HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:46:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21327
Connection: keep-alive
Chimera-API-Server: api1.uk.chimera.uk2group.com
X-Powered-By: Perl Dancer 1.3513
Front-End-Https: on
Strict-Transport-Security: max-age=63072000; includeSubdomains

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5287
Expires: Thu, 02 Feb 2023 00:15:01 GMT
Date: Wed, 01 Feb 2023 22:46:54 GMT
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5014
Expires: Thu, 02 Feb 2023 00:10:28 GMT
Date: Wed, 01 Feb 2023 22:46:54 GMT
Connection: keep-alive

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 22:43:26 GMT
content-type: application/json
age: 208
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7812
Expires: Thu, 02 Feb 2023 00:57:06 GMT
Date: Wed, 01 Feb 2023 22:46:54 GMT
Connection: keep-alive

HTTP/2 200 OK
x-amz-id-2: RHcbyap5fpkU682ZGO4ioc/eiRqF8ugCnWyj2g04j4W54hGugGUsa2HlZyj3tdcBoI+EMVxp1Hs=
x-amz-request-id: HKR5BSY5RC8GJSZ9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 22:22:50 GMT
age: 1444
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4004
Cache-Control: max-age=104936
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Etag: "63d9d323-118"
Expires: Fri, 03 Feb 2023 03:55:50 GMT
Last-Modified: Wed, 01 Feb 2023 02:49:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Last-Modified: Wed, 01 Feb 2023 21:54:59 GMT
Server: ECS (amb/6B91)
X-Cache: HIT
Content-Length: 471

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Last-Modified: Wed, 01 Feb 2023 21:54:59 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4004
Cache-Control: max-age=104936
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Etag: "63d9d323-118"
Expires: Fri, 03 Feb 2023 03:55:50 GMT
Last-Modified: Wed, 01 Feb 2023 02:49:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3289
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"cd9-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3713
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"e81-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3712
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"e80-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3895
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"f37-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 4238
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"108e-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 4328
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"10e8-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 4034
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"fc2-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3379
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"d33-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3546
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"dda-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3989
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"f95-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3028
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"bd4-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 3335
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"d07-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/png
content-length: 5783
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"1697-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/jpeg
content-length: 18153
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"46e9-185ddbdf948"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166795
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Etag: "63dad469-1d7"
Expires: Fri, 03 Feb 2023 21:06:49 GMT
Last-Modified: Wed, 01 Feb 2023 21:06:49 GMT
Server: nginx
Content-Length: 471

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 488325
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166795
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Etag: "63dad469-1d7"
Expires: Fri, 03 Feb 2023 21:06:49 GMT
Last-Modified: Wed, 01 Feb 2023 21:06:49 GMT
Server: nginx
Content-Length: 471

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:46:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 01 Feb 2023 22:46:54 GMT
Content-Type: text/html
Content-Length: 498
Connection: keep-alive
Last-Modified: Mon, 01 Dec 2014 15:09:45 GMT
Chimera-API-Server: api1.uk.chimera.uk2group.com
X-Powered-By: Perl Dancer 1.3513

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 21:49:05 GMT
age: 3469
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3510
Expires: Wed, 01 Feb 2023 23:45:24 GMT
Date: Wed, 01 Feb 2023 22:46:54 GMT
Connection: keep-alive

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t61oGrbDhXRrizyY3LXorpe9H+4=

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7093
Expires: Thu, 02 Feb 2023 00:45:09 GMT
Date: Wed, 01 Feb 2023 22:46:56 GMT
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7093
Expires: Thu, 02 Feb 2023 00:45:09 GMT
Date: Wed, 01 Feb 2023 22:46:56 GMT
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7093
Expires: Thu, 02 Feb 2023 00:45:09 GMT
Date: Wed, 01 Feb 2023 22:46:56 GMT
Connection: keep-alive

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7093
Expires: Thu, 02 Feb 2023 00:45:09 GMT
Date: Wed, 01 Feb 2023 22:46:56 GMT
Connection: keep-alive

HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 2879
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:11 GMT
age: 2745
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CWfxfWc7d8PGIAtD2kmys5PAmsudrBlMjqy7NsmzUl50QAQd_UfXCA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:20 GMT
age: 2796
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 2089
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: a266acae-8f1e-4cd7-b93b-e40aa5393521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUpGcmoAMF16Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1d-1fbae7785fccc58f71c1b3e9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PevXZz9rkBo3Cy6EooCVOpSoHyeKHMoYFjKRrvDld34WFWXzOmpANQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:11:31 GMT
age: 2125
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 73018
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
cdn-edgestorageid: 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-13 02:36:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 357c5298f2849c0ce9712c57ec240f4e
cdn-cache: HIT
cf-cache-status: HIT
age: 1188058
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 792e39cd4e19b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 22:46:54 GMT
date: Wed, 01 Feb 2023 22:46:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:46:54 GMT
content-type: image/svg+xml
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 23 Jan 2023 08:28:13 GMT
etag: W/"ca7-185ddbdf948"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' request.eprotect.vantivprelive.com request.eprotect.vantivcnp.com fonts.gstatic.com use.fontawesome.com www.google.co.uk *.dwin1.com www.google.com *.puzzel.com *.bing.com static.addtoany.com m.addthisedge.com *.addthis.com http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com *.pingdom.net *.qualtrics.com *.cloudfront.net widget.trustpilot.com fp.gdmdigital.com *.linkedin.com *.facebook.com *.typekit.net ajax.googleapis.com analytics.google.com v2.visualwebsiteoptimizer.com useruploads.visualwebsiteoptimizer.com dev.visualwebsiteoptimizer.com livechat.uk2group.com www.googleadservices.com tagmanager.google.com www.googletagmanager.com d2wy8f7a9ursnm.cloudfront.net *.uk2.net code.jquery.com *.steelhousemedia.com *.adroll.com connect.facebook.net platform.twitter.com apis.google.com tracking.websitealive.com www.gstatic.com https://www.google-analytics.com secure.leadforensics.com *.adnxs.com https://optimize.google.com; default-src 'self' data: *.puzzel.com *.uk2.net; img-src 'self' 'unsafe-inline' googletagmanager.com canarytokens.com *.uk2.net data: *.typekit.net *.gstatic.com *.bing.com secure.gravatar.com *.pingdom.net v2.visualwebsiteoptimizer.com placehold.it useruploads.visualwebsiteoptimizer.com syndication.twitter.com https://script.hotjar.com http://script.hotjar.com dev.visualwebsiteoptimizer.com livechat.uk2group.com googleads.g.doubleclick.net www.googleadservices.com *.steelhousemedia.com chart.googleapis.com widget.trustpilot.com notify.bugsnag.com stats.g.doubleclick.net www.google.com www.google.co.uk https://www.google-analytics.com 55b558c7-resources.bk-partnersasia.com csi.gstatic.com www.facebook.com images.websitealive.com tracking.websitealive.com https://optimize.google.com; style-src 'self' 'unsafe-inline' *.uk2.net www.google.co.uk *.puzzel.com *.pingdom.net https://use.fontawesome.com maxcdn.bootstrapcdn.com *.steelhousemedia.com fonts.gstatic.com www.google.com tagmanager.google.com dev.visualwebsiteoptimizer.com livechat.uk2group.com  tracking.websitealive.com widget.trustpilot.com fonts.googleapis.com https://optimize.google.com https://fonts.googleapis.com; frame-src 'self' *.uk2.net cdn.forms-content.sg-form.com static.addtoany.com https://vars.hotjar.com *.twitter.com *.addthis.com www.google.co.uk www.google.com *.steelhousemedia.com player.vimeo.com a5.websitealive.com www.youtube.com widget.trustpilot.com tracking.websitealive.com apis.google.com accounts.google.com platform.twitter.com staticxx.facebook.com www.facebook.com dev.visualwebsiteoptimizer.com livechat.uk2group.com https://optimize.google.com; object-src 'none'; font-src 'self' *.uk2.net data: http://script.hotjar.com https://script.hotjar.com fonts.gstatic.com use.typekit.net *.puzzel.com https://use.fontawesome.com maxcdn.bootstrapcdn.com fonts.googleapis.com; connect-src 'self' *.paypal.com *.io.thehut.local mw-uk2-uat.thehut.net mw.thghosting.com static.addtoany.com googleadservices.com stats.g.doubleclick.net *.puzzel.com *.pingdom.net widget.trustpilot.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io wss://*.hotjar.com *.twitter.com *.uk2.net *.addthis.com dev.visualwebsiteoptimizer.com livechat.uk2group.com mw-uk2-uat.thehut.net mw.thghosting.com fonts.googleapis.com https://www.google-analytics.com www.gstatic.com connect.facebook.net bat.bing.com *.sentry.io;
strict-transport-security: max-age=63072000; includeSubDomains
X-Firefox-Spdy: h2