:09:32Z 606 127 52.32.229.246
ocsp.r2m01.amazontrust.com (4) 0 2022-10-12T22:43:53Z 2023-03-29T09:11:41Z 1400 51405 54.230.80.227
10a9494947824ca5be5dbb7494d550fe-7a37ed0f6797.cdn.forter.com (1) 0 503 624 100.26.87.64
cdn9.forter.com (1) 5233 2018-07-31T09:01:55Z 2023-03-29T17:38:28Z 500 592 54.230.111.31
www.google.no (1) 25607 2016-04-05T21:50:59Z 2023-03-29T09:59:29Z 796 641 216.58.207.227
addshoppers.s3.amazonaws.com (3) 15696 2014-06-11T09:08:46Z 2023-03-28T21:01:48Z 1321 9198 52.216.145.99
r3.o.lencr.org (13) 344 2020-12-02T09:52:13Z 2023-03-29T05:09:11Z 4394 38875 95.101.11.115
o46710.ingest.sentry.io (1) 65751 2020-06-17T12:52:39Z 2023-03-28T15:03:49Z 585 6510 34.120.195.249
www.google.com (1) 7 2015-05-10T13:11:19Z 2023-03-29T05:55:56Z 485 1565 142.250.74.164
www.googleadservices.com (1) 107 2012-06-26T16:53:06Z 2023-03-29T14:17:45Z 1618 2245 142.250.74.162
googleads.g.doubleclick.net (2) 42 2021-02-20T16:43:32Z 2023-03-29T10:24:16Z 2839 3651 216.58.211.2
www.everyplate.com (1) 259192 2018-08-16T17:27:49Z 2023-03-27T19:50:34Z 608 825 104.16.55.89
app.shop.pe (1) 28969 2019-03-05T15:02:38Z 2023-03-28T21:01:48Z 442 714 35.227.244.1
i.geistm.com (1) 2299 2017-01-30T19:00:10Z 2023-03-28T13:24:54Z 378 7854 52.55.74.209
d3rr3d0n31t48m.cloudfront.net (3) 0 2015-04-02T03:14:22Z 2023-03-29T14:43:40Z 1213 55161 54.230.111.56

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2023-03-23 15:04:11 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 
2023-03-23 15:04:11 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 
2023-03-23 15:04:12 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 
2023-03-23 15:04:12 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 
2023-03-23 15:04:13 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 
2023-03-23 15:04:14 UTC high Client IP  52.23.111.175 ET INFO Session Traversal Utilities for NAT (STUN Binding Request) 

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

ThreatFox
 No alerts detected

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 89.207.16.75
Date UQ / IDS / BL URL IP
2023-05-31 23:05:45 UTC 0 - 1 - 0 cj.dotomi.com/os83zw43M/w27/RMTTNQL/PTOKSPP/K (...) 89.207.16.75
2023-05-31 23:05:11 UTC 0 - 1 - 0 cj.dotomi.com/fj104y1A9S/18D/XSZZTWR/VZUQYVV/ (...) 89.207.16.75
2023-05-31 22:01:28 UTC 0 - 3 - 0 cj.dotomi.com/nm97uoxwE/ov-/DGCEIJFJ/DCCJIKKC (...) 89.207.16.75
2023-05-31 15:01:33 UTC 0 - 2 - 0 cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG (...) 89.207.16.75
2023-05-31 06:49:38 UTC 0 - 1 - 0 cj.dotomi.com/3m117cy65O/y49/NPUVPQNM/NMMURUV (...) 89.207.16.75


Last 5 reports on ASN: Conversant LLC
Date UQ / IDS / BL URL IP
2023-05-31 23:05:45 UTC 0 - 1 - 0 cj.dotomi.com/os83zw43M/w27/RMTTNQL/PTOKSPP/K (...) 89.207.16.75
2023-05-31 23:05:11 UTC 0 - 1 - 0 cj.dotomi.com/fj104y1A9S/18D/XSZZTWR/VZUQYVV/ (...) 89.207.16.75
2023-05-31 22:01:28 UTC 0 - 3 - 0 cj.dotomi.com/nm97uoxwE/ov-/DGCEIJFJ/DCCJIKKC (...) 89.207.16.75
2023-05-31 15:01:33 UTC 0 - 2 - 0 cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG (...) 89.207.16.75
2023-05-31 06:49:38 UTC 0 - 1 - 0 cj.dotomi.com/3m117cy65O/y49/NPUVPQNM/NMMURUV (...) 89.207.16.75


Last 5 reports on domain: dotomi.com
Date UQ / IDS / BL URL IP
2023-05-31 23:05:45 UTC 0 - 1 - 0 cj.dotomi.com/os83zw43M/w27/RMTTNQL/PTOKSPP/K (...) 89.207.16.75
2023-05-31 23:05:11 UTC 0 - 1 - 0 cj.dotomi.com/fj104y1A9S/18D/XSZZTWR/VZUQYVV/ (...) 89.207.16.75
2023-05-31 22:01:28 UTC 0 - 3 - 0 cj.dotomi.com/nm97uoxwE/ov-/DGCEIJFJ/DCCJIKKC (...) 89.207.16.75
2023-05-31 15:01:33 UTC 0 - 2 - 0 cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG (...) 89.207.16.75
2023-05-31 06:49:38 UTC 0 - 1 - 0 cj.dotomi.com/3m117cy65O/y49/NPUVPQNM/NMMURUV (...) 89.207.16.75


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-03-23 15:04:12 UTC 0 - 6 - 0 cj.dotomi.com/8066ft10J/t-4/IMLKMPKN/IHHKKLOQ (...) 89.207.16.75
2023-03-23 15:04:09 UTC 0 - 6 - 0 cj.dotomi.com/2m104zw43M/w27/LPONPSNQ/LKKNNOR (...) 89.207.16.75
2023-03-23 15:03:47 UTC 0 - 6 - 0 cj.dotomi.com/lr82mu21K/u05/JNMLNQLO/JIILLMPR (...) 89.207.16.75
2023-03-23 15:03:33 UTC 0 - 5 - 0 cj.dotomi.com/kl70nmvuC/mty/BFEDFIDG/BAADDEHJ (...) 89.207.16.75
2023-03-23 15:03:59 UTC 0 - 6 - 0 cj.dotomi.com/q570gv32L/v16/KONMORMP/KJJMMNQS (...) 89.207.16.75

JavaScript

Executed Scripts (101)

Executed Evals (60)
#1 JavaScript::Eval (size: 437) - SHA256: f58a94b1c4ce4beb544851d2eda967102edaf7a7f2f3a656666e38b8420a9146
(function() {
    var a = 0,
        b = 0;
    "number" == typeof window.innerWidth ? (a = window.innerWidth, b = window.innerHeight) : document.documentElement && (document.documentElement.clientWidth || document.documentElement.clientHeight) ? (a = document.documentElement.clientWidth, b = document.documentElement.clientHeight) : document.body && (document.body.clientWidth || document.body.clientHeight) && (a = document.body.clientWidth, b = document.body.clientHeight);
    return a + "x" + b
})();
#2 JavaScript::Eval (size: 1420) - SHA256: 12046c175ab54e3091403cf2c323cc334253eb2a6fbc8519d48987378d525725
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(36));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#3 JavaScript::Eval (size: 274) - SHA256: 9acc977704569aa9c179f29799b7f6efcdea0690920991ab78bd0eb51d96fee3
(function() {
    var b = window.dataLayer.filter(function(a) {
        if ("gaEventTrigger" == a.event && a.hasOwnProperty("gaEventAction") && "applyVoucher" == a.gaEventCategory && a.gaEventAction.includes("notificationImpression | valid")) return a
    });
    return b[0].gaEventLabel.split("|")[0].trim()
})();
#4 JavaScript::Eval (size: 6452) - SHA256: 31f5890232343beec75ab42b45e5b825c09b677644f6064d75f4115d6256baf5
;
(function(trigger, id, start, end) {
    var now = Date.now();
    if (now > start && (end == null || now < end)) {
        window.AddShoppersTriggerRunner(trigger, function() {
            window.AddShoppersTriggerRunner.updateUsersActiveEmailCampaign(id);
            _add.push({
                campaign_id: id,
                active_cart: true
            })
        })
    }
})({
    "id": null,
    "combinator": "all",
    "rules": [{
        "field": "cart-count",
        "id": "id_37neqcl0sv2",
        "value": 0,
        "operator": "greater-than"
    }]
}, "60e86ffa27f7c314acfdf9f6", 1657303258354, null);;
(function(trigger, id, start, end) {
    var now = Date.now();
    if (now > start && (end == null || now < end)) {
        window.AddShoppersTriggerRunner(trigger, function() {
            window.AddShoppersTriggerRunner.updateUsersActiveEmailCampaign(id);
            _add.push({
                campaign_id: id,
                active_cart: true
            })
        })
    }
})({
    "combinator": "all",
    "rules": [{
        "id": "id_rctj615r2ll",
        "value": {
            "duration": 720,
            "unitOfTime": "hours",
            "count": 0
        },
        "operator": "greater-than",
        "field": "product-views"
    }, {
        "id": "id_jej8qr0iz9",
        "operator": "greater-than",
        "value": 3,
        "field": "page-views"
    }, {
        "id": "id_8sdwd1402md",
        "value": "60e86ffa27f7c314acfdf9f6",
        "operator": "is-not",
        "field": "users-active-campaign"
    }],
    "id": null
}, "60ff126b27f7c3756142546e", 1657303234988, null);

(function() {
    // User code
    function asIsProductPage() {
            if (document.querySelector('[data-test-id="select-plan-button"]')) {
                try {
                    return {
                        'product_name': document.querySelector('#page h1').textContent.replace(';', ',').trim(),
                        'image': document.querySelector('img[alt="Top Rated"]').src.split('?')[0],
                        'price': parseFloat(document.querySelector('[data-test-id="box-price"]').textContent.replace(';', ',').replace(/[^0-9\.]/g, '')),
                        'quantity': 1,
                        'sku': document.URL.split('?')[0]
                    }
                } catch (e) {
                    _add.push({
                        'push_response': true,
                        'custom_values': {
                            'broken_selectors': 'product',
                            'url': document.URL.split('?')[0]
                        }
                    });
                }
            }
        }
        // End of user code
    if (typeof asIsProductPage === 'function') {
        window.asIsProductPage = asIsProductPage;
    }
})();


(function() {
    // User code
    function asCartRows() {
            try {
                return document.querySelectorAll('form+section');
            } catch (e) {
                _add.push({
                    'push_response': true,
                    'custom_values': {
                        'broken_selectors': 'cart',
                        'url': document.URL.split('?')[0]
                    }
                });
            }
        }
        // End of user code
    if (typeof asCartRows === 'function') {
        window.asCartRows = asCartRows;
    }
})();


(function() {
    // User code
    function asOfferRedemption(callback) {
            var element = document.querySelector('#voucherCode')
            if (typeof(element) != 'undefined' && element != null) {
                element.addEventListener('change', (event) => {
                    callback(element.value);
                });
            }
        }
        // End of user code
    if (typeof asOfferRedemption === 'function') {
        window.asOfferRedemption = asOfferRedemption;
    }
})();


(function() {
    // User code
    function asCartItems(cartRows) {
            if (cartRows.length > 0) {
                var asCartArr = [];
                for (let x = 0; x < cartRows.length; x++) {
                    try {
                        let asCartProduct = {
                            'product_name': cartRows[x].querySelector('form+section>dl:first-child>dt>div>span').innerText.trim().replace(/\r?\n|\r/g, ''),
                            'price': cartRows[x].querySelector('form+section>dl:first-child>dd>span').textContent.replace(/[^0-9\.]/g, ''),
                            'image': document.querySelector('img').src,
                            'quantity': 1,
                            'sku': document.URL.split('?')[0]
                        }
                        asCartArr.push(asCartProduct);
                    } catch (e) {
                        _add.push({
                            'push_response': true,
                            'custom_values': {
                                'broken_selectors': 'cart',
                                'url': document.URL.split('?')[0]
                            }
                        });
                    }
                }
                return asCartArr;
            }
        }
        // End of user code
    if (typeof asCartItems === 'function') {
        window.asCartItems = asCartItems;
    }
})();


(function() {
    // User code
    function asCart(isCartPage) {
            // console.log('asCart');
            isCartPage();

            function isCartPage() {
                if (document.URL.search('/checkout') > -1) {
                    return true;
                }
            }
        }
        // End of user code
    if (typeof asCart === 'function') {
        window.asCart = asCart;
    }
})();


(function() {
    // User code
    //Preventing takeback - Marinko
    try {
        localStorage.setItem(AddShoppersWidget._asPreventPopSpamLocalStorageItemKey, Date.now());
    } catch (eRr) {
        console.log(eRr)
    }

    // End of user code
    if (typeof asLoggedIn === 'function') {
        window.asLoggedIn = asLoggedIn;
    }
})();;
AddShoppersTriggerRunner.dataLayerLoaded();
AddShoppersWidget && AddShoppersWidget.dataLayerLoaded && AddShoppersWidget.dataLayerLoaded();
#5 JavaScript::Eval (size: 85) - SHA256: b87edbcc66538ceb2730249093976a8e5dd4889ad16c734a9e5d3bdcb01f1a5d
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(35);
    if (a) return "US-" + a
})();
#6 JavaScript::Eval (size: 55) - SHA256: 7298340c9215e92c591ef8f21c78035181c3cc1ffd71ccc91e062f563f6e3fac
(function() {
    return window.screen.colorDepth + "-bit"
})();
#7 JavaScript::Eval (size: 144) - SHA256: 507919c085b18fabac7d26499091e0ddcbab074c6f2ea82c1d38699a8acb371e
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(25)
    });
    return b
})();
#8 JavaScript::Eval (size: 1420) - SHA256: f6065a343fc48de08e024a98be686fcd66826f6fff0fa16ab1b37704c19ace32
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(43));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#9 JavaScript::Eval (size: 1420) - SHA256: ec9ecc6d2a0a86f0a69a46a001297ef62da0858fdb65e7f8a0460a8994273163
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(85));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#10 JavaScript::Eval (size: 170) - SHA256: 519c734c12dab554ec75ddf945cb770e6b7a1c4f7b4b15f629b42d729d0535bd
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(7) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#11 JavaScript::Eval (size: 85) - SHA256: a04c3943442defab7094288a6d20b07a844d53e39fbbdb544a772da02904073c
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(66);
    if (a) return "US-" + a
})();
#12 JavaScript::Eval (size: 171) - SHA256: f4a4046a3d49139eec6eff2ffe750b71e365044fbcce4fe49aaa5d832b67158d
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(37) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#13 JavaScript::Eval (size: 171) - SHA256: 51f66d8a027ad26b87ce204829c41087199e93cda466d602f5c4d5f509a021d9
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(57) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#14 JavaScript::Eval (size: 1420) - SHA256: a3a63cbda7d31f5e991c1ce6661f00478ed5e64056770236a2a80053631fa955
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(67));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#15 JavaScript::Eval (size: 114) - SHA256: 408f7c709f93c9942ba04ca5b7a300901562b7abd208a4bbd01c8957b3a9b1f2
(function() {
    var a = localStorage.getItem("em_base64"),
        b = google_tag_manager["GTM-P2Q9ZFQ"].macro(69);
    return b || a
})();
#16 JavaScript::Eval (size: 144) - SHA256: a604d305c652f7300b435de9a4ed782c618430bd9a187aeaa18394fa21d77362
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(73)
    });
    return b
})();
#17 JavaScript::Eval (size: 88) - SHA256: c7c5a76efc739a55534f9d32c21e209cb6f605c3de6e3d6abc2f5a1158f652fc
(function() {
    var a = window.navigator.userLanguage || window.navigator.language;
    return a
})();
#18 JavaScript::Eval (size: 114) - SHA256: 916c32024f12657be1b76519232ff234413f00d127ab1a07f19ab5d4887563c5
(function() {
    var a = localStorage.getItem("em_base64"),
        b = google_tag_manager["GTM-P2Q9ZFQ"].macro(29);
    return b || a
})();
#19 JavaScript::Eval (size: 85) - SHA256: 40094d0e457cca4c5a3588ad6331637d76560d166747873af46a43690316314b
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(83);
    if (a) return "US-" + a
})();
#20 JavaScript::Eval (size: 114) - SHA256: fd1f78ba7a1e8007b212b79031b555483e2af459035133e31d22e889f1587f91
(function() {
    var a = localStorage.getItem("em_base64"),
        b = google_tag_manager["GTM-P2Q9ZFQ"].macro(10);
    return b || a
})();
#21 JavaScript::Eval (size: 47) - SHA256: 0b0baeb1d9c708a2ebe0feced3d1f71ed6144e89b3e243f1f6d66df89a038fa1
(function() {
    return (new Date).toISOString()
})();
#22 JavaScript::Eval (size: 85) - SHA256: 0a39ceafe342651825802b1d736ff93e7a60352be0123a8540a0e8d954b39321
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(42);
    if (a) return "US-" + a
})();
#23 JavaScript::Eval (size: 87) - SHA256: 7f04d3d2edc0da059f98dcf6f1ac6d0f768ef0dc784833acdec93a1c66bf7cb8
(function() {
    var a = "\/plans",
        b = /20+[\w-]+[\w-]+-W+[\w-]+[\w-]/g;
    return a = a.match(b)
})();
#24 JavaScript::Eval (size: 85) - SHA256: ecec43915794e6ecfd8b38a35d132fabff8395afdff96c107a9c0fb066f222ac
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(18);
    if (a) return "US-" + a
})();
#25 JavaScript::Eval (size: 68) - SHA256: dba9548a74568742c5f058172eb98a0b94a46265c49aec0d1d37c0b53aec661a
(function() {
    return window.screen.width + "x" + window.screen.height
})();
#26 JavaScript::Eval (size: 1420) - SHA256: 454941d0d37940864217e3b8a8606a1cb6c28b993b107b74ffd35511c9236be0
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(27));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#27 JavaScript::Eval (size: 91) - SHA256: 798712397ddaf622d667052b2f6cff3fd68a96dff7c29c9aec4f0fd1f72a0ee7
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(75);
    return a.split(" | ")[2]
})();
#28 JavaScript::Eval (size: 15081) - SHA256: 0145ad33b61d38490867e34c74d558254d064e1a521999fba4d255d9d2cfd65e
// START SECTION TO EDIT
var addshopSettings = {
    emailInputsToExclude: [ // array of document.querySelectorAll objects
        //document.querySelectorAll('[name=newsletter-email]')
    ],
    emailUtmsToExclude: [], // optional, include array of all utm codes that client has requested we suppress
    asAnonCartCampaignIds: ['60e86ffa27f7c314acfdf9f6'], // array of all Cart Abandon ERC campaigns (include more than one for A/B testing)
    asAnonProdCampaignIds: [], // array of all Browse (aka product) Abandon ERC campaigns (include more than one for A/B testing)
    asAnonGenCampaignIds: [], // array of all General Abandon ERC campaigns (include more than one for A/B testing)
    checkoutSuccessUrl: '', // optional, leave blank if you don't know it (but ROI Tracking must be installed if you leave it blank)
    daysToClearSavedProducts: 30, // optional, set to a number of days greater than 0 to clear out old saved products viewed
    daysToClearSavedCartData: 30, // optional, set to a number of days greater than 0 to clear out old cart data (products & campaign ID)
    minPageviewsForGen: 1,
    onProductPage: function() {
        // IMPORTANT
        // Make sure to check for the presence of an add to cart button (and further, make sure it's an add to cart button
        // for the main product, not a recommended/suggested/accessory product)
        if (document.querySelector('body.template-product')) {
            return true
        }
        return false;
    },
    getProductPageDetails: function() {
        // return the product details
        return {
            'product_name': "",
            'image': "",
            'price': "",
            'quantity': 1,
            'sku': ""
        }
    },
    onCartPage: function() {
        // return true if on cart page, false if not
        if (document.URL.search('/checkout') > -1) {
            return true
        }
        return false;
    },
    getCartRows: function() {
        // return array of all cart item elements
        return document.querySelectorAll('.cart-table tr');
    },
    getCartItemDetails: function(row) {
        // each row from getCartRows gets passed into this function
        // the row variable contains the cart item element 
        return {
            'product_name': "",
            'price': "",
            'image': "",
            'quantity': "",
            'sku': ""
        }
    },
    getCartTotal: function() {
        // return the order grand total (called on cart page only)
        return 1;
    },
    isLoggedIn: function() {
        // if we don't have to exclude signed in people, just always return false here
        // otherwise, return true if the user is signed in
        // if ( document.querySelector(".is-loggedin") !== null && document.querySelector(".is-loggedin") !== undefined) {
        //     return true;
        // }
        return false;
    },
    isExcludedPage: function() {
        // function here to exclude any pages from tracking
        // if you return true, the script won't run (but it won't exclude the user completely)
        return false;
    },
    addPushCustom: function(addPushObject) {
        // customizations to _add.push
        return addPushObject;
    },
    trackCustom: function() {
        // do anything custom here
        var asCampaignId = '60ff126b27f7c3756142546e';
        var initialTime = '';
        if (localStorage.getItem('asFirstTimeOnSite') === null || localStorage.getItem('asFirstTimeOnSite') === '') {
            initialTime = new Date().getTime();
            localStorage.setItem('asFirstTimeOnSite', initialTime);
        } else {
            initialTime = localStorage.getItem('asFirstTimeOnSite');
        }
        var totalTimeOnSite = 0;
        setInterval(function() {
            totalTimeOnSite = new Date().getTime() - initialTime;
            localStorage.setItem('timeOnSite', totalTimeOnSite);
            if (totalTimeOnSite > 150000 && localStorage.getItem('asHasViewedProductPage') !== 'true' && localStorage.getItem('asCartPushed') !== '1') {
                _add.push({
                    'active_cart': true,
                    'campaign_id': asCampaignId,
                });
                // reset time on site to 0
                localStorage.removeItem('asFirstTimeOnSite');
                localStorage.removeItem('timeOnSite');
                totalTimeOnSite = 0;
                initialTime = new Date().getTime();
            }
        }, 1000);
    }
}

// END SECTION TO EDIT

document.addEventListener('addshopNetworkReady', function(e) {
    addshopNetwork(addshopSettings);
}, false);

var lastTriggerTime = '';
const observer = new MutationObserver(function() {
    if (new Date().getTime() > lastTriggerTime + 15000 || lastTriggerTime === '') {
        lastTriggerTime = new Date().getTime();
        addshopNetwork(addshopSettings);
    }
});
observer.observe(document.body, {
    attributes: true,
    childList: true,
    subtree: true
});

try {
    var addshopNetwork = function(settings) {
        //---------START NETWORK EMAILS

        var emailInputsTracked = [];

        var asPageViews = parseInt(localStorage.getItem('asPageViews') || 1);

        if (settings.daysToClearSavedProducts > 0) {
            var asLastUpdatedStoredProducts = localStorage.getItem('asLastSavedProducts');

            // if it's been longer than 30 days since the products have been saved, clear them
            if ((asLastUpdatedStoredProducts && new Date() - new Date(asLastUpdatedStoredProducts) > (86400000 * settings.daysToClearSavedProducts)) || !asLastUpdatedStoredProducts) {
                localStorage.removeItem('asProductsViewed');
                localStorage.removeItem('asProdCampaignId');
                localStorage.setItem('asLastSavedProducts', new Date().toString());
            }
        }

        if (settings.daysToClearSavedCartData > 0) {
            var asLastPushedCart = localStorage.getItem('asLastPushedCart');

            // if it's been longer than 30 days since the products have been saved, clear them
            if ((asLastPushedCart && new Date() - new Date(asLastPushedCart) > (86400000 * settings.daysToClearSavedCartData)) || !asLastPushedCart) {
                localStorage.removeItem('asCartCampaignId');
                localStorage.setItem('asLastPushedCart', new Date().toString());
            }
        }

        if (localStorage.getItem('asAnonDisable') == '1' || settings.isExcludedPage()) {
            return;
        }

        //general visitor
        if (localStorage.getItem('asAnonPushed') !== '1') {
            var to_push = {
                "active_cart": true,
                'custom_values': {
                    'as_network': true
                }
            }
            if (settings.asAnonGenCampaignIds.length > 0 && asPageViews >= settings.minPageviewsForGen) {
                to_push.campaign_id = settings.asAnonGenCampaignIds[Math.floor(Math.random() * settings.asAnonGenCampaignIds.length)];
                localStorage.setItem('asGenCampaignId', to_push.campaign_id);
            }
            _add.push(settings.addPushCustom(to_push))
            localStorage.setItem('asAnonPushed', '1');
        }

        //-------if converted turn off anon email
        if (typeof AddShoppersConversion != "undefined" || (typeof settings.checkoutSuccessUrl == "string" && settings.checkoutSuccessUrl.length > 0 && document.URL.toLowerCase().search(settings.checkoutSuccessUrl.toLowerCase()) > -1)) {
            _add.push({
                "custom_values": {
                    "as_network": false
                },
                "active_cart": false,
                "campaign_id": "",
                "cart_contents": []
            });
            return;
        }
        // trigger general abandon if it meets the criteria (if it wasn't called on first pageview)
        else if (settings.asAnonGenCampaignIds.length > 0 && asPageViews >= settings.minPageviewsForGen && localStorage.getItem('asGenCampaignId') === null) {
            if (!settings.onCartPage() && !settings.onProductPage()) {
                var asGenCampaignId = settings.asAnonGenCampaignIds[Math.floor(Math.random() * settings.asAnonGenCampaignIds.length)];
                _add.push({
                    campaign_id: asGenCampaignId
                });
                localStorage.setItem('asGenCampaignId', asGenCampaignId);
            }
        }

        //-------if user came from an email, disable
        if (excludeEmailUtm()) {
            _add.push({
                "custom_values": {
                    "as_network": false
                },
                "active_cart": false
            });
            localStorage.setItem('asAnonDisable', '1');
            return;
        }


        //-------if user is signed in set anon to false
        if (settings.isLoggedIn()) {
            _add.push({
                "custom_values": {
                    "as_network": false
                },
                "active_cart": false
            });
            localStorage.setItem('asAnonPushed', '1');
            localStorage.setItem('asAnonDisable', '1');
            return;
        }

        //***************has cart***************
        if (settings.onCartPage() && settings.asAnonCartCampaignIds.length > 0) {
            //cart contents
            var cart_contents = settings.getCartRows();
            var asCartValue = parseFloat(settings.getCartTotal());
            var cartContentsArray = [];

            for (i = 0; i < cart_contents.length; i++) {
                var cart_item = settings.getCartItemDetails(cart_contents[i]);

                if (!cart_item) {
                    continue
                }

                if (typeof cart_item.sku == "string") {
                    var productsViewed = JSON.parse(localStorage.getItem('asProductsViewed')) || [];
                    if (productsViewed.length > 0) {
                        check_products_loop: for (var prod = 0; prod < productsViewed.length; prod++) {
                            if (productsViewed[prod].sku.toLowerCase() == cart_item.sku.toLowerCase()) {
                                cart_item.image = productsViewed[prod].image;
                                break check_products_loop;
                            }
                        }
                    }
                }

                cart_item.price = parseFloat(cart_item.price);
                cart_item.quantity = parseInt(cart_item.quantity);
                cartContentsArray.push(cart_item);
            }

            if (localStorage.getItem('asCartCampaignId') === null) {
                var campaign_id = settings.asAnonCartCampaignIds[Math.floor(Math.random() * settings.asAnonCartCampaignIds.length)];
                localStorage.setItem('asCartCampaignId', campaign_id);
            } else {
                var campaign_id = localStorage.getItem('asCartCampaignId');
            }

            asPushCartContents(cartContentsArray, asCartValue, campaign_id);

            localStorage.setItem('asCartPushed', '1');
            localStorage.setItem('asLastPushedCart', new Date().toString());
        }
        // product page
        else if (settings.onProductPage() && localStorage.getItem('asCartPushed') !== '1' && settings.asAnonProdCampaignIds.length > 0) {
            var productsViewed = JSON.parse(localStorage.getItem('asProductsViewed')) || [];
            var trackProduct = true;

            var productDetails = settings.getProductPageDetails();

            for (var i = productsViewed.length - 1; i >= 0; i--) {
                if (productsViewed[i].sku == productDetails.sku) {
                    if (productsViewed[i].product_name == productDetails.product_name && productsViewed[i].price == productDetails.price) {
                        trackProduct = false;
                    }
                    productsViewed.splice(i, 1);
                }
            }

            if (trackProduct) {
                productsViewed.push(productDetails);

                // console.log(productsViewed)
                if (localStorage.getItem('asProdCampaignId') === null) {
                    var campaign_id = settings.asAnonProdCampaignIds[Math.floor(Math.random() * settings.asAnonProdCampaignIds.length)];
                    localStorage.setItem('asProdCampaignId', campaign_id);
                } else {
                    var campaign_id = localStorage.getItem('asProdCampaignId');
                }

                if (asPageViews >= settings.minPageviewsForGen) {
                    asPushCartContents(productsViewed, 0, campaign_id);
                }

                localStorage.setItem('asProductsViewed', JSON.stringify(productsViewed));
                localStorage.setItem('asLastSavedProducts', new Date().toString());
            }
        }


        // Exclude email inputs
        for (var i = 0; i < settings.emailInputsToExclude.length; i++) {
            xloop: for (var x = 0; x < settings.emailInputsToExclude[i].length; x++) {
                if (emailInputsTracked.includes(settings.emailInputsToExclude[i][x])) {
                    continue xloop;
                }
                settings.emailInputsToExclude[i][x].addEventListener('blur', function(event) {
                    if (addshopValidateEmail(event.srcElement.value)) {
                        _add.push({
                            "custom_values": {
                                "as_network": false
                            },
                            "active_cart": false
                        });
                        localStorage.setItem('asAnonPushed', '1');
                        localStorage.setItem('asAnonDisable', '1');
                    }
                });
                emailInputsTracked.push(settings.emailInputsToExclude[i][x]);
            }
        }

        function excludeEmailUtm() {
            if (settings.emailUtmsToExclude.length == 0) {
                return false;
            }
            for (i = 0; i < settings.emailUtmsToExclude.length; i++) {
                if (document.URL.toLowerCase().search(settings.emailUtmsToExclude[i].toLowerCase()) > -1) {
                    return true;
                }
            }
            return false;
        }

        function asPushCartContents(cartRay, cartValue, campaignId) {
            _add.push(settings.addPushCustom({
                'campaign_id': campaignId,
                'active_cart': true,
                'cart_contents': cartRay,
                'cart_value': parseFloat(cartValue)
            }));
        }

        if (typeof settings.trackCustom == "function") {
            settings.trackCustom()
        }

    };

    function addshopValidateEmail(email) {
        var re = /^(([^<>()\[\]\\.,;:\s@"]+(\.[^<>()\[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/;
        return re.test(email);
    }

    var addshopReadyEvent = document.createEvent('Event');
    addshopReadyEvent.initEvent('addshopNetworkReady', true, true);
    document.dispatchEvent(addshopReadyEvent);


    //---------END NETWORK EMAILS

} catch (e) {
    console.log(e);
}
#29 JavaScript::Eval (size: 84) - SHA256: 35b0a2b3cb0cd5eeb26f94e3225d660313b82aa843ccf97cb7eb4775847af9a6
(function() {
    return document.location.hostname.match(/(everyplate.*\.?.*)/gi)[0]
})();
#30 JavaScript::Eval (size: 171) - SHA256: bb580c4f2044d75164d20641e3e5f16b6f4e764c45bc3714752fcdab58d70c14
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(44) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#31 JavaScript::Eval (size: 1420) - SHA256: 5c8d4261e29d18099618cb50117d56442399c667a14de0b624bfc6d127b961ef
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(56));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#32 JavaScript::Eval (size: 171) - SHA256: c15eafcfca84d114c5c240e3dec441eaa06b053aaf19a2917ff309c9eb46922d
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(68) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#33 JavaScript::Eval (size: 144) - SHA256: 00170ec6864ad1b1e1d5d015c4623fb7eeba8f6dcd20ac2358ef710acfe912f3
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(82)
    });
    return b
})();
#34 JavaScript::Eval (size: 171) - SHA256: ffbd4c0161a80fe9644379627ebbf06ffcff7466a6deb69b81f9061d48f522f0
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(78) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#35 JavaScript::Eval (size: 1420) - SHA256: 2468a5e39ec6e778ecb183a7ec9ff3350ca98631ec721451a6dcafa9e2fa3c4e
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(19));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#36 JavaScript::Eval (size: 144) - SHA256: c7a200b7707339ed16ad4db047aa7334b0cae795721f0198c5c0ce987900050c
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(34)
    });
    return b
})();
#37 JavaScript::Eval (size: 85) - SHA256: b1a25ae378b3ac87fda442fa15b61c930a1e0b69ee532316cd9121523624c49b
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(74);
    if (a) return "US-" + a
})();
#38 JavaScript::Eval (size: 171) - SHA256: e3a39d925729d3252c254f404b3ff7e5706fdcd1b1522b7449893f93f7d0a38a
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(86) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#39 JavaScript::Eval (size: 260) - SHA256: 23f6bb2bf69256661c531072b42e74f544d609a828ab2918c285b454ecc45d57
(function() {
    var b = document.location.pathname,
        a = document.location.search,
        d = RegExp("prefillEmail|mi_u|prefillFirstName|prefillLastName");
    return a ? (a = a.substring(1), a = a.split("\x26"), a = a.filter(function(c) {
        if (!d.test(c)) return c
    }), a = a.join("\x26"), b + "?" + a) : b
})();
#40 JavaScript::Eval (size: 84) - SHA256: be4639d8879487a9267326640f1fad4a3b0453b9495fe26b002ad009693db13b
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(5);
    if (a) return "US-" + a
})();
#41 JavaScript::Eval (size: 1419) - SHA256: a07360788b5a68f95beff997b84423b2ff17356bc3e6f501d785de3e35d5b468
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(9));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#42 JavaScript::Eval (size: 171) - SHA256: 2cd6b9f44c3796c6777283eb0135f5d52a42fc6a62accc76e13b2cd801a7a8ce
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(20) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#43 JavaScript::Eval (size: 114) - SHA256: c18839c83ff0dc17e0d7f9757dd2e4807e992f3d4db463e9c71ceef39b0385cc
(function() {
    var a = localStorage.getItem("em_base64"),
        b = google_tag_manager["GTM-P2Q9ZFQ"].macro(21);
    return b || a
})();
#44 JavaScript::Eval (size: 171) - SHA256: 7398a51dc4d19afc07536c2d0aaafd2cdb11dac0acb824f1692e2d671361f25b
(function() {
    return google_tag_manager["GTM-P2Q9ZFQ"].macro(28) || window.location.protocol + "//" + window.location.hostname + window.location.pathname + window.location.search
})();
#45 JavaScript::Eval (size: 144) - SHA256: fcd0aaeef2137a714fbb84c693128e7b1e202c785c9f9b58626b8e0124a20e29
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(54)
    });
    return b
})();
#46 JavaScript::Eval (size: 144) - SHA256: dd1b8c4063733dd45a514f6db9b8ca6726279dbd122bed5bf04a3280ecfaa97a
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(65)
    });
    return b
})();
#47 JavaScript::Eval (size: 43) - SHA256: 007cddfce59ab3c7b0d940e987ebe2c27ee1c2a171052809bdfd91f94a66f1db
(function() {
    return navigator.userAgent
})();
#48 JavaScript::Eval (size: 91) - SHA256: e5407c3dc49df806852d124bd22cceedf10193415554bc87255c0d431ad940a8
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(87);
    return a.split(" | ")[2]
})();
#49 JavaScript::Eval (size: 1915) - SHA256: 343d6c43991ff0597ce65a59714b85c774be820c2d96e0905a889a4bfc8fd2c6
/////////////////  refire affiliate link on cart  ////////////////////////////////////
AddShoppersWidget._asReFireAffLinkString = "https://www.tkqlhce.com/click-7738547-15259383"; //VARIABLE
AddShoppersWidget._asReFireAffLink = "asReFireAffLink";
if (window.location.href.indexOf('utm_source=AddShoppers') == -1) { //VARIABLE
    //if (window.location.pathname == '/plans') { //VARIABLE
    var lastLinkRefire = localStorage.getItem(AddShoppersWidget._asReFireAffLink);
    if (lastLinkRefire == null) lastLinkRefire = -1;
    if (lastLinkRefire < Date.now() - 86400000) {
        var url = 'https://app.shop.pe/app/attribution';
        var data = {
            siteId: AddShoppersWidget.id,
            sessionId: AddShoppersWidget.session_id
        };
        AddShoppersWidget.ajax({
                type: 'POST',
                data: AddShoppersWidget.jsonPoly.stringify(data),
                url: url,
                contentType: 'application/json',
                success: function(r) {
                    var json = JSON.parse(r.response);
                    if (json.results) {
                        if (json.results.triggered_email_click) {
                            if (json.results.triggered_email_click.whence == 'Email Click') {
                                var created_at = json.results.triggered_email_click.created_at;
                                created_at = created_at.replace('.Z', 'Z');
                                created_at = Date.parse(created_at);
                                //If event is created in last 24 hours
                                if (created_at > Date.now() - AddShoppersWidget.attribution_hours * 60 * 60 * 1000) {
                                    localStorage.setItem(AddShoppersWidget._asReFireAffLink, Date.now());

                                    window.location.href = AddShoppersWidget._asReFireAffLinkString;
                                }
                            }
                        }
                    }
                },
                error: function() {}
            }, {})
            /////////////////
    }
    // if url end: }
}
//////////////   eof # refire affiliate link on cart    ////////////////////////////
#50 JavaScript::Eval (size: 1420) - SHA256: e4b611c9127aab7fda1eb3ba1b18983d8825de86e4443744d8878ddc539744c7
(function() {
    var a = "analytics-training.pl 3ds-hanseaticbank.de 3dsecure-vrp.de 3dsecure.com 3dsecure.no abnamro.nl acs.sia.eu activa-card.com adyen.com americanexpress.com ampproject.org arcot.com asnbank.nl bankieren.ideal.ing.nl betalen.rabobank.nl bnz.co.nz bunq.com cardcomplete.com cardinalcommerce.com cartasi.it cic.fr cm-cic.com comdirect.de commerzbank.de consorsbank.de creditmutuel.fr deutsche-bank.de diensten.snsbank.nl easybank.at edb.com europabank.be everyplate.de hanseaticbank.de hellofresh.zendesk.com icscards.nl ideal.ing.nl ideal.knab.nl ideal.regiobank.nl ideal.snsbank.nl ideal.triodos.nl ideal.vanlanschot.com ing.be ing.com ing.de ing.nl klarna.com lcl.fr live.adyen.com lloydstsb.com mastercard.us mercurypaymentservices.it modirum.com mycardplace.com mycardsecure.com nab.com.au nxt.to paylife.at paypal.com pluscard.de psa.at rabobank.n rabobank.nl redsys.es regiobank.nl royalbank.com sbanken.no securecode.com securesuite.co.uk securesuite.net sia.eu slsp.sk snsbank.nl sofort.com sparebank1.no sparkasse.at sparkassen-kreditkarten.de swedbank.se swisscard.ch targobank.de touchtechpayments.com verifiedbyvisa.com westpac.com.au wlp-acs.com www.greenchef-biologischh.de www.greenchef-specialdiets.de mastercard.us".split(" "),
        b = RegExp("https?://([^/:]+)").exec(google_tag_manager["GTM-P2Q9ZFQ"].macro(77));
    if (b)
        for (var c = a.length; c--;)
            if ((new RegExp(a[c] + "$")).test(b[1])) return "true"
})();
#51 JavaScript::Eval (size: 144) - SHA256: 83922537c84ccef06c4604729d8e467094cc38f9c2f60061b7ed7509b4b3bd1b
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(41)
    });
    return b
})();
#52 JavaScript::Eval (size: 85) - SHA256: 0980fc20a4b3f9c655a8b391dbad44b8ba3b3d7bdd47fbec6ee4482fbcd9695d
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(26);
    if (a) return "US-" + a
})();
#53 JavaScript::Eval (size: 91) - SHA256: 234ab0e7b721721e814afc697c8dd0ea416a890f5cbd409a74cc066d66962820
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(76);
    return a.split(" | ")[2]
})();
#54 JavaScript::Eval (size: 2049) - SHA256: 2e5fdf7e51dd3d0a477b38983ec646f70009258d26cd64857aecb7cf2d87cf9f
(function() {
    var a = navigator.userAgent || navigator.vendor || window.opera;
    return /(android|bb\d+|meego).+mobile|avantgo|bada\/|blackberry|blazer|compal|elaine|fennec|hiptop|iemobile|ip(hone|od)|iris|kindle|lge |maemo|midp|mmp|mobile.+firefox|netfront|opera m(ob|in)i|palm( os)?|phone|p(ixi|re)\/|plucker|pocket|psp|series(4|6)0|symbian|treo|up\.(browser|link)|vodafone|wap|windows (ce|phone)|xda|xiino/i.test(a) || /1207|6310|6590|3gso|4thp|50[1-6]i|770s|802s|a wa|abac|ac(er|oo|s\-)|ai(ko|rn)|al(av|ca|co)|amoi|an(ex|ny|yw)|aptu|ar(ch|go)|as(te|us)|attw|au(di|\-m|r |s )|avan|be(ck|ll|nq)|bi(lb|rd)|bl(ac|az)|br(e|v)w|bumb|bw\-(n|u)|c55\/|capi|ccwa|cdm\-|cell|chtm|cldc|cmd\-|co(mp|nd)|craw|da(it|ll|ng)|dbte|dc\-s|devi|dica|dmob|do(c|p)o|ds(12|\-d)|el(49|ai)|em(l2|ul)|er(ic|k0)|esl8|ez([4-7]0|os|wa|ze)|fetc|fly(\-|_)|g1 u|g560|gene|gf\-5|g\-mo|go(\.w|od)|gr(ad|un)|haie|hcit|hd\-(m|p|t)|hei\-|hi(pt|ta)|hp( i|ip)|hs\-c|ht(c(\-| |_|a|g|p|s|t)|tp)|hu(aw|tc)|i\-(20|go|ma)|i230|iac( |\-|\/)|ibro|idea|ig01|ikom|im1k|inno|ipaq|iris|ja(t|v)a|jbro|jemu|jigs|kddi|keji|kgt( |\/)|klon|kpt |kwc\-|kyo(c|k)|le(no|xi)|lg( g|\/(k|l|u)|50|54|\-[a-w])|libw|lynx|m1\-w|m3ga|m50\/|ma(te|ui|xo)|mc(01|21|ca)|m\-cr|me(rc|ri)|mi(o8|oa|ts)|mmef|mo(01|02|bi|de|do|t(\-| |o|v)|zz)|mt(50|p1|v )|mwbp|mywa|n10[0-2]|n20[2-3]|n30(0|2)|n50(0|2|5)|n7(0(0|1)|10)|ne((c|m)\-|on|tf|wf|wg|wt)|nok(6|i)|nzph|o2im|op(ti|wv)|oran|owg1|p800|pan(a|d|t)|pdxg|pg(13|\-([1-8]|c))|phil|pire|pl(ay|uc)|pn\-2|po(ck|rt|se)|prox|psio|pt\-g|qa\-a|qc(07|12|21|32|60|\-[2-7]|i\-)|qtek|r380|r600|raks|rim9|ro(ve|zo)|s55\/|sa(ge|ma|mm|ms|ny|va)|sc(01|h\-|oo|p\-)|sdk\/|se(c(\-|0|1)|47|mc|nd|ri)|sgh\-|shar|sie(\-|m)|sk\-0|sl(45|id)|sm(al|ar|b3|it|t5)|so(ft|ny)|sp(01|h\-|v\-|v )|sy(01|mb)|t2(18|50)|t6(00|10|18)|ta(gt|lk)|tcl\-|tdg\-|tel(i|m)|tim\-|t\-mo|to(pl|sh)|ts(70|m\-|m3|m5)|tx\-9|up(\.b|g1|si)|utst|v400|v750|veri|vi(rg|te)|vk(40|5[0-3]|\-v)|vm40|voda|vulc|vx(52|53|60|61|70|80|81|83|85|98)|w3c(\-| )|webc|whit|wi(g |nc|nw)|wmlb|wonu|x700|yas\-|your|zeto|zte\-/i.test(a.substr(0,
        4)) ? !0 : !1
})();
#55 JavaScript::Eval (size: 84) - SHA256: f3263094657350f2f8eb6131a742dc55abeaec74b080c6428d82cb0dd0ebf650
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(8);
    if (a) return "US-" + a
})();
#56 JavaScript::Eval (size: 144) - SHA256: a4ac4945372f84a516442b0471eb0e1713fd715842c9637be1497946fcd5bfc0
(function() {
    var b = window.dataLayer.filter(function(a) {
        return a["gtm.uniqueEventId"] == google_tag_manager["GTM-P2Q9ZFQ"].macro(17)
    });
    return b
})();
#57 JavaScript::Eval (size: 85) - SHA256: dc0e2ae95d401895c5d38d339b291a0d36b10fbbfde8973025dc3b8337cec04c
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(55);
    if (a) return "US-" + a
})();
#58 JavaScript::Eval (size: 114) - SHA256: d16b0ed33f25df04e030763e6297127ba9d5128d085ba3b116286ba62921421f
(function() {
    var a = localStorage.getItem("em_base64"),
        b = google_tag_manager["GTM-P2Q9ZFQ"].macro(58);
    return b || a
})();
#59 JavaScript::Eval (size: 91) - SHA256: 3bdf553a70f0797b9d4acc0e1c6f00f492b904653b71de38fac01e38a8224e99
(function() {
    var a = google_tag_manager["GTM-P2Q9ZFQ"].macro(84);
    return a.split(" | ")[2]
})();
#60 JavaScript::Eval (size: 94) - SHA256: ac0268139721ab8a26417da204639ecf4c993bd6805a6432e9d6649052eff371
(function() {
    var a = new Date("undefined"),
        b = new Date;
    a = 1.6534E-9 * (b - a);
    return Math.floor(a)
})();

Executed Writes (2)
#1 JavaScript::Write (size: 496) - SHA256: 8ac4ebd656f5f5598b6be266e80221522b3c18fa87ddbf9aaf01e90b49d1ae52
< !DOCTYPE html >
    < html lang = "en-US" >
    < base href = "https://d6tizftlrpuof.cloudfront.net/live/" > < /base> < title > Usabilla Feedback Button < /title> < style type = 'text/css'
nonce = '6349bf73fcae' >
    body {
        background: transparent;padding: 0;margin: 0;text - align: left;
    }
img {
    cursor: pointer;display: block;margin: 0 auto;
} < /style> < body >
    < img src = 'https://d6tizftlrpuof.cloudfront.net/themes/production/hellofresh-button-e43a26541055ffe8644286114c4c9d3c.png'
width = '35'
height = '100' / >
    < /body> < /html>
#2 JavaScript::Write (size: 173) - SHA256: 91dab7dfa62dd25a6c15b12e0266fe25b4a7a1bc74abfc0a052af189e4611ee1
< head > < /head><body onload="var d=document;d.getElementsByTagName('head')[0].appendChild(d.createElement('script')).src='https:/ / w.usabilla.com / 6349 bf73fcae.js ? lv = 1 '"></body>

HTTP Transactions (102)


Request Response
 
                                        
                                            GET /i5116nmvuC/mty/BFEDFIDG/BAADDEHJG/A/A/A?v=rH72=SzSY0U0RTS2PTYzRz4Q4Q4UzVUVUQYz1%3C%3C6IIEH://LLL.9FON48.1DB/1A719-QPPSSTWYV-QUTSUXSV%3C%3Cf%3C6IIE://LLL.9FON48.1DB%3C%3CQ%3CQ%3CP%3CP%3CP%3C HTTP/1.1 

                                        
                                            
Host: cj.dotomi.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
 

                                        
                                    
                                        
                                             89.207.16.75

                                            
                                                HTTP/1.1 302 Found 

                                            
                                                
Content-Type: text/html; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: Resin/4.0.66 

                                            
                                                
P3P: policyref="/w3c/p3p-d.xml", CP="NOI DSP NID OUR STP" 

                                            
                                                
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Expires: Thu, 23 Mar 2023 15:03:58 GMT 

                                            
                                                
Set-Cookie: CJSession=dbc4a1b4-b7db-4276-aff7-9a858978e0d9; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
cjae=df7lw0OnD3NQ; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400705114830187651$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
LCLK=cjo!x9br-tl2ahp8k; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None 

                                            
                                                
Location: https://www.emjcd.com/fd66uoxwG/ov-/DHGFHKFI/DCCFFGJLI/C/GCCJCHDDGKFCDKJIHD:prJx7CazPFZc/rCHLJGpDoLKnDDqpKFpDErpDCmDKnmJF?r=rH72%3DSzSY0U0RTS2PTYzRz4Q4Q4UzVUVUQYz1%3c18D!MY0G-IARz6EX9%3c6IIEH%3A%2F%2FLLL.9FON48.1DB%2F1A719-QPPSSTWYV-QUTSUXSV%3c%3cf%3c6IIE%3A%2F%2FLLL.9FON48.1DB%3c201TzQ0T-0W20-TRWV-z44W-YzXUXYWX3P2Y%3cQ%3cQ%3cP%3cP%3cP%3c 

                                            
                                                
Content-Length: 823 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:58 GMT 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (409)

                                                Size:   823

                                                Md5:    0e84658296896d55e4d3c2e16ca4bf52

                                                Sha1:   7f88aeb975f7a1fd664e72bd98f914eb2fe1b17d

                                                Sha256: e80375e995a7a0ab15b737ca751d907d6890abec5e484f75870a58927affd534

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=14771 

                                            
                                                
Expires: Thu, 23 Mar 2023 19:10:10 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "59553A312D3FB34F1F0AEA469F7E7CC810FF9993481DDBD73EA5D461CF97ED51" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=15162 

                                            
                                                
Expires: Thu, 23 Mar 2023 19:16:41 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             35.241.9.150

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 939 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 14:15:06 GMT 

                                            
                                                
age: 2933 

                                            
                                                
cache-control: max-age=3600,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    4ad6984a756720fbfff47b37a75513a2

                                                Sha1:   355e35258114452af8b9638985ed9d8ef3bf0aca

                                                Sha256: 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=2791 

                                            
                                                
Expires: Thu, 23 Mar 2023 15:50:30 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.160.144.191

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: binary/octet-stream 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: odPhgwg5VGHljfPMaBaI7VW9O60Ro42N48rdgbOmjhoP/jR1RAwhmnGqow4JLKSRGhtJ3SnfJCU= 

                                            
                                                
x-amz-request-id: W5MDTQG944VE9YGC 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
content-disposition: attachment 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
content-length: 5348 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 15:00:00 GMT 

                                            
                                                
age: 239 

                                            
                                                
last-modified: Sat, 11 Mar 2023 16:53:15 GMT 

                                            
                                                
etag: "e7bace7c1e04d44012e37ddffe36e5d5" 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    e7bace7c1e04d44012e37ddffe36e5d5

                                                Sha1:   3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2

                                                Sha256: 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

                                        

                                        
                                        


                                
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 

                                        
                                            
Host: ocsp.globalsign.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 79 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             104.18.21.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Content-Length: 1432 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Mon, 27 Mar 2023 11:53:35 GMT 

                                            
                                                
ETag: "f3fe1d02807b48b311f909793b07dde51ba7d4fa" 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 11:53:36 GMT 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 

                                            
                                                
CF-Cache-Status: HIT 

                                            
                                                
Age: 2632 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Server: cloudflare 

                                            
                                                
CF-RAY: 7ac790734cbd1c0a-OSL 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   1432

                                                Md5:    9314e67558fdee4490dc889cac73bd92

                                                Sha1:   f3fe1d02807b48b311f909793b07dde51ba7d4fa

                                                Sha256: 0094371e031d3cdd74010dc04eed334d58261f2ad70c3813c27d07f1b00e9913

                                        

                                        
                                        


                                
                                        
                                            GET /fd66uoxwG/ov-/DHGFHKFI/DCCFFGJLI/C/GCCJCHDDGKFCDKJIHD:prJx7CazPFZc/rCHLJGpDoLKnDDqpKFpDErpDCmDKnmJF?r=rH72%3DSzSY0U0RTS2PTYzRz4Q4Q4UzVUVUQYz1%3c18D!MY0G-IARz6EX9%3c6IIEH%3A%2F%2FLLL.9FON48.1DB%2F1A719-QPPSSTWYV-QUTSUXSV%3c%3cf%3c6IIE%3A%2F%2FLLL.9FON48.1DB%3c201TzQ0T-0W20-TRWV-z44W-YzXUXYWX3P2Y%3cQ%3cQ%3cP%3cP%3cP%3c HTTP/1.1 

                                        
                                            
Host: www.emjcd.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: S=400805114894184147:lh7lw0OoDxMX; LCLK=cjo!xeu3-vevyy2u 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1 

                                        
                                            
 

                                        
                                    
                                        
                                             89.207.16.75

                                            
                                                HTTP/1.1 302 Found 

                                            
                                                
Content-Type: text/html; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: Resin/4.0.66 

                                            
                                                
Set-Cookie: S=400705114830187651:df7lw0OnD3NQ; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
LCLK=cjo!x9br-tl2ahp8k-xeu3-vevyy2u; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None
CJSession=dbc4a1b4-b7db-4276-aff7-9a858978e0d9; Max-Age=-1; Domain=.emjcd.com; Path=/; Secure; SameSite=None
S=400705114830187651:df7lw0OnD3NQ; Max-Age=34041593; Domain=.emjcd.com; Path=/; Secure; SameSite=None 

                                            
                                                
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" 

                                            
                                                
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Expires: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Location: https://www.everyplate.com/plans?mealsize=4-5&c_comms=PER-SERVING&c=MVO139E&utm_source=M1&utm_medium=cpa&utm_campaign=100334796&utm_id=cj~15435836&cjevent=f05974d1c98b11ed83d12fd10a18ba73 

                                            
                                                
Content-Length: 549 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
X-VC-HTTPS: On 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text

                                                Size:   549

                                                Md5:    4839b8f9efcd78fcf3f8678bf5aca181

                                                Sha1:   68c5a0b5f1c902ade109c7b3e85764a8facd8b78

                                                Sha256: 451062d1864d598c932f2da16d954978573c5787db76f8acbf17da12f1de51d2

                                        

                                        
                                        


                                
                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.117.237.239

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
content-length: 12 

                                            
                                                
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-expose-headers: content-type 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        

                                        
                                        


                                
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             35.241.9.150

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 329 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 14:14:33 GMT 

                                            
                                                
age: 2966 

                                            
                                                
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                            
                                                
etag: "1648230346554" 

                                            
                                                
cache-control: max-age=3600,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=15946 

                                            
                                                
Expires: Thu, 23 Mar 2023 19:29:45 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /s/gts1d4/dHjUbCpt8_E HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: scaffolding on HTTPServer2 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   10170

                                                Md5:    eb5e5cda36e1b0986a3a8dd7f0d23ba9

                                                Sha1:   0ab5b325b083561318873363626f096e0a078908

                                                Sha256: e79127ab456f1e0e77ce54ef59af75a38fc75a941947a2d1773f64adb014b278

                                        

                                        
                                        


                                
                                        
                                            POST /s/gts1d4/dHjUbCpt8_E HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: scaffolding on HTTPServer2 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   7333

                                                Md5:    2e29f032d46d6a1d333360e1ab2ed69a

                                                Sha1:   792224008c42ce67532ec85156ad23226a450a44

                                                Sha256: f8d3c0854f4946510e1b38c88c215e7c4d2943da0803372e229ec1e61d12f857

                                        

                                        
                                        


                                
                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: gxKrJ+aEmSS3wxzsdJpV3g== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket 

                                        
                                            
 

                                        
                                    
                                        
                                             52.32.229.246

                                            
                                                HTTP/1.1 101 Switching Protocols 

                                            
                                            
                                            

                                            
                                                
Connection: Upgrade 

                                            
                                                
Upgrade: websocket 

                                            
                                                
Sec-WebSocket-Accept: 0iHtLIvIY0JuxRL3Vnudtoiqzu8= 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /s/gts1d4/dHjUbCpt8_E HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: scaffolding on HTTPServer2 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   8245

                                                Md5:    86f338fda5f2648fbb78c6b1f01bf665

                                                Sha1:   d336f17e11e5c5f73bdadc4d660d84154b3f3444

                                                Sha256: 71232ce584f4e4a2135c89aad2a80894a627df0ec6f414740fa33250b4d7ca29

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "B59FD5692A3CBB4F965DC902D31E960E63A3EC4DA2D5CF56C31B529667BA9229" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=14892 

                                            
                                                
Expires: Thu, 23 Mar 2023 19:12:12 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /api/5396938/envelope/?sentry_key=5c397ef08a6c49098d09dfd70fddf09e&sentry_version=7&sentry_client=sentry.javascript.react%2F7.20.0 HTTP/1.1 

                                        
                                            
Host: o46710.ingest.sentry.io 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Content-Length: 421 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.195.249

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
content-length: 2 

                                            
                                                
access-control-allow-origin: https://www.everyplate.com 

                                            
                                                
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after 

                                            
                                                
vary: Origin 

                                            
                                                
x-envoy-upstream-service-time: 1 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains; preload 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   6038

                                                Md5:    b4cf4170f6c982a208af1d65ff398a7a

                                                Sha1:   aa2cd7e25b343c6ae9a423fc80ba4749b1973339

                                                Sha256: 37d4e7a1cb21f30e783bc2ddd7f9032c5ef111eed01c4f1fce7cc152a2e72e05

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "B59FD5692A3CBB4F965DC902D31E960E63A3EC4DA2D5CF56C31B529667BA9229" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=14892 

                                            
                                                
Expires: Thu, 23 Mar 2023 19:12:12 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5568 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:36:49 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5568 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:36:49 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5568 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:36:49 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5568 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:36:49 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   4740

                                                Md5:    874be03b697ea539bf8b8b9bb4c7ed8a

                                                Sha1:   bef64ae4717c882437e3d518adb9e39b89066c63

                                                Sha256: b9fc3d58176115ccf97e84bfbe0cd7f993ff9e48ceef0acded7fc45bef46f0a3

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 10480 

                                            
                                                
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CJptHG7JoAMFSwA= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C1, SEA19-C3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: V_1L8vYf9-uS_-cGgsCstGC__IYpLZjEa0gOlsYgYOWwNJxxXJo83g== 

                                            
                                                
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Wed, 22 Mar 2023 22:09:40 GMT 

                                            
                                                
age: 60861 

                                            
                                                
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10480

                                                Md5:    6f0b9e85381489dcf646c251722b21d4

                                                Sha1:   5f7ea91288a2170bcabdca6be296718c4191eacd

                                                Sha256: 911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 10284 

                                            
                                                
x-amzn-requestid: e4d2c324-d0b0-436d-9739-29269e62aed0 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CM6hjEqtIAMFvXA= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-641b713c-5a5bd6b60c1f52ab580f1757;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Wed, 22 Mar 2023 21:21:00 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: g53sZY66fiEL8H79MzI7c7rqI-c-XxMvgB3myz79aw_lE9Aqgc66LQ== 

                                            
                                                
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 07:32:23 GMT 

                                            
                                                
age: 27098 

                                            
                                                
etag: "5035ed41f497c97faefae9cdaf42dc07ab468557" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10284

                                                Md5:    4e89d0b1281259e7399294fb5fa19d2b

                                                Sha1:   5035ed41f497c97faefae9cdaf42dc07ab468557

                                                Sha256: f404d286deab5b4759be6e554e6488faab3b4f7988a86eb57520dac4e0d6a192

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F772d9c75-9796-494f-9fc4-91d04e2bac53.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4905 

                                            
                                                
x-amzn-requestid: bdcd62f9-d742-48af-9aa0-b13afc1846ac 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CM9EnFLIoAMF5cg= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-641b7550-63fc3df77b023fca782a53ea;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Wed, 22 Mar 2023 21:38:24 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: we0zl0U_rfWuSW8_WX8vqLOYOCoeGP-4UUNb0r3f0mEICnLXASqC5A== 

                                            
                                                
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 03:39:03 GMT 

                                            
                                                
age: 41098 

                                            
                                                
etag: "4f25bdbffca3803b02c196c38491223684d36b4d" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4905

                                                Md5:    90f64fe111aa6e90ebf52e0335d21b75

                                                Sha1:   4f25bdbffca3803b02c196c38491223684d36b4d

                                                Sha256: 37894e16112286470b7fd2e0bbd5ca74944e6cb5ca6e8aff189c4515122a0d40

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 6692 

                                            
                                                
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CM9d9FcOoAMFaFQ= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: PNAVsyfdAHjn5F6Rt1uz1U46QCIGvTCqZatbAurr6Ilu0quHWExuSw== 

                                            
                                                
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Wed, 22 Mar 2023 21:43:34 GMT 

                                            
                                                
age: 62427 

                                            
                                                
etag: "156ef59e53564a4f2b27002b2695fafecd578d82" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6692

                                                Md5:    c05bfdf1411a931d8ea9adc64b07bc74

                                                Sha1:   156ef59e53564a4f2b27002b2695fafecd578d82

                                                Sha256: 15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4912 

                                            
                                                
x-amzn-requestid: d8fcf495-12af-42ae-ad69-0ea07b1a8669 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CM8H3Fl1IAMFYgA= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-641b73cb-01cbd1981a57e53b3d3cde93;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:55 GMT 

                                            
                                                
x-amz-cf-pop: HIO50-C1, SEA19-C1 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: 4xGMCVWy2EXLLN8keteGLQvQjOp6KH97rkn_FK10eyng0-5EudcOig== 

                                            
                                                
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Wed, 22 Mar 2023 21:43:33 GMT 

                                            
                                                
etag: "d07fe53e4ac41048497b2732c017f6666c3eda9e" 

                                            
                                                
age: 62428 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   9140

                                                Md5:    25f55b425897cf301b4b08e5d6af72ee

                                                Sha1:   2ae6fc4f7b4a4a54ab07d93874620dccd279d7e0

                                                Sha256: 29e19c00e50176c0a1dd6e55a131a9fe649a5df0f9e4d77e9b774990aa04ea2b

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6cff797b-5560-422b-9907-7a2fbe8dd123.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 7424 

                                            
                                                
x-amzn-requestid: 4d4097db-ae95-4a34-8f92-a56c29e836e2 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CENb6FKDoAMF_cg= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-6417f5e5-772b562b3176f7ca0740db72;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Mon, 20 Mar 2023 05:57:57 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: d_lhTrmtXesTfnCpReJoiiv68EudX-RCSzr3fwqOe3ouJv-M0IOLtw== 

                                            
                                                
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Wed, 22 Mar 2023 21:43:22 GMT 

                                            
                                                
age: 62439 

                                            
                                                
etag: "709b01a360624eceafb1876f56378824aa4936b3" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7424

                                                Md5:    05c7970e81559904d05b6e8cf693f085

                                                Sha1:   709b01a360624eceafb1876f56378824aa4936b3

                                                Sha256: a4fd80c9bdce27961560d7c31e216706e9e32d42d1edd883e283c149505b3db0

                                        

                                        
                                        


                                
                                        
                                            GET /w_384,q_auto,f_auto,c_limit,fl_lossy/hellofresh_website/er/assets/plansPage/recipeTypes/Veggie.png HTTP/1.1 

                                        
                                            
Host: images.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ=; __cfruid=0bdced0a3cb766fad0b57d59463f574a6db1bc88-1679583840 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             2.18.173.70

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/avif 

                                            
                                            
                                            

                                            
                                                
etag: "4a55b34d36bb12c356ad3fbec3cad66e" 

                                            
                                                
last-modified: Tue, 28 Feb 2023 07:40:19 GMT 

                                            
                                                
content-length: 37771 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
cache-control: private, no-transform, immutable, max-age=31536000 

                                            
                                                
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
server: Cloudinary 

                                            
                                                
strict-transport-security: max-age=604800 

                                            
                                                
vary: Accept,User-Agent,Save-Data 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server-timing: cld-akam;dur=5;start=2023-03-23T15:04:01.609Z;desc=hit,rtt;dur=2 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   40945

                                                Md5:    3b7437c8810c6625f1668094b0679b82

                                                Sha1:   745ef4cb7a9108f14a10baa5bfa3ce17e1faa0bc

                                                Sha256: 9b0d3fa52aac030de34754917e62b815ab486c85ddcaedba54f1d05045aecd57

                                        

                                        
                                        


                                
                                        
                                            GET /w_384,q_auto,f_auto,c_limit,fl_lossy/hellofresh_website/er/assets/plansPage/recipeTypes/Family.png HTTP/1.1 

                                        
                                            
Host: images.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ=; __cfruid=0bdced0a3cb766fad0b57d59463f574a6db1bc88-1679583840 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             2.18.173.70

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/avif 

                                            
                                            
                                            

                                            
                                                
etag: "a8d9876f839f33ba95f151d68ba153e5" 

                                            
                                                
last-modified: Tue, 28 Feb 2023 07:40:18 GMT 

                                            
                                                
content-length: 26304 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
cache-control: private, no-transform, immutable, max-age=31536000 

                                            
                                                
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
server: Cloudinary 

                                            
                                                
strict-transport-security: max-age=604800 

                                            
                                                
vary: Accept,User-Agent,Save-Data 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server-timing: cld-akam;dur=4;start=2023-03-23T15:04:01.610Z;desc=hit,rtt;dur=2 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   29021

                                                Md5:    1d385139a0ed09a01661ff022eaed3b0

                                                Sha1:   31ae9f27f89a6bf7be0b1bf32cf74a5cd073de7e

                                                Sha256: 112810a05cf736797a0ea15dbf1eca4aaba5b2bcb7d1c00742446380cc411ea4

                                        

                                        
                                        


                                
                                        
                                            GET /w_384,q_auto,f_auto,c_limit,fl_lossy/hellofresh_website/er/assets/plansPage/recipeTypes/Top.png HTTP/1.1 

                                        
                                            
Host: images.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ=; __cfruid=0bdced0a3cb766fad0b57d59463f574a6db1bc88-1679583840 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             2.18.173.70

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/avif 

                                            
                                            
                                            

                                            
                                                
etag: "b06c2dc98449f364c5b7da4d7dc40020" 

                                            
                                                
last-modified: Tue, 28 Feb 2023 07:40:18 GMT 

                                            
                                                
content-length: 22111 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
cache-control: private, no-transform, immutable, max-age=31536000 

                                            
                                                
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
server: Cloudinary 

                                            
                                                
strict-transport-security: max-age=604800 

                                            
                                                
vary: Accept,User-Agent,Save-Data 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server-timing: cld-akam;dur=4;start=2023-03-23T15:04:01.623Z;desc=hit,rtt;dur=1 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   22354

                                                Md5:    48e7950f9eaa7ca79cc19b948395791b

                                                Sha1:   00a914a7636e1c8e7bdabe9f5cd24573baf0a2bd

                                                Sha256: 34f20f76b193a5f1cadb98707f8e29df45589073a32f70ce1106273827c40e0c

                                        

                                        
                                        


                                
                                        
                                            GET /w_384,q_auto,f_auto,c_limit,fl_lossy/hellofresh_website/er/assets/plansPage/recipeTypes/Spicy.png HTTP/1.1 

                                        
                                            
Host: images.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ=; __cfruid=0bdced0a3cb766fad0b57d59463f574a6db1bc88-1679583840 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             2.18.173.70

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/avif 

                                            
                                            
                                            

                                            
                                                
etag: "b8d39cd1e0a3ebb731137379993351b9" 

                                            
                                                
last-modified: Tue, 28 Feb 2023 07:40:18 GMT 

                                            
                                                
content-length: 26421 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:01 GMT 

                                            
                                                
cache-control: private, no-transform, immutable, max-age=31536000 

                                            
                                                
access-control-expose-headers: Content-Length,Content-Disposition,Content-Range,Etag,Server-Timing,Vary,X-Cld-Error,X-Content-Type-Options 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
server: Cloudinary 

                                            
                                                
strict-transport-security: max-age=604800 

                                            
                                                
vary: Accept,User-Agent,Save-Data 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server-timing: cld-akam;dur=4;start=2023-03-23T15:04:01.623Z;desc=hit,rtt;dur=1 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ISO Media, AVIF Image\012- data

                                                Size:   26421

                                                Md5:    b8d39cd1e0a3ebb731137379993351b9

                                                Sha1:   1d587f9bbd4eac00ab52c8ac6bc7a4f50b214a35

                                                Sha256: 2119ea94cbc46fe4605ab8fb2f5e929024aed2c00cfec5cf8093cf5012f15b89

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "771705667B2CAFB48DD363514BC375499187391CA8BD5FE49808BCD0E6F30BEE" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4399 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:17:21 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   23618

                                                Md5:    287ae7c9086a3ade3c2f687488215344

                                                Sha1:   36231ea2e02d6dbd66d07c154cb1115ffe99cb39

                                                Sha256: 6215100753475fa86f63c2102585e9698d3220121a0786dafe259ce847321d86

                                        

                                        
                                        


                                
                                        
                                            GET /4613/i.js HTTP/1.1 

                                        
                                            
Host: tag.wknd.ai 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.253.250

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/plain; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
server: istio-envoy 

                                            
                                                
content-length: 4274 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
x-region: us-central1 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
link: <https://assets.bounceexchange.com>; rel=dns-prefetch, <https://events.bouncex.net>; rel=dns-prefetch, <https://data.cdnbasket.net>; rel=dns-prefetch, <https://page.cdnbasket.net>; rel=dns-prefetch, <https://view.cdnbasket.net>; rel=dns-prefetch, <https://ids.cdnwidget.com>; rel=dns-prefetch, <https://u.cdnwidget.com>; rel=dns-prefetch, <https://pix.cdnwidget.com>; rel=dns-prefetch, <https://api.bounceexchange.com>; rel=preconnect, <https://pd.cdnwidget.com>; rel=preconnect 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-envoy-upstream-service-time: 0 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Thu, 23 Mar 2023 15:02:52 GMT 

                                            
                                                
age: 70 

                                            
                                                
etag: 3cfe3184562dac 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
cache-control: public,max-age=60 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   8539

                                                Md5:    1606ae44e98af58b79828651a2a0b07d

                                                Sha1:   ee9d528989987868a6781c4bc94edb99fe8dbada

                                                Sha256: 4b4bcc46085d0181327a8c95233b1aa5a15408a83740a4ded34933fbd432d628

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "771705667B2CAFB48DD363514BC375499187391CA8BD5FE49808BCD0E6F30BEE" 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4399 

                                            
                                                
Expires: Thu, 23 Mar 2023 16:17:21 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             192.229.221.95

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 2065 

                                            
                                                
Cache-Control: max-age=101612 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Etag: "641b4c3d-2d7" 

                                            
                                                
Expires: Fri, 24 Mar 2023 19:17:34 GMT 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 18:43:09 GMT 

                                            
                                                
Server: ECAcc (ska/F7A5) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 727 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             95.101.11.115

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "8B50610F2F1F12CA94D258BE634F1AFFC0A66F74F5146AF62670C206AB7C8D4C" 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 06:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=2336 

                                            
                                                
Expires: Thu, 23 Mar 2023 15:42:58 GMT 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /widget/widget_async.js HTTP/1.1 

                                        
                                            
Host: shop.pe 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             35.227.244.1

                                            
                                                HTTP/2 301 Moved Permanently 

                                            
                                                
content-type: text/html 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
content-length: 178 

                                            
                                                
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js 

                                            
                                                
x-frame-options: deny 

                                            
                                                
content-security-policy: frame-ancestors none; 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains 

                                            
                                                
referrer-policy: no-referrer-when-downgrade 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   178

                                                Md5:    cd2e0e43980a00fb6a2742d3afd803b8

                                                Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1

                                                Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             192.229.221.95

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 2065 

                                            
                                                
Cache-Control: max-age=101612 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Etag: "641b4c3d-2d7" 

                                            
                                                
Expires: Fri, 24 Mar 2023 19:17:34 GMT 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 18:43:09 GMT 

                                            
                                                
Server: ECAcc (ska/F7A5) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 727 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.r2m01.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.80.227

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=87474 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Etag: "641b05ca-1d7" 

                                            
                                                
Expires: Fri, 24 Mar 2023 15:21:56 GMT 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 13:42:34 GMT 

                                            
                                                
Server: ECAcc (nya/789D) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: zWILN6U3hvY18YzkvwnhoQSM-YoLlpzwMtxQPg4lV9_ZermGlD3ihQ== 

                                            
                                                
Age: 5962 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   47913

                                                Md5:    738bf071ed70dc8b6f91662b5d64d3fe

                                                Sha1:   038b4b8aeb8e589e27154cb9d61a4f6da5423f69

                                                Sha256: 9806ee7e4fb347c14588163a2ec3a7d638659610720935f04376f71c3e0d8044

                                        

                                        
                                        


                                
                                        
                                            GET /_/ad/8826af35621f4d989db31f02b360c0b9/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73 HTTP/1.1 

                                        
                                            
Host: q.quora.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             3.209.34.109

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
Server: nginx 

                                            
                                                
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload 

                                            
                                                
X-Q-Stat: ,e860be793f65b78dbe9bc967ab42564c,10.0.0.50,34122,91.90.42.154,,112126145384,1,1679583842.698,0.001,,.,0,0,0.000,0.000,-,0,0,197,176,88,10,34729,,,,,,-, 

                                            
                                                
Content-Length: 43 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   15688

                                                Md5:    42759d182bb570b7b33b10d786db0534

                                                Sha1:   be499a4d4ddd8b71d2b1ea78b201f5f28baf1926

                                                Sha256: 587f313f981f8b71772deb74b62ecea547eb04f6abb21903718e5c759f4d1511

                                        

                                        
                                        


                                
                                        
                                            GET /x/EPUS HTTP/1.1 

                                        
                                            
Host: i.geistm.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.55.74.209

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
content-length: 43 

                                            
                                                
server: nginx 

                                            
                                                
x-powered-by: Express 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-allow-headers: X-Requested-With, Content-Type, Accept 

                                            
                                                
x-frame-options: SAMEORIGIN 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   7502

                                                Md5:    6ba7c209f0b40e631ca1e719b9d5faa7

                                                Sha1:   60051d7f55292c8a919e54a2f2e13de0d57038dd

                                                Sha256: 4989b038555e0ad2c295f15cbd4c37dc726dfa5f8f6dba2399a85567f6691c72

                                        

                                        
                                        


                                
                                        
                                            GET /widget/widget_async.js HTTP/1.1 

                                        
                                            
Host: d3rr3d0n31t48m.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.56

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
content-length: 906 

                                            
                                                
date: Thu, 23 Mar 2023 14:14:23 GMT 

                                            
                                                
last-modified: Tue, 21 Mar 2023 15:08:55 GMT 

                                            
                                                
etag: "9ab65ad65189c43fcf8835d4fcf3706e" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
cache-control: max-age=3600, public 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-amz-meta-mtime: 1679411333.36 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: rbjrOoW9VBD3RolBluGwI7Msjm8vPGXod-kIUUc0FFPo-QMOlCKMyw== 

                                            
                                                
age: 2980 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (559)

                                                Size:   906

                                                Md5:    9ab65ad65189c43fcf8835d4fcf3706e

                                                Sha1:   454ff8fc1aafe07cae539fe7fcdd6eafc8c03530

                                                Sha256: 59dd73f4e546587fc554e714e976fc85cd2d3e68501737277760c67c730e2e4b

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /bat.js HTTP/1.1 

                                        
                                            
Host: bat.bing.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             13.107.21.200

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript 

                                            
                                            
                                            

                                            
                                                
cache-control: private,max-age=1800 

                                            
                                                
content-length: 11894 

                                            
                                                
content-encoding: gzip 

                                            
                                                
last-modified: Thu, 16 Feb 2023 18:31:53 GMT 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
etag: "8072cff03442d91:0" 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains; preload 

                                            
                                                
x-cache: CONFIG_NOCACHE 

                                            
                                                
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version 

                                            
                                                
x-msedge-ref: Ref A: 2333298510804E9DAB00E84BAC8079A4 Ref B: OSL30EDGE0208 Ref C: 2023-03-23T15:04:03Z 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:02 GMT 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Unicode text, UTF-8 text, with very long lines (40607), with no line terminators

                                                Size:   11894

                                                Md5:    04651bf0c51742f9007b1ae2b4486dee

                                                Sha1:   6ffc71fcb5db1cf0283b60150a62f2c219ac3dbd

                                                Sha256: 5d7392c44731e52810337eb1a3eb3ae1ffab31b8f8d55daba20d658701604666

                                        

                                        
                                        


                                
                                        
                                            GET /j/collect?t=dc&aip=1&v=1&_r=3&_v=j108&tid=UA-115749411-1&cid=159373022.1679583850&jid=281404530&gjid=968776439&_gid=524741193.1679583850 HTTP/1.1 

                                        
                                            
Host: stats.g.doubleclick.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             209.85.233.154

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/plain 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=10886400; includeSubDomains; preload 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, no-store, must-revalidate 

                                            
                                                
last-modified: Sun, 17 May 1998 03:00:00 GMT 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
server: Golfe2 

                                            
                                                
content-length: 4 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with no line terminators

                                                Size:   4

                                                Md5:    48c0473b7821185d937e685216e2168b

                                                Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e

                                                Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

                                        

                                        
                                        


                                
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&v=1&_r=4&_v=j108&slf_rd=1&tid=UA-115749411-1&cid=159373022.1679583850&jid=281404530 HTTP/1.1 

                                        
                                            
Host: www.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.164

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, no-store, must-revalidate 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: cafe 

                                            
                                                
content-length: 42 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   1029

                                                Md5:    9a833ef430efef87ef276ca95fe258c7

                                                Sha1:   cb6d330650f9482160825cdff8d28146a097235c

                                                Sha256: a660ac50ed8020f9b7acac1e3341c4a6386b59c56d9981c0f830e0d55649947a

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.245.118

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=151472 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Etag: "641c05be-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 09:08:35 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 07:54:38 GMT 

                                            
                                                
Server: ECAcc (nya/78C0) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: CJX8bOKzmuu1Rmt8jXbWNSmvGUtzqFK5-MG2uOkuHoBokZQiJl1BYQ== 

                                            
                                                
Age: 4438 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.r2m01.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.80.227

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=127248 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Etag: "641b9f3a-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 02:24:51 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 00:37:14 GMT 

                                            
                                                
Server: ECAcc (nya/789C) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: cqvmrRT1y2aXBEvp6umVCUkabyBIzeMkDElC_HqwGLsOex9H8_YUhg== 

                                            
                                                
Age: 6457 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /6349bf73fcae.js?lv=1 HTTP/1.1 

                                        
                                            
Host: w.usabilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.252.19.64

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/javascript 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
content-length: 10810 

                                            
                                                
cache-control: public,max-age=0 

                                            
                                                
content-encoding: gzip 

                                            
                                                
etag: "7c99f56e390cf09a44550249efaee5b9" 

                                            
                                                
pragma: no-cache 

                                            
                                                
x-widget-server: 2.1 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (632)

                                                Size:   10810

                                                Md5:    258220f8cd0fb24b554f5e79ad215cdb

                                                Sha1:   e09b2cb80f1e8167bb3e410978d67cfc655b934e

                                                Sha256: cb72f36a6ec276c0364a609859894394b1292a2c12930d35cc85f46b307be9ec

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.r2m01.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.80.227

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: 'max-age=158059' 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 13:16:03 GMT 

                                            
                                                
Server: ECAcc (bsa/EA8F) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: c8fP-DoMT6SbrpPKa6_6DR6GAxEWqSi9T2Hc4bEnWcEAbTIbK8MPNg== 

                                            
                                                
Age: 6480 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /live/chat-live.js HTTP/1.1 

                                        
                                            
Host: web-chat-tag-cdn.s3.eu-west-1.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             3.5.71.169

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: IeyDiGGHu8vAw222fWsLDL0uxsZZOmLnV2wImsJZTFShAlD1o5rgUuzFifGdoNVHZuwXNFt5PU8bHrTdcXX+5g== 

                                            
                                                
x-amz-request-id: EH443FWZ7KTV492N 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
x-amz-replication-status: FAILED 

                                            
                                                
Last-Modified: Tue, 07 Feb 2023 09:25:10 GMT 

                                            
                                                
ETag: "02866e2f4919b743a6fc28e322c8b805" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
Cache-Control: no-cache,max-age=0,immutable 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: bNodLFIyGgX.LCyl1WPp1nBqQRKnpOWR 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 53127 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   54103

                                                Md5:    e06f81cc5d41492c12f63d985d289ff6

                                                Sha1:   2faa4927c4660fc86370179c63ca27cd7e52e293

                                                Sha256: 632db618532ece27b6c8a007ec183dbd39cb58c6c2bd2a3211f454f7a5f54408

                                        

                                        
                                        


                                
                                        
                                            GET /themes/production/hellofresh-button-e43a26541055ffe8644286114c4c9d3c.png HTTP/1.1 

                                        
                                            
Host: d6tizftlrpuof.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.245.47

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png 

                                            
                                            
                                            

                                            
                                                
Content-Length: 1662 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Date: Mon, 19 Sep 2022 01:41:08 GMT 

                                            
                                                
Last-Modified: Tue, 11 Sep 2018 14:13:18 GMT 

                                            
                                                
ETag: "e43a26541055ffe8644286114c4c9d3c" 

                                            
                                                
Cache-Control: max-age=315360000, no-transform, public 

                                            
                                                
x-amz-version-id: Lqf1EAdAKTfQxfeWY77naff5qlmASary 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
X-Cache: Hit from cloudfront 

                                            
                                                
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: gZ0JrvOlrLKTSyyyDyoP44VZkjqMSruWSy8TBpLSBdfnnMbA36mnmg== 

                                            
                                                
Age: 16032176 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 70 x 200, 8-bit colormap, non-interlaced\012- data

                                                Size:   1662

                                                Md5:    e43a26541055ffe8644286114c4c9d3c

                                                Sha1:   05bfab45fbbced43709d6c7980e583b29d3fe4b1

                                                Sha256: ae023d69b1633912960a55720c9d3d94e6c22fae5d30a9a9a59ed3e908c05483

                                        

                                        
                                        


                                
                                        
                                            GET /live/core-bubble.js HTTP/1.1 

                                        
                                            
Host: web-chat-tag-cdn.s3.eu-west-1.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             3.5.71.169

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: vrr4VnJjftVnSIPir/X8zY5IdH48yjO3W4V9qlEft+DDlH/tfx+HVnk73bKUuslUbBt+uW/FP8Kimc+F5ATJwA== 

                                            
                                                
x-amz-request-id: EH47QQFWKY26TQAM 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
x-amz-replication-status: FAILED 

                                            
                                                
Last-Modified: Tue, 07 Feb 2023 09:25:10 GMT 

                                            
                                                
ETag: "4f9eca1bb3e3abc3a0b39117cc9b54d2" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
Cache-Control: no-cache,max-age=0,immutable 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: K08vsidhhiopMq7SzX4miABpOCHpzM6X 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 1031 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (2132), with no line terminators

                                                Size:   1031

                                                Md5:    4f9eca1bb3e3abc3a0b39117cc9b54d2

                                                Sha1:   67a1564ce97d6e7d5c0139de09a4bdaf35cca517

                                                Sha256: f275a273641cea011f4a9cba98091e0cf57090db9f6e0a8b35b919d629ffd0af

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: status.geotrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             192.229.221.95

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 2906 

                                            
                                                
Cache-Control: max-age=168647 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Etag: "641c4ed0-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 13:54:50 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 13:06:24 GMT 

                                            
                                                
Server: ECAcc (ska/F756) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: status.geotrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             192.229.221.95

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 401 

                                            
                                                
Cache-Control: 'max-age=158059' 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
Etag: "641b4d8f-1d7" 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 14:57:22 GMT 

                                            
                                                
Server: ECAcc (ska/F6AF) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /prop.json HTTP/1.1 

                                        
                                            
Host: 10a9494947824ca5be5dbb7494d550fe-7a37ed0f6797.cdn.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain;charset=UTF-8 

                                        
                                            
Content-Length: 0 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             100.26.87.64

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/json 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Server: Apache 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 12:09:26 GMT 

                                            
                                                
ETag: "2-5f79025db9b89" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Content-Length: 2 

                                            
                                                
Cache-Control: max-age=0, no-cache, no-store, must-revalidate 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Expires: Wed, 11 Jan 1984 05:00:00 GMT 

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
Access-Control-Allow-Headers: origin, x-requested-with, content-type, x-csrf-token 

                                            
                                                
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS 

                                            
                                                
Connection: close 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   2

                                                Md5:    99914b932bd37a50b983c5e7c90ae93b

                                                Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

                                                Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

                                        

                                        
                                        


                                
                                        
                                            OPTIONS /v1/events HTTP/1.1 

                                        
                                            
Host: logx.optimizely.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: POST 

                                        
                                            
Access-Control-Request-Headers: content-type 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.80.39.174

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/plain 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin,X-App-Trace-Id 

                                            
                                                
Access-Control-Allow-Methods: GET,POST,OPTIONS 

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Access-Control-Max-Age: 1800 

                                            
                                                
Allow: POST,OPTIONS 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Server: nginx/1.21.0 

                                            
                                                
X-Request-Id: 53029bd3-a2a7-4ab2-b861-fb531c10cafc 

                                            
                                                
Content-Length: 13 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with no line terminators

                                                Size:   13

                                                Md5:    1424eb76249899d757e4d168341a50dc

                                                Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce

                                                Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12

                                        

                                        
                                        


                                
                                        
                                            GET /7a37ed0f6797/10a9494947824ca5be5dbb7494d550fe/prop.json?_=1679583851911 HTTP/1.1 

                                        
                                            
Host: cdn0.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.192.191.43

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/json 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Vary: Origin 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
Cache-Control: no-cache 

                                            
                                                
Expires: -1 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   20

                                                Md5:    5820854f62a6eb3d38ba7ba0d1b3ea75

                                                Sha1:   639df0b84fe699b4a290a713fd6b9a94bd4deb95

                                                Sha256: 912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d

                                        

                                        
                                        


                                
                                        
                                            POST /v1/events HTTP/1.1 

                                        
                                            
Host: logx.optimizely.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Content-Length: 1040 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.80.39.174

                                            
                                                HTTP/1.1 204 No Content 

                                            
                                                
Content-Type: text/plain 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Access-Control-Expose-Headers: X-Results-Data-Source 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Server: nginx/1.21.0 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
X-Request-Id: d390717f-ec71-4230-aa8a-fc2311b8b3e4 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /7a37ed0f6797/10a9494947824ca5be5dbb7494d550fe/prop.json?_=1679583852517 HTTP/1.1 

                                        
                                            
Host: cdn0.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.192.191.43

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/json 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Vary: Origin 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
Cache-Control: no-cache 

                                            
                                                
Expires: -1 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   20

                                                Md5:    5820854f62a6eb3d38ba7ba0d1b3ea75

                                                Sha1:   639df0b84fe699b4a290a713fd6b9a94bd4deb95

                                                Sha256: 912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d

                                        

                                        
                                        


                                
                                        
                                            GET /widget/triggerRunner.js?v=bbf7e2b HTTP/1.1 

                                        
                                            
Host: d3rr3d0n31t48m.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.56

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
content-length: 3812 

                                            
                                                
date: Tue, 21 Mar 2023 15:09:15 GMT 

                                            
                                                
last-modified: Tue, 21 Mar 2023 15:08:54 GMT 

                                            
                                                
etag: "b5196f0a4553d619ed9ef3349b7e4fce" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
cache-control: max-age=2592000, public 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-amz-meta-mtime: 1679411333.34 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: brYb8lkZiPXQv73i8s8IBBW6M2i8XxVi8MYXF6BBRyWWFMWUtT_dgg== 

                                            
                                                
age: 172490 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   3925

                                                Md5:    44eb43a2c41765d4356de5d9918a7657

                                                Sha1:   dcf23fa89cde874dba86916995c9c35d93f3a709

                                                Sha256: 20f837b09d2222dcc5a232aeb9d3cca4109b32f4ba1b0e07355d4118ed452fc6

                                        

                                        
                                        


                                
                                        
                                            GET /modules.6af44455668b675aade1.js HTTP/1.1 

                                        
                                            
Host: script.hotjar.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.73

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript 

                                            
                                            
                                            

                                            
                                                
content-length: 69096 

                                            
                                                
date: Thu, 23 Mar 2023 14:31:09 GMT 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
cache-control: max-age=31536000 

                                            
                                                
content-encoding: br 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
etag: "77f3f89a0a86a9ed3647edf2670ebff3" 

                                            
                                                
last-modified: Thu, 23 Mar 2023 14:31:08 GMT 

                                            
                                                
strict-transport-security: max-age=2592000; includeSubDomains 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-robots-tag: none 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: Rps4Rk7M4-NEuKQo2-fBmebLOs1PcBuha-f9psWVVoWHUg7LvCTdGw== 

                                            
                                                
age: 1975 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Unicode text, UTF-8 text, with very long lines (50842)

                                                Size:   69096

                                                Md5:    77f3f89a0a86a9ed3647edf2670ebff3

                                                Sha1:   53016e740b30c545ea018af0d2412d1ddf80ad18

                                                Sha256: c82b9db33bfaa349a2a8bc520787f21f5d2519307404e02df877ddf5cb0bdb30

                                        

                                        
                                        


                                
                                        
                                            GET /vchk2 HTTP/1.1 

                                        
                                            
Host: cdn9.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: eyJyIjowLjIyNTEyOTcyNjcxNDc3MTI3LCJ1IjoiMTBhOTQ5NDk0NzgyNGNhNWJlNWRiYjc0OTRkNTUwZmUiLCJzIjoiN2EzN2VkMGY2Nzk3In0= 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.31

                                            
                                                HTTP/2 301 Moved Permanently 

                                            
                                            
                                            

                                            
                                                
location: https://cdn9.forter.com/vchk2/v1/7fbf0b92384328723923ba1818fd57baa2e69b5f7cda4161b1e2355abac49441ac7f4bc96a125fe4d1f44dd4a573 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cache-control: private, s-maxage=0, proxy-revalidate 

                                            
                                                
strict-transport-security: max-age=86400; includeSubDomains 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: uaCJEVZjK7yW0sEcS1Ac6plTLzKWkvfOZVosZUSx-6zuiJoEoZuWig== 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /pagead/conversion/812248422/?random=382421895&fst=1679583843566&cv=10&fmt=3&label=GMHsCOagyJ0DEP367MUB&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&value=0&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&data=event%3Dpage_view%3Bcd42%3DUS%3Bcd5%3DMVO139E%3Bcd6%3DMVO139E%3Bsd%3D24-bit%3Bsr%3D1280x1024%3Bvp%3D1280x939%3Bul%3Den-US%3Bhashed_em%3D%3Bcd9%3D%2Fplans%3Bcd10%3D%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bdh%3Dwww.everyplate.com%3Bpage_hostname%3Dwww.everyplate.com%3Bde%3DUTF-8%3Bgjid%3D968776439%3Bhftr%3D159373022.1679583850%3Bpage_path%3D%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1679583851&auid=497901447.1679583843&bttype=purchase&uip=91.90.42.0&s3p=1 HTTP/1.1 

                                        
                                            
Host: www.googleadservices.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.162

                                            
                                                HTTP/2 302 Found 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, must-revalidate 

                                            
                                                
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/812248422/?random=695514636&fst=1679583843566&cv=10&fmt=3&label=GMHsCOagyJ0DEP367MUB&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&value=0&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&data=event%3Dpage_view%3Bcd42%3DUS%3Bcd5%3DMVO139E%3Bcd6%3DMVO139E%3Bsd%3D24-bit%3Bsr%3D1280x1024%3Bvp%3D1280x939%3Bul%3Den-US%3Bhashed_em%3D%3Bcd9%3D%2Fplans%3Bcd10%3D%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bdh%3Dwww.everyplate.com%3Bpage_hostname%3Dwww.everyplate.com%3Bde%3DUTF-8%3Bgjid%3D968776439%3Bhftr%3D159373022.1679583850%3Bpage_path%3D%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1679583851&auid=497901447.1679583843&uip=91.90.42.0&s3p=1&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZGocZNabJbWV-cAPr5CbkA8&sscte=1&crd=&eitems=ChEI8PHvoAYQ4MDuh9vm8PSEARIdAIIL5W9mAvfA6I8-qVoNoNmUm2O2VFfV-tYoiDk&pscrd=EkxDaEFJOFBIdm9BWVFpSV9WcWVlU284RmZFaVVBV0JGajlzbmt6LVZZczVRMEU3c0FjVXlUcVlKRE52aEpHNENIMTRfTVIyQ2p4ZWhmGldDaEFJOFBIdm9BWVFfYTZOcFBmNWxQNXdFaTBBRUF0MWtWalJVcm0xYXI0NUE2bTJyU2JNcVJUNG9DUDVkYkNjOEhZSEZ4MTk5NFB1QXRjSjhqZk14RTQ 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: cafe 

                                            
                                                
content-length: 42 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        

                                        
                                        


                                
                                        
                                            GET /pagead/viewthroughconversion/812248422/?random=1679583843562&cv=10&fst=1679583843562&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&auid=497901447.1679583843 HTTP/1.1 

                                        
                                            
Host: googleads.g.doubleclick.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.211.2

                                            
                                                HTTP/2 302 Found 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, must-revalidate 

                                            
                                                
location: https://www.google.com/pagead/1p-user-list/812248422/?random=1679583843562&cv=10&fst=1679583600000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&is_vtc=1&random=3472377513 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: cafe 

                                            
                                                
content-length: 42 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 15:19:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        

                                        
                                        


                                
                                        
                                            GET /p/action/26018772.js HTTP/1.1 

                                        
                                            
Host: bat.bing.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             13.107.21.200

                                            
                                                HTTP/2 204 No Content 

                                            
                                            
                                            

                                            
                                                
cache-control: private,max-age=1800 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains; preload 

                                            
                                                
x-cache: CONFIG_NOCACHE 

                                            
                                                
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version 

                                            
                                                
x-msedge-ref: Ref A: 464D03CF5674426FB1DA3113F2581079 Ref B: OSL30EDGE0208 Ref C: 2023-03-23T15:04:04Z 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:03 GMT 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /sn/7a37ed0f6797/script.js HTTP/1.1 

                                        
                                            
Host: 7a37ed0f6797.cdn4.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.78

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 13:34:45 GMT 

                                            
                                                
strict-transport-security: max-age=86400; includeSubDomains 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
last-modified: Thu, 23 Mar 2023 13:34:45 GMT 

                                            
                                                
expires: Thu, 23 Mar 2023 13:39:45 GMT 

                                            
                                                
cache-control: private, max-age=300 

                                            
                                                
x-sourcemap: https://cdn4.forter.com/map/suid/7a37ed0f6797/81053984317 

                                            
                                                
content-encoding: br 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: dZMLhUwpUzFTOOm4PpGHXoGrLAAQICWjPXEO3KTuzo3rOTq5Myz2Jg== 

                                            
                                                
age: 5358 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (65536), with no line terminators

                                                Size:   178024

                                                Md5:    b3ff1d98f41d791ced6ca19e44ba4cce

                                                Sha1:   ba76999f92f940eac6f63aa840b1af4790017e47

                                                Sha256: 717afb9217e62ee7fb0e9306dcd702f6a49ea67e550eda8666149153b74a1c01

                                        

                                        
                                        


                                
                                        
                                            GET /widget/widget.js?v=c98ff27 HTTP/1.1 

                                        
                                            
Host: d3rr3d0n31t48m.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.56

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
content-length: 48478 

                                            
                                                
date: Tue, 21 Mar 2023 15:09:14 GMT 

                                            
                                                
last-modified: Tue, 21 Mar 2023 15:08:55 GMT 

                                            
                                                
etag: "77efb5e80c2b14bb2e6cced80e1dfe96" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
cache-control: max-age=2592000, public 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-amz-meta-mtime: 1679411331.62 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: gUx_5ikj8VSNuyEvbWWHoCYC6gCMFaSnAdByemVRshNCOti20yPBgA== 

                                            
                                                
age: 172490 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (817)

                                                Size:   48478

                                                Md5:    77efb5e80c2b14bb2e6cced80e1dfe96

                                                Sha1:   f924851b294a1dc98d44083606ba680016c236cd

                                                Sha256: 91f5ee622d3beadb2e899dff1c1cbf107eb4e5d1168aee060668984d99c77d0f

                                        

                                        
                                        


                                
                                        
                                            GET /pagead/viewthroughconversion/812248422/?random=695514636&fst=1679583843566&cv=10&fmt=3&label=GMHsCOagyJ0DEP367MUB&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&value=0&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&data=event%3Dpage_view%3Bcd42%3DUS%3Bcd5%3DMVO139E%3Bcd6%3DMVO139E%3Bsd%3D24-bit%3Bsr%3D1280x1024%3Bvp%3D1280x939%3Bul%3Den-US%3Bhashed_em%3D%3Bcd9%3D%2Fplans%3Bcd10%3D%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bdh%3Dwww.everyplate.com%3Bpage_hostname%3Dwww.everyplate.com%3Bde%3DUTF-8%3Bgjid%3D968776439%3Bhftr%3D159373022.1679583850%3Bpage_path%3D%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1679583851&auid=497901447.1679583843&uip=91.90.42.0&s3p=1&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZGocZNabJbWV-cAPr5CbkA8&sscte=1&crd=&eitems=ChEI8PHvoAYQ4MDuh9vm8PSEARIdAIIL5W9mAvfA6I8-qVoNoNmUm2O2VFfV-tYoiDk&pscrd=EkxDaEFJOFBIdm9BWVFpSV9WcWVlU284RmZFaVVBV0JGajlzbmt6LVZZczVRMEU3c0FjVXlUcVlKRE52aEpHNENIMTRfTVIyQ2p4ZWhmGldDaEFJOFBIdm9BWVFfYTZOcFBmNWxQNXdFaTBBRUF0MWtWalJVcm0xYXI0NUE2bTJyU2JNcVJUNG9DUDVkYkNjOEhZSEZ4MTk5NFB1QXRjSjhqZk14RTQ HTTP/1.1 

                                        
                                            
Host: googleads.g.doubleclick.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.211.2

                                            
                                                HTTP/2 302 Found 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, must-revalidate 

                                            
                                                
location: https://www.google.com/pagead/1p-conversion/812248422/?random=695514636&fst=1679583843566&cv=10&fmt=3&label=GMHsCOagyJ0DEP367MUB&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&value=0&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&data=event%3Dpage_view%3Bcd42%3DUS%3Bcd5%3DMVO139E%3Bcd6%3DMVO139E%3Bsd%3D24-bit%3Bsr%3D1280x1024%3Bvp%3D1280x939%3Bul%3Den-US%3Bhashed_em%3D%3Bcd9%3D%2Fplans%3Bcd10%3D%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bdh%3Dwww.everyplate.com%3Bpage_hostname%3Dwww.everyplate.com%3Bde%3DUTF-8%3Bgjid%3D968776439%3Bhftr%3D159373022.1679583850%3Bpage_path%3D%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73%3Bhf_event_name%3Dpage_view%3Btimestamp_seconds%3D1679583851&auid=497901447.1679583843&uip=91.90.42.0&s3p=1&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&pscrd=EkxDaEFJOFBIdm9BWVFpSV9WcWVlU284RmZFaVVBV0JGajlzbmt6LVZZczVRMEU3c0FjVXlUcVlKRE52aEpHNENIMTRfTVIyQ2p4ZWhmGldDaEFJOFBIdm9BWVFfYTZOcFBmNWxQNXdFaTBBRUF0MWtWalJVcm0xYXI0NUE2bTJyU2JNcVJUNG9DUDVkYkNjOEhZSEZ4MTk5NFB1QXRjSjhqZk14RTQ&is_vtc=1&ocp_id=ZGocZNabJbWV-cAPr5CbkA8&eitems=ChEI8PHvoAYQ4MDuh9vm8PSEARIdAIIL5W9JVrxkjxKWTp-PIiCLxOwbuVtBYKJsIDo&random=698057712 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: cafe 

                                            
                                                
content-length: 42 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
set-cookie: test_cookie=CheckForPermission; expires=Thu, 23-Mar-2023 15:19:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        

                                        
                                        


                                
                                        
                                            GET /c/hotjar-919432.js?sv=7 HTTP/1.1 

                                        
                                            
Host: static.hotjar.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.8

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:03:28 GMT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
cache-control: max-age=60 

                                            
                                                
content-encoding: br 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
etag: W/fa83d8dfe8fe1afd136ae7aee7cfc863 

                                            
                                                
strict-transport-security: max-age=2592000; includeSubDomains 

                                            
                                                
x-cache-hit: 1 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: ZUtFUaiy-eMHixGN6RtG-iIVkxltqYOad4b7yLQk-G4Xsnd75xmYqA== 

                                            
                                                
age: 35 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (22273)

                                                Size:   80881

                                                Md5:    7397ec8067cff63711dd97e320779f7a

                                                Sha1:   2a637a3d44b4c8eafcdccd08ba3063be2961f8c0

                                                Sha256: 21f4308377ed94335c3a372d17e1b66e2fcb508cd635e442c9357be6629492d4

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /logo_large.gif?1679583852831&-linkd-32. HTTP/1.1 

                                        
                                            
Host: d3nocrch4qti4v.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.222.250.224

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
content-length: 43 

                                            
                                                
date: Sat, 11 Mar 2023 10:26:46 GMT 

                                            
                                                
last-modified: Thu, 16 Mar 2017 14:48:02 GMT 

                                            
                                                
etag: "b4491705564909da7f9eaf749dbbfbb1" 

                                            
                                                
cache-control: max-age=1296000 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 4612dc3b414cf2057f542e94733d59bc.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: FRA60-P3 

                                            
                                                
x-amz-cf-id: EpXxy66i9VMHTDk_-p_HQ2Eyu5EH7u-8f43-OopOAH-T1SjVB4qoFA== 

                                            
                                                
age: 1053439 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   13704

                                                Md5:    b2ec3d892f0cee256eb0373f813561ed

                                                Sha1:   fe5c9cee8e62bf2f2215c3f3110f4630e6c05804

                                                Sha256: 2bb21a54b1527a6e90eaa3a85b83449d2855076b8099af9dda71bd61ce2c0494

                                        

                                        
                                        


                                
                                        
                                            GET /logo_medium.gif?check=1679583852831&refererPageDetail= HTTP/1.1 

                                        
                                            
Host: d3nocrch4qti4v.cloudfront.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.222.250.224

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
content-length: 43 

                                            
                                                
last-modified: Thu, 16 Mar 2017 14:48:14 GMT 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
date: Thu, 09 Mar 2023 12:06:48 GMT 

                                            
                                                
cache-control: max-age=1296000 

                                            
                                                
etag: "b4491705564909da7f9eaf749dbbfbb1" 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
via: 1.1 4612dc3b414cf2057f542e94733d59bc.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: FRA60-P3 

                                            
                                                
x-amz-cf-id: lb_w1T3F687SG48c9H1808rfzr40SNP3gv8s2D34wvAoIsVoLSdHFQ== 

                                            
                                                
age: 1220237 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    b4491705564909da7f9eaf749dbbfbb1

                                                Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8

                                                Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

                                        

                                        
                                        


                                
                                        
                                            GET /7a37ed0f6797/10a9494947824ca5be5dbb7494d550fe/prop.json?_=1679583852775 HTTP/1.1 

                                        
                                            
Host: cdn0.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.192.191.43

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/json 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Vary: Origin 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
Cache-Control: no-cache 

                                            
                                                
Expires: -1 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   85

                                                Md5:    128f7359cb57265108c1851cca38c6a9

                                                Sha1:   217a4609bb6100ef329aeae5401ec5f03fe4eabc

                                                Sha256: b044cc989c650d2394b0551862257bc634cb35f9dd61876f257302cea9e73cd4

                                        

                                        
                                        


                                
                                        
                                            GET /pagead/1p-user-list/812248422/?random=1679583843562&cv=10&fst=1679583600000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024&gtm=45j91e33l1&url=https%3A%2F%2Fwww.everyplate.com%2Fplans%3Fmealsize%3D4-5%26c_comms%3DPER-SERVING%26c%3DMVO139E%26utm_source%3DM1%26utm_medium%3Dcpa%26utm_campaign%3D100334796%26utm_id%3Dcj~15435836%26cjevent%3Df05974d1c98b11ed83d12fd10a18ba73&tiba=Select%20your%20plan&is_vtc=1&random=3472377513&ipr=y HTTP/1.1 

                                        
                                            
Host: www.google.no 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.207.227

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
pragma: no-cache 

                                            
                                                
expires: Fri, 01 Jan 1990 00:00:00 GMT 

                                            
                                                
cache-control: no-cache, no-store, must-revalidate 

                                            
                                                
content-security-policy: script-src 'none'; object-src 'none' 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: cafe 

                                            
                                                
content-length: 42 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.163

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: status.geotrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             192.229.221.95

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 5269 

                                            
                                                
Cache-Control: max-age=115984 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Etag: "641b77df-1d7" 

                                            
                                                
Expires: Fri, 24 Mar 2023 23:17:08 GMT 

                                            
                                                
Last-Modified: Wed, 22 Mar 2023 21:49:19 GMT 

                                            
                                                
Server: ECAcc (ska/F7A5) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            OPTIONS /7a37ed0f6797/10a9494947824ca5be5dbb7494d550fe/wpt.json HTTP/1.1 

                                        
                                            
Host: cdn0.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: POST 

                                        
                                            
Access-Control-Request-Headers: content-type 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.192.191.43

                                            
                                                HTTP/1.1 204 No Content 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE 

                                            
                                                
Vary: Access-Control-Request-Headers 

                                            
                                                
Access-Control-Allow-Headers: content-type 

                                            
                                                
Content-Length: 0 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /7a37ed0f6797/10a9494947824ca5be5dbb7494d550fe/wpt.json HTTP/1.1 

                                        
                                            
Host: cdn0.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json; charset=utf-8 

                                        
                                            
Content-Length: 27 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.192.191.43

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/json; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
Access-Control-Allow-Origin: https://www.everyplate.com 

                                            
                                                
Vary: Origin 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
Timing-Allow-Origin: * 

                                            
                                                
Cache-Control: private, no-cache, no-store 

                                            
                                                
Expires: -1 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Content-Length: 20 

                                            
                                                
ETag: W/"14-Y53wuE/mmbSikKcT/WualL1N65U" 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:04 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   20

                                                Md5:    5820854f62a6eb3d38ba7ba0d1b3ea75

                                                Sha1:   639df0b84fe699b4a290a713fd6b9a94bd4deb95

                                                Sha256: 912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d

                                        

                                        
                                        


                                
                                        
                                            GET /input.js HTTP/1.1 

                                        
                                            
Host: shopper.shop.pe 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             35.190.54.17

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
x-guploader-uploadid: ADPycdtYE9V_jW_J2z-Z7SJUhhWvSwJx1qaEiCuDbj90B6yiDhIq3l85SsAQ3onuOhnui6hSzWYnp-xwhB03Gmp0jcnoN7zHW1Sc 

                                            
                                                
x-goog-generation: 1676478788444714 

                                            
                                                
x-goog-metageneration: 2 

                                            
                                                
x-goog-stored-content-encoding: gzip 

                                            
                                                
x-goog-stored-content-length: 8877 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-goog-hash: crc32c=cHI6Vg==, md5=Vr5hc7XQu8Voms0uTcQM8g== 

                                            
                                                
x-goog-storage-class: STANDARD 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
content-length: 8877 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Access-Control-Allow-Origin 

                                            
                                                
server: UploadServer 

                                            
                                                
date: Thu, 23 Mar 2023 13:21:03 GMT 

                                            
                                                
expires: Thu, 23 Mar 2023 17:21:03 GMT 

                                            
                                                
cache-control: public, max-age=14400 

                                            
                                                
age: 6182 

                                            
                                                
last-modified: Wed, 15 Feb 2023 16:33:08 GMT 

                                            
                                                
etag: "56be6173b5d0bbc5689acd2e4dc40cf2" 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (17023)

                                                Size:   8877

                                                Md5:    56be6173b5d0bbc5689acd2e4dc40cf2

                                                Sha1:   a48f9c0ac17d02994370c71af4e0f5ab6ce5401e

                                                Sha256: 7cac3b28a677a56fb194ea4bb877e4648d3d9b0f24f2f946f75d94d74d78e0f3

                                        

                                        
                                        


                                
                                        
                                            POST /events HTTP/1.1 

                                        
                                            
Host: cdn3.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain; charset=utf-8 

                                        
                                            
Content-Length: 20024 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             3.232.59.66

                                            
                                                HTTP/2 200 OK 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
access-control-allow-origin: https://www.everyplate.com 

                                            
                                                
vary: Origin 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cache-control: private, no-cache, no-store 

                                            
                                                
expires: -1 

                                            
                                                
pragma: no-cache 

                                            
                                                
strict-transport-security: max-age=86400; includeSubDomains 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   9200

                                                Md5:    f4e8d4e4c1829dabf0c76cde7ee27899

                                                Sha1:   0b4125b0fb8ce14f89e02adc39d4b77bb6f9e45d

                                                Sha256: 0a444677ec8436d2667b0548b5339cc156d23fa8f72eb9d0769d3f9990414881

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.245.118

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=168850 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
Etag: "641c4acb-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 13:58:15 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 12:49:15 GMT 

                                            
                                                
Server: ECAcc (nya/78BE) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: T29VU5VBsxOvn7r-aFBx_N02osG7ftw91y3U64tWNbKQrIqCpLI22g== 

                                            
                                                
Age: 4140 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.245.118

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=171070 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
Etag: "641c4acb-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 14:35:15 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 12:49:15 GMT 

                                            
                                                
Server: ECAcc (nya/79E6) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: 1MP5dJXBgSLQa5j8GRcAPn14i83aEOZVOrpn2Q4-TnhPCp16t_gD-A== 

                                            
                                                
Age: 6360 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /customize/5e583961e694aa04a4e32b17/5522f21c998642228d40763002e33e18.js?_t=1679573197 HTTP/1.1 

                                        
                                            
Host: addshoppers.s3.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.216.145.99

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: i+piB/iwJORUMvfwCDrjk2VZWwCJrzSJnZ5Gme1EsFUmu2DOVTM3SKy3fj6BhP6/GmUF0lIVKI8= 

                                            
                                                
x-amz-request-id: KRN826ZVX94CGS77 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:06 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 12:06:39 GMT 

                                            
                                                
ETag: "28aa5e4aa5fbca451ec15050d843e139" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
Cache-Control: max-age=2592000, public 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: CkV2cshRxijiyS3LknyH8Ye54xre5kzm 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 1595 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (6893)

                                                Size:   1816

                                                Md5:    9ca089eda51e859c164e6b109a4263d1

                                                Sha1:   7832b0d9922540088d093b13ae45798c2bd41030

                                                Sha256: 3c94c5cd037fce79df92bd483c540a264fff12dc895562b7a7f8e5e48eb7a6e5

                                        

                                        
                                        


                                
                                        
                                            GET /5e583961e694aa04a4e32b17/5ecd5aa7d559300469446a88/A.js?_t=1663082965 HTTP/1.1 

                                        
                                            
Host: addshoppers.s3.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.216.145.99

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: 1QS89oTYBVtppGHNG7SKFFI+dBVoQ86YTPbrPqN1+ap/OubBTMvjK2EqAZQnDnD74WKe4t6rjAE= 

                                            
                                                
x-amz-request-id: KRN6WZJCHSBM737H 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:06 GMT 

                                            
                                                
Last-Modified: Tue, 13 Sep 2022 15:29:26 GMT 

                                            
                                                
ETag: "770a0a06a68de5aca73a7fedaed6b5e5" 

                                            
                                                
Cache-Control: max-age=2592000, public 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: UafNIQ4XPZkFy5l52GGKUhPZw4bwSwUT 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 3817 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (17452), with no line terminators

                                                Size:   4613

                                                Md5:    30c0b4c65f2834332d4c442d42d5b699

                                                Sha1:   aa99f16e3cd302d5dee2407f406e1c2f01ed7a56

                                                Sha256: 85e76779a7239324dbd1654944f5db5fe227ab22f7fd20b8eb11d518f4c9af00

                                        

                                        
                                        


                                
                                        
                                            GET /5e583961e694aa04a4e32b17/640f90f4b8357f03c9638364/A.js?_t=1679426009 HTTP/1.1 

                                        
                                            
Host: addshoppers.s3.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             52.216.145.99

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: 9klttVEONypolEhxLcWAXCMscNWqFyXljqbuKanWggVnGkxI+nKy2MuD12V/sj1MNVZSwLOPABY= 

                                            
                                                
x-amz-request-id: KRNFN4EG5PCJ2RW2 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:06 GMT 

                                            
                                                
Last-Modified: Tue, 21 Mar 2023 19:13:31 GMT 

                                            
                                                
ETag: "b1561dc28c086e590879557e979372cb" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
Cache-Control: max-age=2592000, public 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: _.AcgeAavocLOZqnWks2xpFFxdBmyVvB 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 1196 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (3283), with no line terminators

                                                Size:   1196

                                                Md5:    b1561dc28c086e590879557e979372cb

                                                Sha1:   6d96d1f249d89682f58eab838dc571440f6f85ce

                                                Sha256: 1d67dd24897a42e2817b52875bc5b050f9ed836968d4387807374d43e0babaaf

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.r2m01.amazontrust.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.80.227

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Content-Length: 471 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Cache-Control: max-age=169479 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
Etag: "641c55f2-1d7" 

                                            
                                                
Expires: Sat, 25 Mar 2023 14:08:44 GMT 

                                            
                                                
Last-Modified: Thu, 23 Mar 2023 13:36:50 GMT 

                                            
                                                
Server: ECAcc (bsa/EB26) 

                                            
                                                
X-Cache: Miss from cloudfront 

                                            
                                                
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: 6GrI7vEkCvS3kc52aIe3mi5AQbT1LQrm5JpVY7VVadK8BqdqkFxheg== 

                                            
                                                
Age: 1914 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /iframe?vcp=4dd5h0np&as_id=7b2d7335c4384368ad1f23061e59e045 HTTP/1.1 

                                        
                                            
Host: nytrng.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             75.2.91.175

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/html; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
content-length: 417 

                                            
                                                
server: gunicorn 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (417), with no line terminators

                                                Size:   417

                                                Md5:    55dac0ad7f5bb084d8ae672c2fd5837e

                                                Sha1:   f44c672c45e03478dbabf72e3749365e1003f1ad

                                                Sha256: 7e3516c79159f41090eac1cd67223420f59093593d6c680a1acb9fabe4b5cdc9

                                        

                                        
                                        


                                
                                        
                                            GET /pl.2.2.min.js HTTP/1.1 

                                        
                                            
Host: cdn.nytrng.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://nytrng.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             54.230.111.72

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/plain 

                                            
                                            
                                            

                                            
                                                
content-length: 0 

                                            
                                                
date: Thu, 09 Mar 2023 01:09:36 GMT 

                                            
                                                
last-modified: Wed, 31 Jul 2019 16:57:19 GMT 

                                            
                                                
etag: "d41d8cd98f00b204e9800998ecf8427e" 

                                            
                                                
x-amz-version-id: null 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
x-cache: Error from cloudfront 

                                            
                                                
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront) 

                                            
                                                
x-amz-cf-pop: OSL50-P1 

                                            
                                                
x-amz-cf-id: 8ACCt0vNx51QQSzj_g6LIcgrXEWkLdrhbC7SaM0rW_ul0bH3l-4mag== 

                                            
                                                
age: 1259669 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /live/602.js HTTP/1.1 

                                        
                                            
Host: web-chat-tag-cdn.s3.eu-west-1.amazonaws.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             3.5.71.169

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: Eb3KoIHa35kVj9l3SkkqN0E02fCnCChHCdGRV3xVrq4U9NQMPtRKnclK9szcqTPIWi+ILdBTfC40KCXruJlL6g== 

                                            
                                                
x-amz-request-id: KRN1AY2SBQHBWCNV 

                                            
                                                
Date: Thu, 23 Mar 2023 15:04:06 GMT 

                                            
                                                
x-amz-replication-status: FAILED 

                                            
                                                
Last-Modified: Tue, 07 Feb 2023 09:25:10 GMT 

                                            
                                                
ETag: "4fe7ae4a40dd8f2f40a3f586a70eca31" 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
Cache-Control: no-cache,max-age=0,immutable 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
x-amz-version-id: 6199rnvwCZO3HmAidJnpmvo3krE0A6XS 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Server: AmazonS3 

                                            
                                                
Content-Length: 6479 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (16174)

                                                Size:   6479

                                                Md5:    4fe7ae4a40dd8f2f40a3f586a70eca31

                                                Sha1:   c6cfbaa1ff3b5dbbf644a2c8e5b89d1f3c7fdd15

                                                Sha256: a1752c50200e40e9b56f5799f45ed1d9c4af41916973bc956ecdc66c6bcf0720

                                        

                                        
                                        


                                
                                        
                                            GET /plans?mealsize=4-5&c_comms=PER-SERVING&c=MVO139E&utm_source=M1&utm_medium=cpa&utm_campaign=100334796&utm_id=cj~15435836&cjevent=f05974d1c98b11ed83d12fd10a18ba73 HTTP/1.1 

                                        
                                            
Host: www.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1 

                                        
                                            
 

                                        
                                    
                                        
                                             104.16.55.89

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/html; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:03:59 GMT 

                                            
                                                
cf-ray: 7ac79073c99b1bfa-OSL 

                                            
                                                
age: 35 

                                            
                                                
cache-control: public, max-age=14400 

                                            
                                                
content-language: en-US 

                                            
                                                
last-modified: Thu, 23 Mar 2023 05:46:07 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
cf-cache-status: HIT 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-envoy-upstream-service-time: 1138 

                                            
                                                
x-frame-options: SAMEORIGIN 

                                            
                                                
x-powered-by: Next.js 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
set-cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ=; path=/; expires=Thu, 23-Mar-23 15:33:59 GMT; domain=.everyplate.com; HttpOnly; Secure; SameSite=None 

                                            
                                                
server: cloudflare 

                                            
                                                
content-encoding: br 

                                            
                                                
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            GET /local-tagging-container HTTP/1.1 

                                        
                                            
Host: tms.hft.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ= 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.160.69.63

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-headers: Cache-Control 

                                            
                                                
vary: Accept-Encoding, Accept-Encoding 

                                            
                                                
cache-control: private, max-age=900 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
accept-ranges: none 

                                            
                                                
x-cloud-trace-context: bff0d517d7984ba782780925f565ff73 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
server: Google Frontend 

                                            
                                                
via: 1.1 google 

                                            
                                                
content-encoding: br 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            GET /core-tagging-container HTTP/1.1 

                                        
                                            
Host: tms.hft.everyplate.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Cookie: __cf_bm=AG.t0nHseP1VKGtE2joeq8dXI0fuh9wUGB36FpHh14k-1679583839-0-AXfbNdh1KGnrAifvoE/9SuEMc3g3Ml67hXrj8tJUluUj75uScEU4vITYLXFpm/MIZqaoJ2hY3DF8jA7P6e8WbbQ= 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.160.69.63

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-headers: Cache-Control 

                                            
                                                
vary: Accept-Encoding, Accept-Encoding 

                                            
                                                
cache-control: private, max-age=900 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000, h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
accept-ranges: none 

                                            
                                                
x-cloud-trace-context: 6e79e7e36ee23c04338d1aaa647225ca 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:00 GMT 

                                            
                                                
server: Google Frontend 

                                            
                                                
via: 1.1 google 

                                            
                                                
content-encoding: br 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            POST /events HTTP/1.1 

                                        
                                            
Host: cdn3.forter.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: text/plain; charset=utf-8 

                                        
                                            
Content-Length: 1466 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             3.232.59.66

                                            
                                                HTTP/2 200 OK 

                                            
                                            
                                            

                                            
                                                
date: Thu, 23 Mar 2023 15:04:07 GMT 

                                            
                                                
access-control-allow-origin: https://www.everyplate.com 

                                            
                                                
vary: Origin 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
cache-control: private, no-cache, no-store 

                                            
                                                
expires: -1 

                                            
                                                
pragma: no-cache 

                                            
                                                
strict-transport-security: max-age=86400; includeSubDomains 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            GET /app/datapartners/status?usersite_id=5e583961e694aa04a4e32b17 HTTP/1.1 

                                        
                                            
Host: app.shop.pe 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://www.everyplate.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.everyplate.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             35.227.244.1

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Thu, 23 Mar 2023 15:04:05 GMT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-headers: X-Requested-With, Content-Type, X-XSRFToken 

                                            
                                                
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PATCH 

                                            
                                                
p3p: policyref="/w3c/p3p.xml", CP="CAO PSA OUR" 

                                            
                                                
etag: W/"0467ba22658b680d6de72dc567071b5bc495547f" 

                                            
                                                
set-cookie: _xsrf=2|2cdcd263|519fe3f9a740aad8f279404ebdb9cf66|1679583845; Path=/ 

                                            
                                                
x-frame-options: deny 

                                            
                                                
strict-transport-security: max-age=31536000; includeSubDomains 

                                            
                                                
content-encoding: gzip 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: