r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 24 Jan 2023 19:17:43 GMT
Date: Tue, 24 Jan 2023 18:39:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ca2f0428f350e4077589b174eb80c28
47c0ef1e14e5d6521ec66a50d0fa1caf33385361
f4ac4e45a02627d8f0a39cc8328add300f0821c80355f725007015c755a4f902
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4AC4E45A02627D8F0A39CC8328ADD300F0821C80355F725007015C755A4F902"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1431
Expires: Tue, 24 Jan 2023 19:02:56 GMT
Date: Tue, 24 Jan 2023 18:39:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11203
Expires: Tue, 24 Jan 2023 21:45:48 GMT
Date: Tue, 24 Jan 2023 18:39:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 24 Jan 2023 18:35:07 GMT
content-type: application/json
age: 238
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2653
Expires: Tue, 24 Jan 2023 19:23:18 GMT
Date: Tue, 24 Jan 2023 18:39:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VSMZ8Nz+ZsI10i6ZwCP8/oz87xL2/Bij3/NywjQErzUsQ1eJkEynsFyLwNVgK6FYGpWG6rxK/oM=
x-amz-request-id: 5KJQV1RSXA2XF66C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 24 Jan 2023 18:19:22 GMT
age: 1183
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 24 Jan 2023 18:39:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www3.gbta.org/e/5572/l-5572-2020-01-13-6dkck2/6qmb92/4912621141?h=_z1R0Gko9V3CpgSZPs7K8h5P40tb5LR9fXktjUeIeZE
301 Moved Permanently 121 B URL HTTP/1.1 www3.gbta.org/e/5572/l-5572-2020-01-13-6dkck2/6qmb92/4912621141?h=_z1R0Gko9V3CpgSZPs7K8h5P40tb5LR9fXktjUeIeZE
IP
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 9c56daf767f3745210ab6456c55268c6
0dce968aad0e2ac308a728d01bebffbe96a9cd61
c65a314db012609a5d1d7d0b1dba31220b181a84370280f845d635297ecddf42
GET /e/5572/l-5572-2020-01-13-6dkck2/6qmb92/4912621141?h=_z1R0Gko9V3CpgSZPs7K8h5P40tb5LR9fXktjUeIeZE HTTP/1.1
Host: www3.gbta.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Tue, 24 Jan 2023 18:39:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 121
Connection: keep-alive
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
location: https://www3.gbta.org/l/5572/2020-01-13/6dkck2
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
cache-control: max-age=63072000
expires: Thu, 23 Jan 2025 18:39:05 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: e8229a0ff18ebffc83a98010d2521dd5
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 24 Jan 2023 18:17:31 GMT
age: 1294
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www3.gbta.org/l/5572/2020-01-13/6dkck2
302 Found 166 B URL HTTP/1.1 www3.gbta.org/l/5572/2020-01-13/6dkck2
IP
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 711fe6d0aba86c4a9fdbf14b070d54b2
0a5cb1acf4ef1192ed195bbac8618a1020222eb2
2334dc2e1d7bca6d7dfcd660b91335465f60efd1c3af20d4cf2e80a782756c1a
GET /l/5572/2020-01-13/6dkck2 HTTP/1.1
Host: www3.gbta.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Tue, 24 Jan 2023 18:39:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 166
Connection: keep-alive
location: https://www.gbta.org/join-gbta?utm_source=daily+news+brief&utm_medium=email&utm_content=join+gbta&utm_campaign=membershipa
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
cache-control: no-store
expires: Tue, 24 Jan 2023 18:29:05 GMT
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
visitor_id5572=2178691219; expires=Fri, 21-Jan-2033 18:39:05 GMT; Max-Age=315360000; path=/; secure; SameSite=None
visitor_id5572-hash=d3cf8005b53c0faddeb06c4fb5b966123067e0a9022856834611a8364523289fea3c84ef04c7b5e96387d0d41bfe6aeb3a7345f1; expires=Fri, 21-Jan-2033 18:39:05 GMT; Max-Age=315360000; path=/; secure; SameSite=None
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: e8229a0ff18ebffc83a98010d2521dd5
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8b03ad97d7e18c3069f9aa664ca2c078
c8adaf738ab5887bc4848ad90360d69494f30b44
319f0b2b8e394e9e40938f58cd1ab5962ed557723fb58914bb71fd4a5aaa443a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "319F0B2B8E394E9E40938F58CD1AB5962ED557723FB58914BB71FD4A5AAA443A"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4269
Expires: Tue, 24 Jan 2023 19:50:14 GMT
Date: Tue, 24 Jan 2023 18:39:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash a0016981f79a7a1df58a5c1fbefb7cd5
d3a37f6798941d94312f5d1eb0aa31fe55228cd3
209ecb3765937d0eee4bc85fd639e407f1e68772c9e5bb3dbbab65658d6ebb0c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:05 GMT
Etag: "63cf9fa6-1d7"
Last-Modified: Tue, 24 Jan 2023 17:15:21 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8b03ad97d7e18c3069f9aa664ca2c078
c8adaf738ab5887bc4848ad90360d69494f30b44
319f0b2b8e394e9e40938f58cd1ab5962ed557723fb58914bb71fd4a5aaa443a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "319F0B2B8E394E9E40938F58CD1AB5962ED557723FB58914BB71FD4A5AAA443A"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4268
Expires: Tue, 24 Jan 2023 19:50:14 GMT
Date: Tue, 24 Jan 2023 18:39:06 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BgOeE6CB+RO89lROXcKPUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1+9LtRAa0826UA/sJQ4LtDx5qG4=
ocsp.pki.goog/gts1c3
200 OK 1.5 kB IP
Hash 453ad9442c9453f469abc3f6c7e04c46
08c5aeb6613057a4cc52a5499ad3e100877f362f
94a6a3b8d5abb091bf643851a5bb1ed3b50e23a92c9581e4d739ebba8b122d66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 8.4 kB IP
ASN #20940 Akamai International B.V.
Hash 5db75a030111c855cb04ba1909df2686
d7d7366cd791964a2666bfe19e28f0c35339bca7
2ceb21ed0443e53cfd1bb4e535747c8eba42146b5a23b142cd5fd3e0afcb3528
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A6152452C29E7CA75BFF347FB617B80EACC91F54ED43E0A866115D6BE92C5BA"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9361
Expires: Tue, 24 Jan 2023 21:15:07 GMT
Date: Tue, 24 Jan 2023 18:39:06 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-MZZXGFT
200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MZZXGFT
IP
File type ASCII text, with very long lines (30590), with no line terminators
Hash c3d81002f154470540a1fd24de794abd
7c6bcee370a534909e5d1238fd21e1dd792474e7
71df0317af7b1fdd96976c86df016b7884d3f8cd5d74146f59032f76cad47d39
GET /gtm.js?id=GTM-MZZXGFT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 24 Jan 2023 18:39:06 GMT
expires: Tue, 24 Jan 2023 18:39:06 GMT
cache-control: private, max-age=900
last-modified: Tue, 24 Jan 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75295
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f136e9bdce8b778967f31c138c730bf6
032c6b734540fe786b259ba0c700622b88d768a2
ec9e91a632a1ee89dfd038cbe9700ed8c01e146846433284e81fad0ff2a75192
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.omappapi.com/v2/embed/42566/fajs5tl2rquaisl3lyjg
404 Not Found 126 B URL HTTP/2 api.omappapi.com/v2/embed/42566/fajs5tl2rquaisl3lyjg
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 3a2eb25e1414a0a6b62c9d31fa135182
5c241ea5cc0c9d8032257b7becd27a99d749e34d
fb52c6a4691c4c183a50921b788be2bd1b704e18e7603c31ee103106a6c1a190
GET /v2/embed/42566/fajs5tl2rquaisl3lyjg HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: application/json
content-length: 126
date: Tue, 24 Jan 2023 18:39:07 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 24 Jan 2023 18:39:26 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
server: Pagely Gateway/1.5.1
x-cache: Error from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R5UNElvR4N7UrTn35Qz5Cvng0bCKL2n7WX_waL5oAsRxoUftU7lKEg==
X-Firefox-Spdy: h2
api.omappapi.com/v1/optin/42566/819310
200 OK 2 B URL HTTP/2 api.omappapi.com/v1/optin/42566/819310
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /v1/optin/42566/819310 HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 2
date: Tue, 24 Jan 2023 18:39:07 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 24 Jan 2023 18:13:42 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
etag: "b91e5dc54e033e761837b7b846da520f"
x-optinmonster-campaign: gnhshbsizgeda8w1zxqm
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cHFJ2w14FnSGshxEolYZZLpXHE6ZiyiYuud2DDcuVYLpEG1oG9wGbQ==
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/42566/tuhkbvec2qelpbfhz6sm
404 Not Found 10 kB URL HTTP/2 api.omappapi.com/v2/embed/42566/tuhkbvec2qelpbfhz6sm
IP
Hash 9c059551b9df4876ad7f8bf1e3530923
e9b8a5feab66ccd4b41f13cf70800faabcb10469
083027b3e654559efa32b1935034b1a54e1166914a31cd6dcb495d931c135cef
GET /v2/embed/42566/tuhkbvec2qelpbfhz6sm HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: application/json
content-length: 126
date: Tue, 24 Jan 2023 18:39:07 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 24 Jan 2023 18:39:07 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
server: Pagely Gateway/1.5.1
x-cache: Error from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: daZaZdyGf7I_Sgc84dODPvbVAur9XAYt9wVgztGFdWRb3aMgZIleVA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1fa3e6844001c2e2a2baf0ce865faff2
d385fd59facb28d2d76f7b992541d60f3d6614f1
ee048272098d2b17110805a38091158ec5fdf1ab15ddb26f347f4f45ae7de002
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE048272098D2B17110805A38091158EC5FDF1AB15DDB26F347F4F45AE7DE002"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13509
Expires: Tue, 24 Jan 2023 22:24:16 GMT
Date: Tue, 24 Jan 2023 18:39:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4954
Expires: Tue, 24 Jan 2023 20:01:41 GMT
Date: Tue, 24 Jan 2023 18:39:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4954
Expires: Tue, 24 Jan 2023 20:01:41 GMT
Date: Tue, 24 Jan 2023 18:39:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4954
Expires: Tue, 24 Jan 2023 20:01:41 GMT
Date: Tue, 24 Jan 2023 18:39:07 GMT
Connection: keep-alive
api.omappapi.com/v2/embed/42566/ged3xkznsibvvwa5wcxt
200 OK 9.7 kB URL HTTP/2 api.omappapi.com/v2/embed/42566/ged3xkznsibvvwa5wcxt
IP
Hash 2cf4c96365dbec3b46d5cd17cf5e4c15
4724ad652e0fa15281d7c0c616ef9f032ad1db68
c0c52656d505de95ca7fd30403fc767eea7cebcdfd497619617bfa4442922c1e
GET /v2/embed/42566/ged3xkznsibvvwa5wcxt HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Tue, 24 Jan 2023 18:39:07 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 24 Jan 2023 18:13:42 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Tue, 16 Mar 2021 19:16:13 GMT
etag: W/"b05fed2e91086f7096b817747c207e19"
x-optinmonster-campaign: ged3xkznsibvvwa5wcxt
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
content-encoding: gzip
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O0w-Gs7PYWagByp5xp3_b0ZOPHwLCkpRfr5C62wqCLgaQx3N65_PsA==
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d59b0db3cc1f31f9154d32804a8e3940
498c310e0f4a84c1350bae55aec0d2a0192f8dda
14a2b4e9763a62478015d8f61bf9e44eb67dfe08a58cc94dc836dc8ff3f1b6cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7014
x-amzn-requestid: 689ad8b2-4ec8-4f61-a31e-7813c9143f9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyFHmEIAMFsHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-7ce5fef1456ecc73690eff07;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t-84fZv6Btjp5l37tn35lW8fY-jNChCVD6qeKV23KtUwnBSphyRkOw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:24:16 GMT
age: 33291
etag: "498c310e0f4a84c1350bae55aec0d2a0192f8dda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 16d9c0855b43a6c2351cb450187948e2
7208e2e4beb739ae9aded4a207d48cb3572fad5f
92b0423b09aa653ec7326d0aa05dbe137ba452ef21f118c7eb6499a8ccecc8fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12907
x-amzn-requestid: c9f9a619-f0e1-4bc4-af2a-796b16aa1250
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNzFqF-lIAMFXIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefef0-625e4bab03baa979605f13f8;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: riKsmnzvLP5xapNSozaa5W4P6--p4xU5bkS4Ir7jln-P_o_QhMBBxQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:04:30 GMT
age: 74077
etag: "7208e2e4beb739ae9aded4a207d48cb3572fad5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 538f5b944f86cfc1b68f06187558841b
5b5619ecb739f2605b0c77f3e6608249399cb77c
b5e459d4af69cc97c4aaf810654f3d583670e470c82d12a5e8f59c97c97cda11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5557
x-amzn-requestid: 8573b326-0255-45d0-8e93-eaf4bc0d420f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNzFUHThIAMFoBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefeee-16c3abdd257b834525087045;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gLwwBXOZltQSV22vOc-g5kYEm2BBHp_PQLKeeRsiYcMQAMh7NmPKZQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:04:50 GMT
age: 74057
etag: "5b5619ecb739f2605b0c77f3e6608249399cb77c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg
200 OK 32 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg
IP
Hash 03ef756440d09cf52e9cf378af7e2b11
ddc004404d047c7f4d4e885787c2807e19196f9f
0b1835a64132e36d382c1d787614df301b7ae231c0321b63a1579b643f7d9668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12102
x-amzn-requestid: 54ba881d-c54b-49fa-a5b3-20b8d80f2a35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNyrNG1AIAMFxTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe47-1acbf1c34a4dbfdd506d3383;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHA4jmrQvf2RWyPB4RRjQNr_zvaDR07EMo2oHUT12GAE9QbTP3umnA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 22:04:53 GMT
age: 74054
etag: "6aae9d763dec58740cdfbfe46f6c69986b81414d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.feathr.co/js/boomerang.min.js
200 OK 61 kB URL HTTP/2 cdn.feathr.co/js/boomerang.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 8884a26d98d1fec60fda20474674387d
9ae774f10d4baa4443862e2babc30f99311b193d
62151347559fd385cf468fdd179a2db359043a5c25f5bfa131cc570cbcce1176
GET /js/boomerang.min.js HTTP/1.1
Host: cdn.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: text/javascript; charset=utf-8
x-amz-id-2: CloyzBJZVpVxqm+Kc3hOcFJjXMw4dLxYzi0RQSPUL9Wo8hcjdSSH39e2yDMnbnQ790lZQblQ4I4=
x-amz-request-id: EYSVCAAWW1HD35B2
last-modified: Wed, 07 Dec 2022 16:15:56 GMT
x-amz-version-id: Zr93uu74l0PMqqqVrsHYWd9wSbolPgQw
etag: W/"51d5b76c27d7ab6f3bb2e545bf73b2bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yvsT%2B98thQJrbLg0ohdj9K9fEMpvMubv9mwe8l1il4hxiJOjuv3m07kLoccy%2FneFQIcb%2F15x7IwNy2KrH4h1BMZ5CUSOb0kJSI6MfXToKOepaxDWEFpkoW05IzSqKAqh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78eae3d6ec2cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash fa823fec46576579422268a69cfd57af
b34c42836baf0fb23d4b30535dcd69ff176606d7
9fef5d976cb26e2b212851afae1d8126b496d43deacc83b44fb5a8562df07179
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157528
Date: Tue, 24 Jan 2023 18:39:07 GMT
Etag: "63cfd39f-1d7"
Expires: Thu, 26 Jan 2023 14:24:35 GMT
Last-Modified: Tue, 24 Jan 2023 12:48:31 GMT
Server: ECS (dcb/7F13)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TW9uYvSfVE2IqBDW1IVzgIjbN0pTxpQyK7yZ8J88VRD7XyHNbaRbfA==
Age: 5765
a.omappapi.com/app/js/34.01aeaad3.min.js
200 OK 3.1 kB URL HTTP/2 a.omappapi.com/app/js/34.01aeaad3.min.js
IP
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (7795)
Hash 6ae695e3527f89dbabbd4dc3fdd128b5
f79a715c647374da4f942d4f4a04218faea50119
76f3f7b9fd824866ede53ff39f4fa571c2eda7598d1ecad265efdfaf4b343667
GET /app/js/34.01aeaad3.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f971-203b"
last-modified: Wed, 14 Dec 2022 16:27:29 GMT
cdn-storageserver: DE-167
cdn-requestpullsuccess: True
cdn-fileserver: 336
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: da3b5a0c54cf5d28ff2aa897f4a8d7ef
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 38a39ba1dd7697f335c3d75557f782d6
cc7c97455f7784804750c2a42d9ff81e4d932efe
49371a76ea7c7a2e5a9459c746bfb53876bce7b0080e4629afbc708fe3398fb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49371A76EA7C7A2E5A9459C746BFB53876BCE7B0080E4629AFBC708FE3398FB0"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17204
Expires: Tue, 24 Jan 2023 23:25:51 GMT
Date: Tue, 24 Jan 2023 18:39:07 GMT
Connection: keep-alive
marco.feathr.co/v1/refresh
200 OK 43 B URL HTTP/2 marco.feathr.co/v1/refresh
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /v1/refresh HTTP/1.1
Host: marco.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Tue, 24 Jan 2023 18:39:07 GMT
x-amzn-requestid: ca3bacfc-ac8f-492e-bf87-ba4c9eb6a12a
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key
set-cookie: f_id=63d025cb5fb25a00088e5d6d; Domain=.feathr.co; Path=/; Expires=Wed, 24 Jan 2024 18:39:07 GMT; SameSite=None; Secure; HttpOnly
x-amz-apigw-id: fQrX4EuLIAMFV-w=
access-control-allow-methods: *
x-amzn-trace-id: Root=1-63d025cb-5e0a06b355ef01126e8ff00f;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F2q-ugKEhZQP6ih5UOfNqbUJwhJO9osrkSsza-IjZkRghshzP049Xw==
X-Firefox-Spdy: h2
polo.feathr.co/v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations
200 OK 42 B URL HTTP/2 polo.feathr.co/v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations
IP
File type JSON data\012- , ASCII text
Hash 51355c084bf4b6f7005b45284094c9f7
dab96a9edc6128ebcb3020c72a5984ab4dbec172
f38f95fa71cd52978334fe8692f0d228c850570d694afb0e461a16732e78c031
GET /v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/json
content-length: 42
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
a.omappapi.com/app/js/5.c7ff1c6f.min.js
200 OK 15 kB URL HTTP/2 a.omappapi.com/app/js/5.c7ff1c6f.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (16062)
Hash 643c52db0ff9f03ec61dae056aacc0c0
b5cfd0816b30b59df1e41106ce661ccef283d4a4
31d4e8948a09aefafd72ceccdae2d2b62d0e5e947313715eceb9f95c916ade65
GET /app/js/5.c7ff1c6f.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f974-3efd"
last-modified: Wed, 14 Dec 2022 16:27:32 GMT
cdn-storageserver: DE-199
cdn-requestpullsuccess: True
cdn-fileserver: 420
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/10/2023 19:35:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 274837f6028d31c81124fa339bf661d2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=79684
date: Tue, 24 Jan 2023 18:39:08 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6395
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Last-Modified: Tue, 24 Jan 2023 16:52:33 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d49058d310f4af23788960ce233b8c82
dc5535fd32d7cbcd66eb12d44af2cdb15e60d438
5371cbf7ed4d0aadaa3b1cfc1f01cebcdceb87051e70784f21ef73d07c2393db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.omappapi.com/app/js/20.154bdfc8.min.js
200 OK 32 kB URL HTTP/2 a.omappapi.com/app/js/20.154bdfc8.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (3750)
Hash 5ca298a4cee032dd0732bfddfd531783
eeb70b9f69e19c151215839b85e6d646ac76444e
3a9de77a10e7568412d9dcf045ab0f66d3cc4f139c3b1ed7e69c95a42dff51a8
GET /app/js/20.154bdfc8.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f973-ee1"
last-modified: Wed, 14 Dec 2022 16:27:31 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 399
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 35d9a6e3c08f7c09b3a215cd7cf536b4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0AF40E9E20694027A16205F5B18C2C2B Ref B: OSL30EDGE0208 Ref C: 2023-01-24T18:39:08Z
date: Tue, 24 Jan 2023 18:39:08 GMT
X-Firefox-Spdy: h2
a.omappapi.com/app/js/webfont/1.5.18/webfont.js
200 OK 42 kB URL HTTP/2 a.omappapi.com/app/js/webfont/1.5.18/webfont.js
IP
ASN #34989 ServeTheWorld AS
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (2945), with no line terminators
Hash 45379740a7cfc07cfdaa4d3957d88dfc
a696561fb6ced5fbb0cb444b038c41cf9b5508e4
a1ab13f3f4a958aab2d875204e776c9ef68c7d381c28e94d466b179801433e3b
GET /app/js/webfont/1.5.18/webfont.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"62ed37ae-40cb"
last-modified: Fri, 05 Aug 2022 15:30:54 GMT
cdn-storageserver: DE-168
cdn-requestpullsuccess: True
cdn-fileserver: 419
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 69e616ecc39b748c541dabcb675c004d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP
File type ASCII text, with very long lines (39375)
Hash bc8c2313a9bbc7dfbf05b5832cbfbb8e
422be1d8edaeb3f5b39cc4b0a63d50b86e97fbc5
8bb61e3dc211900677b339615843d3d998203458cd39cabe7de5def9cf1980c8
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27774
date: Tue, 24 Jan 2023 18:39:08 GMT
expires: Tue, 24 Jan 2023 18:39:08 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1461 / 339 of 1000 / last-modified: 1674562265"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a.omappapi.com/app/js/28.37593e59.min.js
200 OK 18 kB URL HTTP/2 a.omappapi.com/app/js/28.37593e59.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (5925)
Hash 52271ec2426c5d126764a25a9f4434f6
6ed7deb5e9710f0619a1535186bbedbfff3f82f6
16bc5d5244153627c7ae6349c25f9e4a02bb92f07a825fa6ae67eb7a2b4f3f4a
GET /app/js/28.37593e59.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f970-1761"
last-modified: Wed, 14 Dec 2022 16:27:28 GMT
cdn-storageserver: DE-167
cdn-requestpullsuccess: True
cdn-fileserver: 335
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a7e812f8e183ed9a0886a56171cbb76e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 47d71bf163265666c21e2410fb568043
54a4b0f241af261f878967ce058f5885be476cc4
8b7ce4c8269941cf55ca12415b1abfd7d4ae7bf5823657f3afe5e8dd34bed80b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash f808fda31f83240363aaca5b085407d5
4be926a79750101591ad633efa92486b47639e6c
e0336ef9a04ed72e9918dc40d00bb13fbb3b3f6f9122932f300d838ee733e499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6395
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Last-Modified: Tue, 24 Jan 2023 16:52:33 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
a.omappapi.com/app/js/11.a7e44c7b.min.js
200 OK 2.3 kB URL HTTP/2 a.omappapi.com/app/js/11.a7e44c7b.min.js
IP
ASN #34989 ServeTheWorld AS
Hash c885a042194d54496f5f5442a567eec2
9330acd728cb8ec9870d0bf635dea8a56025f2bd
e6308fc55ac44a38526016098b03a239723c93824356a3f1b760cc9ccfe3ae64
GET /app/js/11.a7e44c7b.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f972-7cc"
last-modified: Wed, 14 Dec 2022 16:27:30 GMT
cdn-storageserver: DE-199
cdn-requestpullsuccess: True
cdn-fileserver: 336
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4624344d6fb7d9f220ecfcbf75bd5304
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d49058d310f4af23788960ce233b8c82
dc5535fd32d7cbcd66eb12d44af2cdb15e60d438
5371cbf7ed4d0aadaa3b1cfc1f01cebcdceb87051e70784f21ef73d07c2393db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4ec3b5ebec8f98b7435df060984d7ca6
dedffe21033e532f09b5c5e89e76db0853f91b0a
01e21ddc29765a26a6c7e48c1d30bd0c5f6cd3d40ad00e1b67deacc827d341e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 312 B IP
Hash 4289757a5759ed83e9704bc9050994a5
642281cbf29172ecf809b4fd4a27510aa0e42412
2f903a29dbbcd3c2efb6e2f216b004a9e1ae55ec31d13125469d7ff62eb43914
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4699
Cache-Control: max-age=153233
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Etag: "63cfc702-138"
Expires: Thu, 26 Jan 2023 13:13:01 GMT
Last-Modified: Tue, 24 Jan 2023 11:54:42 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 312
t.co/i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=210e18df-62a3-4be2-9b06-0bffaa61e2fe; Max-Age=63072000; Expires=Thu, 23 Jan 2025 18:39:08 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d458e3c3b2391885
strict-transport-security: max-age=0
x-response-time: 110
x-connection-hash: 73ec9b2754bf63a975a3c4c16135cc939d975b626ed5ba4e6374fa04d5a8e3aa
X-Firefox-Spdy: h2
a.omappapi.com/app/js/16.ee4b7ea4.min.js
200 OK 569 B URL HTTP/2 a.omappapi.com/app/js/16.ee4b7ea4.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (794)
Hash 9af4c54cbe997338f835c4fab7bf0454
05f4ee0e2ea238ebae848d4ad82af89e1efe38ff
5a8db044e5e5a6d6e52ca319f711a47232647c09e02252fb72805af44348469f
GET /app/js/16.ee4b7ea4.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f96e-357"
last-modified: Wed, 14 Dec 2022 16:27:26 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 420
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: edc75e18578c1d353cd6bfe5d0d49972
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/27.ac2a9c16.min.js
200 OK 63 kB URL HTTP/2 a.omappapi.com/app/js/27.ac2a9c16.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1203)
Hash 569239773b5aaad256285b85fa28b59d
3f6f3820d679745f2e01d1177bc1f6a5867e2b0a
7a422b0ec7c3a52c09ec62753f28a292441676442b1802791cb5d8c0d49cabd9
GET /app/js/27.ac2a9c16.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f96c-4f5"
last-modified: Wed, 14 Dec 2022 16:27:24 GMT
cdn-storageserver: DE-51
cdn-requestpullsuccess: True
cdn-fileserver: 325
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a6f68cda690c49679d4e0b74ba36d7f9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/22.3cb73615.min.js
200 OK 795 B URL HTTP/2 a.omappapi.com/app/js/22.3cb73615.min.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1495)
Hash 5c3af250d37be04f334c657c2055ca28
6fd5aac40c5860562480742ea3fb4a5afc87d511
4300dba23deb0e617f649375057c9049dce4412d857a3ae62c8de3a87c95f9a7
GET /app/js/22.3cb73615.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f971-616"
last-modified: Wed, 14 Dec 2022 16:27:29 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 196
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8db41ad04a17c254dc54b27e65d60c15
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 9292ad05c6fcc3748bcc79c3a773784a
cbc8734ea8eb6f10147206973f39f4c8df2adfa2
cdc1635afec3e5f327dd2a236d377797da6b54c271374a9bfdb1bf8ec5020c6e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4352
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Last-Modified: Tue, 24 Jan 2023 17:26:36 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 314
a.omappapi.com/app/js/1.ac125fd8.min.js
200 OK 2.6 kB URL HTTP/2 a.omappapi.com/app/js/1.ac125fd8.min.js
IP
ASN #34989 ServeTheWorld AS
Hash a9c021e1be3b53317889b0f91775bda6
19c951709d8c03d403833decd15944ac49cd8065
36cf375ca4239a8ef705c26112944982aa2efd89a59092123b3ca3756421e780
GET /app/js/1.ac125fd8.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"6399f971-171f"
last-modified: Wed, 14 Dec 2022 16:27:29 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 370
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/03/2023 16:50:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7818bee41466c0ff3ebf8eb2eb4717b8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 9066e666d3fa9b79a1f07dce118a9c7e
305711fe95287ba4768a59de3f37907699cf3676
030d36c7b106a0fb7bdb3b5cb7f826138a7ebe8ec3076100faf9e37abf685ae1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5093
Cache-Control: max-age=156521
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Etag: "63cfd250-117"
Expires: Thu, 26 Jan 2023 14:07:49 GMT
Last-Modified: Tue, 24 Jan 2023 12:42:56 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5b30b8284ca26f40e61117727a67f32e
689fa2f274ffc67f271fc35b2aff2001a3195cba
c0bec212fe30dee99a94e74758cc809fddf2bf2d1a4a346df78df1b6b71ac305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da2c90870cbcc7eb4d247fe66a32be33
ca5d60ea46a8d4b79c594191002c67077000cc87
eec1aeddcbebfd509994a4badb273faec2987c7d043090b612794abef0292a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=861972837&gjid=694232202&_gid=261173580.1674585547&_u=YGBAiEABBAAAAEAAI~&z=800256438
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=861972837&gjid=694232202&_gid=261173580.1674585547&_u=YGBAiEABBAAAAEAAI~&z=800256438
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=861972837&gjid=694232202&_gid=261173580.1674585547&_u=YGBAiEABBAAAAEAAI~&z=800256438 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.gbta.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 24 Jan 2023 18:39:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=325652270&gjid=763345858&_gid=261173580.1674585547&_u=YGDACEABBAAAAGAAI~&z=667499386
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=325652270&gjid=763345858&_gid=261173580.1674585547&_u=YGDACEABBAAAAGAAI~&z=667499386
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-109938092-1&cid=1723603213.1674585547&jid=325652270&gjid=763345858&_gid=261173580.1674585547&_u=YGDACEABBAAAAGAAI~&z=667499386 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.gbta.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 24 Jan 2023 18:39:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 24 Jan 2023 18:39:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1018683182/?random=1674585545662&cv=11&fst=1674583200000&bg=ffffff&guid=ON&async=1>m=2oa1n0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tiba=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2304200527&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 24 Jan 2023 18:39:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 9aed5d4bb464758c546779d1c10e5303
397616d87fc98d5415d91d59c54b1198ccc19851
354f2b13f5e2466c9d041e695595ed107a3bd4321996b515196965d28c64c433
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 28 Jan 2023 15:12:09 GMT
ETag: "397616d87fc98d5415d91d59c54b1198ccc19851"
Last-Modified: Tue, 24 Jan 2023 15:12:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1548
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78eae3dfbe33b51d-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da2c90870cbcc7eb4d247fe66a32be33
ca5d60ea46a8d4b79c594191002c67077000cc87
eec1aeddcbebfd509994a4badb273faec2987c7d043090b612794abef0292a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
match.adsrvr.org/track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63d025cb5fb25a00088e5d6d&gdpr=0
200 OK 4.8 kB URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63d025cb5fb25a00088e5d6d&gdpr=0
IP
Hash bfb100abcd8cfa79c82602aadffe7b18
4c42690d9e9058ab06bd5d9473ffb1f989845fb7
7586c2d6aa203333fa175dbf51f68e0b2a9ee0fce920f300bcde13bea907636d
GET /track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63d025cb5fb25a00088e5d6d&gdpr=0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:08 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F
302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34048%26time%3D1674585546447%26url%3Dhttps%253A%252F%252Fwww.gbta.org%252Fmembership%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQK7znF7Yi5olgAAAYXlE6fZhbK3_060hN9WjB3HbswHNb6wGoSgt39CljvL2cOb2I3Ggm_LTTqf7w; Max-Age=2592000; Expires=Thu, 23 Feb 2023 18:39:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJwFJCIh8RbpgAAAYXlE6fZ87tyojvGTksWtK3iZwZmvGofaUDCCQh88Xs-7WJX-BmWsYCkY6051WkxUJ4vqw; Max-Age=2592000; Expires=Thu, 23 Feb 2023 18:39:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&ea22e8a9-6b4e-49e7-8e21-550ff3976068"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 24-Jan-2024 18:39:08 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2420:u=1:x=1:i=1674585548:t=1674671948:v=2:sig=AQG34tnwnPj9J9VzG2bT1Co_siLgVFRi"; Expires=Wed, 25 Jan 2023 18:39:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzBtTHlmUCy45X8Gos0w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FDAB99DBF6994CEBAB360B1EA7C4DAF5 Ref B: OSL30EDGE0421 Ref C: 2023-01-24T18:39:08Z
date: Tue, 24 Jan 2023 18:39:08 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=c2ed631d-0630-438f-8ce4-24b9e11bce2f&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=221bac6f-335d-4a1c-b8b1-f9dc74bb271a&tw_document_href=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nurxi&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:08 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_d05CaEs2YEAeIJraKZJQpg=="; Max-Age=63072000; Expires=Thu, 23 Jan 2025 18:39:08 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d4c92fdb70198b4a
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 8e7de70a2e23cdff2db0f4fc83e5cf78f24d8cff2f2b50cdb16660f871121794
X-Firefox-Spdy: h2
polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1674585547126
200 OK 198 B URL HTTP/2 polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1674585547126
IP
Hash 6102462f40770942f8502a0e491fcce9
7c9d4e6baf1c559fb2c423ab484f155936cbf51b
7c7508ede8c81f6c5f336aac31e701402f5e63bffd64daaed2bbe555ce2cca2a
GET /v1/analytics/match/script.js?pk=feathr&cb=1674585547126 HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Cookie: f_id=63d025cb5fb25a00088e5d6d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 24 Jan 2023 18:39:08 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: no-cache, max-age=0
etag: W/"63d025cb5fb25a00088e5d6d"
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=948078325286135&ev=PageView&dl=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&rl=&if=false&ts=1674585547199&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674585547198.522564605&it=1674585546528&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=948078325286135&ev=PageView&dl=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&rl=&if=false&ts=1674585547199&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674585547198.522564605&it=1674585546528&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=948078325286135&ev=PageView&dl=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&rl=&if=false&ts=1674585547199&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&fbp=fb.1.1674585547198.522564605&it=1674585546528&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 24 Jan 2023 18:39:08 GMT
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34048%26time%3D1674585546447%26url%3Dhttps%253A%252F%252Fwww.gbta.org%252Fmembership%252F%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34048%26time%3D1674585546447%26url%3Dhttps%253A%252F%252Fwww.gbta.org%252Fmembership%252F%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34048%26time%3D1674585546447%26url%3Dhttps%253A%252F%252Fwww.gbta.org%252Fmembership%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gbta.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&4003d930-aa54-4773-851e-4cf38c7f181f"; Domain=.linkedin.com; Expires=Wed, 24-Jan-2024 18:39:09 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202301241839098aeb680d-ba6f-4de0-8c06-2e1a826a909cAQGdfMnkaGU1cNoGrojCDQTaIB21UEiu"; Domain=.www.linkedin.com; Expires=Wed, 24-Jan-2024 18:39:09 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzQ1ODU1NDk7MjswMjEU/X2BfP56U4P9kJ4IYZ1+5U42xO/BRi9DcHk/V2Vipw==; Domain=.linkedin.com; Expires=Sun, 23 Jul 2023 18:39:09 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2448:u=1:x=1:i=1674585549:t=1674671949:v=2:sig=AQF4TjrduO-66AbR2CcYN_NQhcXT4bqb"; Expires=Wed, 25 Jan 2023 18:39:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzBtTLoVjMY5zqHhtJkQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2C78D034B33F46019D3F04140D966334 Ref B: OSL30EDGE0421 Ref C: 2023-01-24T18:39:08Z
date: Tue, 24 Jan 2023 18:39:08 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34048&time=1674585546447&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gbta.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&9d218ed7-937f-4a95-88c9-9e7ecea070f3"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 24-Jan-2024 18:39:09 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2420:u=1:x=1:i=1674585549:t=1674671949:v=2:sig=AQEckt2rC-pjGkX3O07NnPulKUMU3G_x"; Expires=Wed, 25 Jan 2023 18:39:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzBtTOa1FVdLl8tOeKfw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 87275C54F6C24CF3908431F8F2B9372D Ref B: OSL30EDGE0421 Ref C: 2023-01-24T18:39:09Z
date: Tue, 24 Jan 2023 18:39:08 GMT
content-length: 0
X-Firefox-Spdy: h2
polo.feathr.co/v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations/facebook/pixel.js?pk=feathr
200 OK 0 B URL HTTP/2 polo.feathr.co/v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations/facebook/pixel.js?pk=feathr
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/accounts/5bc8bc0fb504d8479b6d1f35/integrations/facebook/pixel.js?pk=feathr HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Cookie: f_id=63d025cb5fb25a00088e5d6d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 24 Jan 2023 18:39:09 GMT
content-type: text/html; charset=utf-8
content-length: 0
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
s.adroll.com/j/roundtrip.js
200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/roundtrip.js
IP
File type ASCII text, with very long lines (1139)
Hash f2de2d4f832a448bef3cbf8c0bafe1c1
6b88f582a4237d94ab03e800cadf9a1026e53b55
c569da04eae98b2f70a29587c0e37f7abfbc9d793f206f8d8be361b30c769a77
GET /j/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 16:29:54 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: bntwPEMHiM2VGhRpRaGiN3p9n4.eWDa1
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 24 Jan 2023 18:18:49 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"0746318b259b1f107827e097348569d8"
Vary: Accept-Encoding
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Age: 1252
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: r6Z-Okc6exHf3NJ-G_A79ORXMxtMTGaxJ_km5TLxQLjYYK3tOPknaw==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e976495ad18793e0609833110c6fdc69
2891d28e4483b1986f9db7949658e1b44341bc03
a03b256c82ff9e7fd1c597d24141bbbb6b4df31ef7c020c5cd489845e8c5ac8d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154549
Date: Tue, 24 Jan 2023 18:39:09 GMT
Etag: "63cfd39a-1d7"
Expires: Thu, 26 Jan 2023 13:34:58 GMT
Last-Modified: Tue, 24 Jan 2023 12:48:26 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LL-AJWroa_xcv91S18H4sIiVnZIcgRnFI4lFOVPxI2mr2-GKKpXyfg==
Age: 2792
ocsp.digicert.com/
200 OK 471 B IP
Hash 2d341a5cfa9427f5a42a3e9a17098d0d
fd1c517be6e3d1870c9423dbad4cf511678d75b6
6b26a14819f2a7e09daee8d5d43a3a6a2d98914a567ff4082b34c44621be5218
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2458
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 24 Jan 2023 18:39:09 GMT
Last-Modified: Tue, 24 Jan 2023 17:58:11 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
s.adroll.com/j/exp/EPVH75PEUFDQDN2Q3U4ASZ/index.js
302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/EPVH75PEUFDQDN2Q3U4ASZ/index.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/EPVH75PEUFDQDN2Q3U4ASZ/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Tue, 24 Jan 2023 12:38:55 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Age: 21614
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5jN8cAN9PolMAammHJTmV-lzo53sI9hc0aoBkZmuTB7rdOF8uEheMg==
s.adroll.com/j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/index.js
200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/index.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 23 Jan 2023 15:39:12 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 3ofSggsYPEsTWUAneN5lf_uEmSJJWkmO
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 24 Jan 2023 18:28:19 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Age: 3267
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JfEoviKM2FpCR8yqQLd-Sj9f05Mzp5782FpUg2TCfcHo8hh9WzeZEQ==
s.adroll.com/j/exp/index.js
200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gbta.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 00:29:34 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: CiD7z5Qr2ECIL.Zbw84rFXTGVfvZ9kAA
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 24 Jan 2023 01:26:39 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Age: 61951
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I5qWm1h65-RNe9JfAHBhJd8czZ0HONZPGSb1EAK3RixDxMc3V-3h2g==
s.adroll.com/j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/fpconsent.js
302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/fpconsent.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/EPVH75PEUFDQDN2Q3U4ASZ/4T4BZIXOTZB4BARF4TQFNS/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Tue, 24 Jan 2023 04:14:59 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
Age: 51850
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _yWMrwAZSkC0quIHPRm-QdwX16jHeexMUXZw6-KBcxCwdrdJjqqa_g==
s.adroll.com/j/pre/index.js
200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gbta.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 24 Jan 2023 10:27:33 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
Age: 40508
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: suOz91AHUGAGEQFDP9xaR3_xbSFwqhCEwdO1fguK1ZDKp7h36420EA==
wchat.freshchat.com/js/widget.js
200 OK 19 kB URL HTTP/1.1 wchat.freshchat.com/js/widget.js
IP
File type ASCII text, with very long lines (60879), with no line terminators
Hash 4c43db58a00fa48e03016e217c6792e3
dc1dae80fc079e01a674a44f47962ccad48abdbb
c4da6e818eba0c52a4867c40a9378c078052bfa37a45a52bce5ea2002fae7d9c
GET /js/widget.js HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
last-modified: Wed, 11 Jan 2023 09:20:52 GMT
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=900, must-revalidate
served-by: 4082
x-server: 4082
content-encoding: gzip
x-envoy-upstream-service-time: 1
x-trace-id: 00-a48d92346b1b442597bb4eb5f7868cd5-25b7c6f1ca648edd-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: false
x-request-id: 236b389f-137a-4102-a9b5-e5d0ac136df6
pi.pardot.com/pd.js
200 OK 1.9 kB IP
File type ASCII text, with very long lines (5297)
Hash c9f60ff021727eaffcf6d7bcce44cbc7
a62104686e86bf51494fa530bfaec55500e60a37
bd11307ac746bd34bac63885be9e4600e72c7711b370414b206533ebd076ce1b
GET /pd.js HTTP/1.1
Host: pi.pardot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:09 GMT
Content-Type: application/javascript
Content-Length: 1946
Connection: keep-alive
last-modified: Tue, 24 Jan 2023 05:29:44 GMT
etag: "1547-gzip"
accept-ranges: bytes
cache-control: max-age=63072000
expires: Thu, 23 Jan 2025 18:39:09 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: 16b0ab393667a33fe86adedc3141e88c
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 67d40e969bd0dc4f94f98fb6fe46433c
7156eb07eaa050efd9dee1aa6515673625e392b5
fbe63b86355a70434c1cef5e5999e2538578192bd00a7d13294bace412eb8372
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102967
Date: Tue, 24 Jan 2023 18:39:09 GMT
Etag: "63cf0a9a-1d7"
Expires: Wed, 25 Jan 2023 23:15:16 GMT
Last-Modified: Mon, 23 Jan 2023 22:30:50 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4YSjlcVSw5b4FiZWwUQJqdWVeTc0UZtMtzlUoUwxpFcUgQLIuGVuYA==
Age: 2666
wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
200 OK 1.7 kB URL HTTP/1.1 wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2773)
Hash 1672c62eea27d8b236066dbd6deafbd6
7f844b1944e622a2913aa9279ada6fba3f5b74bf
b5b401e7fecc504ba7eab03c4fbbd51f635b299bdfff738326c2f2a98c58d72f
GET /widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc= HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
last-modified: Wed, 11 Jan 2023 09:20:52 GMT
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
served-by: 9886
x-server: 9886
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
content-encoding: gzip
x-envoy-upstream-service-time: 0
x-trace-id: 00-f74ef5a2042f2e28113ad652b0c60999-111c431e4f26c826-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: false
x-request-id: 79d8fd3f-0732-4a0f-b945-ab7706e90035
d.adroll.com/consent/check/EPVH75PEUFDQDN2Q3U4ASZ?pv=3486808551.45187&arrfrr=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&_s=125757d59f990bc0e0c65a0a1537b1e9&_b=2
200 OK 462 B URL HTTP/2 d.adroll.com/consent/check/EPVH75PEUFDQDN2Q3U4ASZ?pv=3486808551.45187&arrfrr=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&_s=125757d59f990bc0e0c65a0a1537b1e9&_b=2
IP
File type ASCII text, with very long lines (462), with no line terminators
Hash 459e0000763c89f59425fd31fe55a394
903b5cc031035a0077dfa010ac92c5c3eea36102
493715d2353ce34ffbaf7d57c3912eba46a27b207d8b6a00e1310191d006fe43
GET /consent/check/EPVH75PEUFDQDN2Q3U4ASZ?pv=3486808551.45187&arrfrr=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&_s=125757d59f990bc0e0c65a0a1537b1e9&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:09 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.0
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/hotline-web.d41d8cd98f00b204e9800998ecf8427e.css
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/hotline-web.d41d8cd98f00b204e9800998ecf8427e.css
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/assets/hotline-web.d41d8cd98f00b204e9800998ecf8427e.css HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
content-length: 0
last-modified: Thu, 01 Dec 2022 12:27:58 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 24 Jan 2023 18:35:19 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4dfBU5exP3cBoWuiSSjp60HVdkMARtFXK26EAs44hVZNG5t_tsEnWw==
age: 234
X-Firefox-Spdy: h2
wchat.freshchat.com/widget/css/widget.css?t=1674585548163
200 OK 1.7 kB URL HTTP/1.1 wchat.freshchat.com/widget/css/widget.css?t=1674585548163
IP
File type ASCII text, with very long lines (8857)
Hash b5e89ee0ad0cccc7ddc1f3cfad9939d0
04751cd854046b72e25e2428b9ec5fd8c3fa09e0
5f797f013b7f7d86962b0b99977a5990fb3a0e193befaf7e935ab005d6f25b38
GET /widget/css/widget.css?t=1674585548163 HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
last-modified: Wed, 11 Jan 2023 09:20:52 GMT
expires: Wed, 24 Jan 2024 18:39:10 GMT
cache-control: max-age=31536000,no-cache, no-store, must-revalidate, pre-check=0, post-check=0,public
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
served-by: 6714
x-server: 6714
content-encoding: gzip
x-envoy-upstream-service-time: 0
x-trace-id: 00-36942f643f3d5014b2af507f67801894-f9c7723cb52fa4d0-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: false
x-request-id: 90c9fa1f-13ea-4655-ae60-1a52792dbe7a
pi.pardot.com/analytics?ver=3&visitor_id=&visitor_id_sign=&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer=
200 OK 2.2 kB URL HTTP/1.1 pi.pardot.com/analytics?ver=3&visitor_id=&visitor_id_sign=&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer=
IP
File type ASCII text, with very long lines (2283)
Hash 4a3c4474dc1b868cd32b0fc481b93c33
5445e13ef442f486622840500cf93b6fdf79273a
60b444a65916c81e87b90c691856d48d30928667e7be890c925245593b7ecba6
GET /analytics?ver=3&visitor_id=&visitor_id_sign=&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer= HTTP/1.1
Host: pi.pardot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:10 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2202
Connection: keep-alive
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pardot-rsp: 0/0/1
strict-transport-security: max-age=31536000; includeSubDomains
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
visitor_id5572=2178691291; expires=Fri, 21-Jan-2033 18:39:10 GMT; Max-Age=315360000; path=/; domain=.pardot.com; secure; SameSite=None
visitor_id5572-hash=ef12e63c0b23e0b642c4e4c716a0d3dc7dc4f5103ca3fbd92409c509c3b412e7b0ecf6ea444d41a9882fc1b3e0b467b60ad6749c; expires=Fri, 21-Jan-2033 18:39:10 GMT; Max-Age=315360000; path=/; domain=.pardot.com; secure; SameSite=None
lpv5572=aHR0cHM6Ly93d3cuZ2J0YS5vcmcvbWVtYmVyc2hpcC8%3D; expires=Tue, 24-Jan-2023 19:09:10 GMT; Max-Age=1800; path=/; secure; SameSite=None
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: 9b06e8e2308c32c7bf9ba8adfb7be2e1
www3.gbta.org/analytics?conly=true&visitor_id=2178691291&visitor_id_sign=ef12e63c0b23e0b642c4e4c716a0d3dc7dc4f5103ca3fbd92409c509c3b412e7b0ecf6ea444d41a9882fc1b3e0b467b60ad6749c&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer=
200 OK 50 B URL HTTP/1.1 www3.gbta.org/analytics?conly=true&visitor_id=2178691291&visitor_id_sign=ef12e63c0b23e0b642c4e4c716a0d3dc7dc4f5103ca3fbd92409c509c3b412e7b0ecf6ea444d41a9882fc1b3e0b467b60ad6749c&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer=
IP
Hash 6b8e0bfbea5feca6911b8e14e1921e9d
ea3e8e6051154a2a83278000909577c7c6e013fa
dcf430710cdd1359115293f45d5023b2a560aef8a2c1e59d578b8b1e10a216d3
GET /analytics?conly=true&visitor_id=2178691291&visitor_id_sign=ef12e63c0b23e0b642c4e4c716a0d3dc7dc4f5103ca3fbd92409c509c3b412e7b0ecf6ea444d41a9882fc1b3e0b467b60ad6749c&pi_opt_in=&campaign_id=75811&account_id=6572&title=Membership%20-%20Global%20Business%20Travel%20Association%20-%20GBTA&url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&referrer= HTTP/1.1
Host: www3.gbta.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gbta.org/membership/
Connection: keep-alive
Cookie: visitor_id5572=2178691219; visitor_id5572-hash=d3cf8005b53c0faddeb06c4fb5b966123067e0a9022856834611a8364523289fea3c84ef04c7b5e96387d0d41bfe6aeb3a7345f1; _gcl_au=1.1.388199569.1674585546; _ga=GA1.2.1723603213.1674585547; _gid=GA1.2.261173580.1674585547; _dc_gtm_UA-109938092-1=1; _gat_UA-109938092-1=1; _uetsid=620566c09c1611ed929bafd3fcf0bb93; _uetvid=620586509c1611ed9ac51f2a821f0380; _fbp=fb.1.1674585547198.522564605
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:10 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 50
Connection: keep-alive
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pardot-rsp: 0/0/1
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
visitor_id5572=2178691291; expires=Fri, 21-Jan-2033 18:39:10 GMT; Max-Age=315360000; path=/; secure; SameSite=None
visitor_id5572-hash=ef12e63c0b23e0b642c4e4c716a0d3dc7dc4f5103ca3fbd92409c509c3b412e7b0ecf6ea444d41a9882fc1b3e0b467b60ad6749c; expires=Fri, 21-Jan-2033 18:39:10 GMT; Max-Age=315360000; path=/; secure; SameSite=None
vary: User-Agent
Server: PardotServer
X-Pardot-Route: 9b06e8e2308c32c7bf9ba8adfb7be2e1
wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/config?domain=aHR0cHM6Ly93d3cuZ2J0YS5vcmc
200 OK 1.3 kB URL HTTP/1.1 wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/config?domain=aHR0cHM6Ly93d3cuZ2J0YS5vcmc
IP
File type JSON data\012- , ASCII text, with very long lines (2860), with no line terminators
Hash 8c319b57f1547f1ba10796bb37cf0a5f
95196097e71e0677ae61856ee3c1df8894366fb1
8a8d37b221dafe95c090abb590fa8bd7e6044105a92238da6fa94e6fd13e8409
GET /app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/config?domain=aHR0cHM6Ly93d3cuZ2J0YS5vcmc HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:10 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
access-control-allow-credentials: true
cache-control: no-store
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-request-id: ede4d7ef-df1c-486c-abe5-3d7ef8ffc7bb
content-encoding: gzip
vary: accept-encoding
x-server: 2601
x-envoy-upstream-service-time: 16
x-trace-id: 00-3f143cd2520da2ba5c80c92277774f7e-c77bc4cc2903339d-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: true
x-ratelimit-total: 3000
x-ratelimit-remaining: 2999
x-ratelimit-used-currentrequest: 1
x-ratelimit-limit: 3000
assetscdn-wchat.freshchat.com/static/assets/notif.da662fefc5060dabf2859ea199198b14.mp3
206 Partial Content 4.3 kB URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/notif.da662fefc5060dabf2859ea199198b14.mp3
IP
File type Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, layer III, v2, 56 kbps, 22.05 kHz, Monaural\012- data
Hash a529450a7cfb4a60dea41ef294fa90dd
50eb9373dfa8c38ec6aebfa6e2a5f4494871aa37
eb2e3f703cf8ee0156a1d625e053c0968b0dfcff62ea4254ddd8ba9fece3ad32
GET /static/assets/notif.da662fefc5060dabf2859ea199198b14.mp3 HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 206 Partial Content
content-type: audio/mpeg
content-length: 4302
last-modified: Thu, 01 Dec 2022 12:27:59 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 24 Jan 2023 18:38:19 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: "a529450a7cfb4a60dea41ef294fa90dd"
vary: Accept-Encoding
content-range: bytes 0-4301/4302
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uWW5sD32nhB6oUPLkguXai5JwA59u6BG2-4iFbAXEl9B94qhebowIg==
age: 73
X-Firefox-Spdy: h2
wchat.freshchat.com/widget/js/co-browsing.js
200 OK 8.0 kB URL HTTP/1.1 wchat.freshchat.com/widget/js/co-browsing.js
IP
File type ASCII text, with very long lines (27109), with no line terminators
Hash 451e59041c9a97c80376792d2b0a3b17
1dde1364568db32996c36b6e479e21233f2d4901
4a22e8436c72556b1b44b1c5e691127b31f7852261afac57dde7a76f8b9d1ab9
GET /widget/js/co-browsing.js HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
last-modified: Wed, 11 Jan 2023 09:20:52 GMT
expires: Wed, 24 Jan 2024 18:39:10 GMT
cache-control: max-age=31536000,no-cache, no-store, must-revalidate, pre-check=0, post-check=0,public
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
served-by: 5323
x-server: 5323
content-encoding: gzip
x-envoy-upstream-service-time: 0
x-trace-id: 00-c53f2c527765efaecdf14cf93861983a-04817bf4c59b5301-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: false
x-request-id: 10a25562-8086-40d6-a6e5-5aa068ae7b98
wchat.freshchat.com/widget/css/cb.css?t=1674585549298
200 OK 639 B URL HTTP/1.1 wchat.freshchat.com/widget/css/cb.css?t=1674585549298
IP
File type ASCII text, with very long lines (1524)
Hash a9f329d058fdd0d77215e146238839e5
805ec101d0f1e8499e7d6228c4ae260e9321459f
0e6588f44780ace88861cf0e21c7d684c1adf891f23348a44bc466bc73409e6a
GET /widget/css/cb.css?t=1674585549298 HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:11 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
last-modified: Wed, 11 Jan 2023 09:20:52 GMT
expires: Wed, 24 Jan 2024 18:39:11 GMT
cache-control: max-age=31536000,no-cache, no-store, must-revalidate, pre-check=0, post-check=0,public
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
served-by: 2601
x-server: 2601
content-encoding: gzip
x-envoy-upstream-service-time: 0
x-trace-id: 00-a34de833af857418048254969284fc74-9a19c0f1f8e59c77-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: false
x-request-id: c1c76425-9e20-4e6a-a3a8-1ec4a05ffc63
wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user
200 OK 63 B URL HTTP/1.1 wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 986b346dcc5bc15f4f28a5878eb3bd54
0576953cc35e7ddfad56bf9e0ca4c35411c62aea
02a00e3ef645e0351f654665d42b03388e6a73e0ab4f853c8904faecf322b229
GET /app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:11 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 63
Connection: keep-alive
server: fwe
access-control-allow-credentials: true
cache-control: no-store
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-request-id: 308beb4d-f60a-47e7-922a-fef0df7fbac9
x-server: 5323
x-envoy-upstream-service-time: 4
x-trace-id: 00-d1cb23486fba8c0067d1bc4a84fa50b1-f8db24e857d5af89-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: true
x-ratelimit-total: 3000
x-ratelimit-remaining: 2998
x-ratelimit-used-currentrequest: 1
x-ratelimit-limit: 3000
wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/widget_info_v2?locales=en-US,en-US&platform=web
200 OK 1.3 kB URL HTTP/1.1 wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/widget_info_v2?locales=en-US,en-US&platform=web
IP
File type JSON data\012- , ASCII text, with very long lines (5560), with no line terminators
Hash 42292519d73a1f15cca2eeeb0daae53c
841c585b893df6fd22175fae76e2256b9d7611a9
a060e1e3b488c41919616aae56f2465242b5d3cbd391f8f9899c6a1eed34d4be
GET /app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/widget_info_v2?locales=en-US,en-US&platform=web HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:11 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
server: fwe
access-control-allow-credentials: true
cache-control: no-store
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-request-id: 8399f161-3e8d-4121-bf23-63a7138245da
content-encoding: gzip
vary: accept-encoding
x-server: 4082
x-status: HIT
x-envoy-upstream-service-time: 1
x-trace-id: 00-e1a1e47cfb7116e553ac07d13325e889-cd0a7ed4b62a8f4a-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: true
x-ratelimit-total: 3000
x-ratelimit-remaining: 2997
x-ratelimit-used-currentrequest: 1
x-ratelimit-limit: 3000
assetscdn-wchat.freshchat.com/static/assets/chunk.628a675083b43474a40b.js
200 OK 137 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.628a675083b43474a40b.js
IP
File type ASCII text, with no line terminators
Hash 09f1bb696676dad184d04bb7b3602926
739603a0d6bffca6c07f93f318200110a18b48fe
49c3013edf1418bbf91a918d399e49717da0543a72c2c7a9e6964063dd94dea8
GET /static/assets/chunk.628a675083b43474a40b.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 137
last-modified: Thu, 01 Dec 2022 12:27:56 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 24 Jan 2023 18:37:56 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: "09f1bb696676dad184d04bb7b3602926"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6DcdDazR_yitJMoPjYRvHDP935UE3d8soJRwsmEa9133PMaH4lXEUw==
age: 76
X-Firefox-Spdy: h2
wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user/ebccb8eb-2719-481e-8a63-31a90858875c/activity
200 OK 17 B URL HTTP/1.1 wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user/ebccb8eb-2719-481e-8a63-31a90858875c/activity
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
PUT /app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/user/ebccb8eb-2719-481e-8a63-31a90858875c/activity HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wchat.freshchat.com
Connection: keep-alive
Referer: https://wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:11 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 17
Connection: keep-alive
server: fwe
access-control-allow-credentials: true
cache-control: no-store
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-request-id: e43c06d7-a6eb-4827-96b5-dd3cef53f2c4
x-server: 2601
x-envoy-upstream-service-time: 6
x-trace-id: 00-ac21b7fe222cecd121f95669383e0db9-da6b2a46a42ba7b7-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: true
x-ratelimit-total: 3000
x-ratelimit-remaining: 2996
x-ratelimit-used-currentrequest: 1
x-ratelimit-limit: 3000
wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/faq/category?platform=web&locales=en-US%2Cen-US&since=&lastLocaleId=
200 OK 212 B URL HTTP/1.1 wchat.freshchat.com/app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/faq/category?platform=web&locales=en-US%2Cen-US&since=&lastLocaleId=
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4da41f96a8e9da323553b6dcac381d81
439f728deb10292fe55bd17952a7a63f781eca7a
df4e84aa289a677aad2c49802132f87089faa91afd17786c7d84756b14de0216
GET /app/services/app/webchat/1a2a1b44-c89f-4737-a40f-e5b103cc5130/faq/category?platform=web&locales=en-US%2Cen-US&since=&lastLocaleId= HTTP/1.1
Host: wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/widget/?token=1a2a1b44-c89f-4737-a40f-e5b103cc5130&referrer=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 24 Jan 2023 18:39:11 GMT
Content-Type: application/json;charset=UTF-8
Content-Length: 212
Connection: keep-alive
server: fwe
access-control-allow-credentials: true
cache-control: no-store
content-security-policy: style-src 'unsafe-inline' *; font-src 'self' * data:; img-src 'self' * data:; connect-src 'self' *; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.freshchat.com https://*.freshworksapi.com; child-src 'self' * blob:; media-src 'self' https://*.freshchat.com; manifest-src 'self' https://*.freshchat.com; default-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-request-id: cdbcacdf-1786-4a53-8627-d67506a67fa2
x-server: 6714
x-envoy-upstream-service-time: 11
x-trace-id: 00-2d4daa073ef590246ebc66db7222cbcc-c34b5b144aae891d-00
nel: { "report_to": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true}
report-to: { "group": "nel-endpoint-freshchat", "max_age": 60, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshchat"}]}
x-fw-ratelimiting-managed: true
x-ratelimit-total: 3000
x-ratelimit-remaining: 2995
x-ratelimit-used-currentrequest: 1
x-ratelimit-limit: 3000
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 700f5744ecf80c5a6dbac198238c4f98
c3938aa4121becc399a7d5b8d87420d8bb6020bc
5671a233c88908ebce318ceda68eb35b9a979d1c2ec08fa6824706f81f025bd3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160491
Date: Tue, 24 Jan 2023 18:39:11 GMT
Etag: "63cfe1d0-1d7"
Expires: Thu, 26 Jan 2023 15:14:02 GMT
Last-Modified: Tue, 24 Jan 2023 13:49:04 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rvrd0-Y3-mfLSuENtlJzXoXm73tVB5clkYNBphHet0g1_JGc4cy22A==
Age: 5098
515809125856636.webpush.freshchat.com/fc_logo.png
200 OK 3.8 kB URL HTTP/2 515809125856636.webpush.freshchat.com/fc_logo.png
IP
File type PNG image data, 117 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash e87df9f10dcf497ae292dc234200465c
da81fbb140e3bd52685c959d6164a1c80236d048
a963621b4341552ca61590aa02e93b70f189e8050a105c32c0197c3c34b2d114
GET /fc_logo.png HTTP/1.1
Host: 515809125856636.webpush.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://515809125856636.webpush.freshchat.com/index.html?ref=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3777
last-modified: Thu, 08 Feb 2018 07:54:41 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 23 Jan 2023 20:23:53 GMT
etag: "e87df9f10dcf497ae292dc234200465c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VxJ-qO_kx7WRewnLhWSiT6iWDJN5A2CBIGnrPT39M4us5_Z55pSNmQ==
age: 80119
X-Firefox-Spdy: h2
fc-use1-00-pics-bkt-00.s3.amazonaws.com/b33a73e0ddd9d9847065255fa15f400776c255de63b3e1431a2ec2e7b29f55bb/f_marketingpicFull/u_c16f45cbfe6eaf583450e8fe31dba8cea12e1960d392d967422ebb21a7450778/img_fp9sm23sha_5bcaec1302877d320e29fe8cb2e66025d3392d4ec095c63a72cab0579ad7dd47.png
200 OK 6.4 kB URL HTTP/1.1 fc-use1-00-pics-bkt-00.s3.amazonaws.com/b33a73e0ddd9d9847065255fa15f400776c255de63b3e1431a2ec2e7b29f55bb/f_marketingpicFull/u_c16f45cbfe6eaf583450e8fe31dba8cea12e1960d392d967422ebb21a7450778/img_fp9sm23sha_5bcaec1302877d320e29fe8cb2e66025d3392d4ec095c63a72cab0579ad7dd47.png
IP
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash efd9c084c877909448eec4a713dd2f12
38e1a922aa560e14bfa8bb0f6c5242dc2dbfc6fb
68226eed2941a98f728b4caaf1316428b34473dfd447d268388072dee95d2f22
GET /b33a73e0ddd9d9847065255fa15f400776c255de63b3e1431a2ec2e7b29f55bb/f_marketingpicFull/u_c16f45cbfe6eaf583450e8fe31dba8cea12e1960d392d967422ebb21a7450778/img_fp9sm23sha_5bcaec1302877d320e29fe8cb2e66025d3392d4ec095c63a72cab0579ad7dd47.png HTTP/1.1
Host: fc-use1-00-pics-bkt-00.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: n5eeSarmMojUivCbb2+v7F4FTzph1JPUtC2dWXD2/WMkzUD8m1NkahPk/bCgvJj89wkk5J/DOTE=
x-amz-request-id: YZNSJZ45Y1ER82CK
Date: Tue, 24 Jan 2023 18:39:12 GMT
Last-Modified: Tue, 19 Jul 2022 19:32:11 GMT
ETag: "efd9c084c877909448eec4a713dd2f12"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
x-amz-version-id: gg8kYitAz4frWWeTnvuogpQLLCr.3xL4
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6399
polo.feathr.co/v1/analytics/crumb?cb=1674585550763&a_id=5bc8bc0fb504d8479b6d1f35&f_id=63d025cb5fb25a00088e5d6d&ses_id=63d025c97523ebf9e2a85d8e&flvr=page_view&loc_url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s_w=1280&s_h=1024&b_w=1280&b_h=939&cust_params=e30=
200 OK 43 B URL HTTP/2 polo.feathr.co/v1/analytics/crumb?cb=1674585550763&a_id=5bc8bc0fb504d8479b6d1f35&f_id=63d025cb5fb25a00088e5d6d&ses_id=63d025c97523ebf9e2a85d8e&flvr=page_view&loc_url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s_w=1280&s_h=1024&b_w=1280&b_h=939&cust_params=e30=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /v1/analytics/crumb?cb=1674585550763&a_id=5bc8bc0fb504d8479b6d1f35&f_id=63d025cb5fb25a00088e5d6d&ses_id=63d025c97523ebf9e2a85d8e&flvr=page_view&loc_url=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s_w=1280&s_h=1024&b_w=1280&b_h=939&cust_params=e30= HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Cookie: f_id=63d025cb5fb25a00088e5d6d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 24 Jan 2023 18:39:12 GMT
content-type: image/gif
content-length: 43
cache-control: max-age=0,no-cache,no-store
set-cookie: f_id=63d025cb5fb25a00088e5d6d; Domain=.feathr.co; Expires=Wed, 24-Jan-2024 18:39:12 GMT; Secure; Path=/; SameSite=None
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.9938837881ee5355d084.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.9938837881ee5355d084.js
IP
GET /static/assets/chunk.9938837881ee5355d084.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 12:27:57 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:35:51 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"daac960ffa002e906acd414b6f246293"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CnStDvsOp6JI-E8Jva-ZB6eEV4hRscTrb7-DoWbtzh4ur-NxKTKzWQ==
age: 200
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.11d90f755164bc5505e0.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.11d90f755164bc5505e0.js
IP
GET /static/assets/chunk.11d90f755164bc5505e0.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 12:27:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:34:58 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"123f4c9f2c2093fb886435e7016642c1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yd3yWHPgQi-AWFFCxRdfK3iM4KjZBuZZfQChz_PkBkDiPIk1dDGuWw==
age: 256
X-Firefox-Spdy: h2
www.gbta.org/gbta.org/membership/
301 Moved Permanently 0 B URL HTTP/2 www.gbta.org/gbta.org/membership/
IP
ASN #209242 Cloudflare London, LLC
GET /gbta.org/membership/ HTTP/1.1
Host: www.gbta.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 24 Jan 2023 18:39:06 GMT
content-type: text/html; charset=UTF-8
location: https://www.gbta.org/membership/
expires: Tue, 24 Jan 2023 19:35:50 GMT
x-redirect-by: WordPress
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: HIT: 17
x-cache-group: normal
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78eae3ce887e0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.js
IP
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"240964319001f2c34f9d5186e5c74374"
last-modified: Wed, 11 Jan 2023 15:06:38 GMT
perma-cache: MISS
x-amz-id-2: EJ3Coxht+rT1uqV1xojPwudScATKuRftQIhTT/AxCT7LErUz8Owa6tqTJfCiFPQeH06hKmMETxQ=
x-amz-request-id: Q3TRAQS3EGX9HXAY
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/11/2023 15:06:46
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: eebb37a7b1aeec7d240524cf054c8a69
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.css
200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.css
IP
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:06 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"63bed0c8-464c"
last-modified: Wed, 11 Jan 2023 15:07:52 GMT
cdn-storageserver: DE-199
cdn-requestpullsuccess: True
cdn-fileserver: 522
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 01/11/2023 15:08:21
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2fe48eef6726240eca9999c065ab6f34
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/vendor.3474f8e0dcdb6126f26894076afa40d6.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/vendor.3474f8e0dcdb6126f26894076afa40d6.js
IP
GET /static/assets/vendor.3474f8e0dcdb6126f26894076afa40d6.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 12:27:59 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:36:29 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"3474f8e0dcdb6126f26894076afa40d6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r1vS6QRVvKIJFxKVF1qnE154WYjxN5stPNmjhqnF2RimJ2P0zV_DZA==
age: 164
X-Firefox-Spdy: h2
a.omappapi.com/app/js/10.df2f61d8.min.js
200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/10.df2f61d8.min.js
IP
ASN #34989 ServeTheWorld AS
GET /app/js/10.df2f61d8.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"e3638f4a747f5f94dbafe4587bc1d751"
last-modified: Wed, 11 Jan 2023 15:06:38 GMT
perma-cache: MISS
x-amz-id-2: 6Z7DmTXs0dCAFXL83apZ92jkL77jD+Zt4RXWaq1KeRcz/D6sUAa9Dpuhu2EHioPTbVCyP52RmGk=
x-amz-request-id: GBA2S833MYB42M7K
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/11/2023 15:06:48
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c376384b120a276a53bc53f0fca3f9a6
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/fd-messaging.f7aa92c28a9721874f65.css
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/fd-messaging.f7aa92c28a9721874f65.css
IP
GET /static/fd-messaging.f7aa92c28a9721874f65.css HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 11 Jan 2023 09:20:57 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:38:31 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"3b6056cac73c7f3370e5d357a04029be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CdzNIpF0nrg5jYAO6UGXAnQy5pwXd3yMfOEcwg8aS_M27g6oq6DPJA==
age: 40
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/42566/bih18piqlosq3m0msw6l
200 OK 0 B URL HTTP/2 api.omappapi.com/v2/embed/42566/bih18piqlosq3m0msw6l
IP
GET /v2/embed/42566/bih18piqlosq3m0msw6l HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Tue, 24 Jan 2023 18:39:07 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 24 Jan 2023 18:15:37 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Tue, 16 Mar 2021 19:33:47 GMT
etag: W/"2ae0e8ae1429d4c5b971ac325f9b7078"
x-optinmonster-campaign: bih18piqlosq3m0msw6l
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: HIT
content-encoding: gzip
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J0XE2bwF695kWLUfmR_6wkeEGN0rXNd9OufBQ-a8UKSR2lbTJyNoNQ==
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/34048/domain/gbta.org/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/34048/domain/gbta.org/token
IP
GET /partner/34048/domain/gbta.org/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Tue, 24 Jan 2023 12:43:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=31140
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oDt9luqwmowlj9cJ-adDI3f8OxxroMn4UFttfDUmd0ANfts2ZSa81Q==
age: 21337
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.bc0c66147ddad26cb5f9.css
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.bc0c66147ddad26cb5f9.css
IP
GET /static/assets/chunk.bc0c66147ddad26cb5f9.css HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 11 Jan 2023 09:20:55 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:36:35 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"3b6056cac73c7f3370e5d357a04029be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OmwBcnDV-jbg-7twEdTv9o3R3NX52Dq_lIl7CPhYBCFNuowTAPA6SA==
age: 156
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.4cee196d7578eb157bf3.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.4cee196d7578eb157bf3.js
IP
GET /static/assets/chunk.4cee196d7578eb157bf3.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 11:40:43 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:38:54 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"3a1322b3affecc740a6ed5d68d796c8d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jBC8jb-SsvWQ83NjzVTOZc4vrZsXaU61wGCSSk3VMmqByB5js-83ww==
age: 19
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.f0e50d864072128887fc.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.f0e50d864072128887fc.js
IP
GET /static/assets/chunk.f0e50d864072128887fc.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 12:27:58 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:35:17 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"1ae4407b7afcc2dc550f4d597659d448"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KRWTuVtWqAArxgTGQc46d1Ev2KTxcp9uIG6EwAQzv6US_3TJPEPrVw==
age: 248
X-Firefox-Spdy: h2
rts-static-prod.freshworksapi.com/us/rts-min.js
200 OK 0 B URL HTTP/2 rts-static-prod.freshworksapi.com/us/rts-min.js
IP
GET /us/rts-min.js HTTP/1.1
Host: rts-static-prod.freshworksapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
last-modified: Thu, 17 Nov 2022 06:29:55 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BHs75.bKXbPkSsEMomQcy9Qw2gVgmqdU
server: AmazonS3
content-encoding: gzip
date: Tue, 24 Jan 2023 18:39:10 GMT
cache-control: no-cache
etag: W/"c4bb02a4c6be31fc499881d3abbbc6be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b-KyGubc-Mu-Vh9MTgPwL-XTkiXfBlCcQW3ciHsk9w6nJZFGF3t75Q==
age: 1
X-Firefox-Spdy: h2
a.optmstr.com/app/js/api.min.js
200 OK 0 B URL HTTP/2 a.optmstr.com/app/js/api.min.js
IP
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.js HTTP/1.1
Host: a.optmstr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:07 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"240964319001f2c34f9d5186e5c74374"
last-modified: Wed, 11 Jan 2023 15:06:38 GMT
perma-cache: MISS
x-amz-id-2: EJ3Coxht+rT1uqV1xojPwudScATKuRftQIhTT/AxCT7LErUz8Owa6tqTJfCiFPQeH06hKmMETxQ=
x-amz-request-id: Q3TRAQS3EGX9HXAY
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/11/2023 15:06:46
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a27c111829a34699a37b37bf037dce44
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 24 Jan 2023 18:39:08 GMT
date: Tue, 24 Jan 2023 18:39:08 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=F6KGOFI4cSw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TWpJNU1ERTJOREEyTlRFd09ERTBOQT09EMzLwJ4GGMzLwJ4G; Domain=.youtube.com; Expires=Sun, 23-Jul-2023 18:39:08 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Su1BGa0AZro; Domain=.youtube.com; Expires=Sun, 23-Jul-2023 18:39:08 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+044; expires=Thu, 23-Jan-2025 18:39:08 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/fd-messaging.d5b07cda7f3786bcdcfc.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/fd-messaging.d5b07cda7f3786bcdcfc.js
IP
GET /static/assets/fd-messaging.d5b07cda7f3786bcdcfc.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 09:20:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:37:51 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"81554e628d8ad3c5386377b4118a9ca0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 463LS22_NZipPa1vHcMEyLx9olZpCEJ43cYbDXjBqBXZgdjgXLCgPg==
age: 82
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/3799.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/3799.js
IP
GET /static/assets/3799.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 12:27:55 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:36:30 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"8180076189d919f05b9c73b7c659821f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i9igZ-c-oxORSM2FBXp9_d-j6ayhWtkt6xV8YVgXEnu-dkx_eE2l1w==
age: 161
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/vendor.d64d219ca4493f67a3970efc52d51c86.css
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/vendor.d64d219ca4493f67a3970efc52d51c86.css
IP
GET /static/assets/vendor.d64d219ca4493f67a3970efc52d51c86.css HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Dec 2022 12:27:59 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:35:23 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"d64d219ca4493f67a3970efc52d51c86"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rpD2dDUTbvuZxCjXJqoPB0Y_LFtTp8wxE3ZXsyanXUdqN3bJss4QXA==
age: 228
X-Firefox-Spdy: h2
settings.luckyorange.net/?u=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s=181436
200 OK 0 B URL HTTP/2 settings.luckyorange.net/?u=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s=181436
IP
GET /?u=https%3A%2F%2Fwww.gbta.org%2Fmembership%2F&s=181436 HTTP/1.1
Host: settings.luckyorange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gbta.org
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 24 Jan 2023 18:39:10 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type,Accept,Origin,User-Agent,DNT,Cache-Control,Keep-Alive,X-Requested-With,If-Modified-Since
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://www.gbta.org
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hzYeSNxfD3G17JVD1W5Om5fOqd%2FB2JIujRbUXw6SLO3ZFw5OQbMdG%2Bb83NUF89exz8c86Fz51hY4EPGT9kuojV1Eqwa1g0w5llhQ10XfEB1DmyZ6gRe403A3215ZRjkDfIeDOLDe%2FiBJKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78eae3df9bc81c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/chunk.ea885ce22996f44406da.js
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/chunk.ea885ce22996f44406da.js
IP
GET /static/assets/chunk.ea885ce22996f44406da.js HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 14 Dec 2022 10:14:45 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:36:04 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"5bedb812ed74deb8b6847fe7db68efcc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1uWTY6MOpvGXKw-KKBc-iMA9H_WjN5bWTP06thhjRiUpQhQsnDf13A==
age: 188
X-Firefox-Spdy: h2
www.gbta.org/join-gbta?utm_source=daily+news+brief&utm_medium=email&utm_content=join+gbta&utm_campaign=membershipa
301 Moved Permanently 0 B URL HTTP/2 www.gbta.org/join-gbta?utm_source=daily+news+brief&utm_medium=email&utm_content=join+gbta&utm_campaign=membershipa
IP
ASN #209242 Cloudflare London, LLC
GET /join-gbta?utm_source=daily+news+brief&utm_medium=email&utm_content=join+gbta&utm_campaign=membershipa HTTP/1.1
Host: www.gbta.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Tue, 24 Jan 2023 18:39:05 GMT
content-type: text/html; charset=UTF-8
location: gbta.org/membership/
expires: Tue, 24 Jan 2023 19:35:50 GMT
x-redirect-by: WordPress
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: HIT: 18
x-cache-group: normal
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78eae3cd3f1c0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assetscdn-wchat.freshchat.com/static/assets/8627.css
200 OK 0 B URL HTTP/2 assetscdn-wchat.freshchat.com/static/assets/8627.css
IP
GET /static/assets/8627.css HTTP/1.1
Host: assetscdn-wchat.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wchat.freshchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Thu, 01 Dec 2022 12:27:55 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 24 Jan 2023 18:37:25 GMT
cache-control: max-age=31536000, no-transform, public
expires: Thu, 11 Jan 2024 09:20:53 GMT
etag: W/"20f054b8b45ccd177447feada77d0895"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nn4YF9hmG7B_CNxapg2a4E85yga9nD9GzToK4qatb8rADLgcVYOraA==
age: 111
X-Firefox-Spdy: h2
515809125856636.webpush.freshchat.com/index.html?ref=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
200 OK 0 B URL HTTP/2 515809125856636.webpush.freshchat.com/index.html?ref=aHR0cHM6Ly93d3cuZ2J0YS5vcmc=
IP
GET /index.html?ref=aHR0cHM6Ly93d3cuZ2J0YS5vcmc= HTTP/1.1
Host: 515809125856636.webpush.freshchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Fri, 25 Oct 2019 06:53:38 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 24 Jan 2023 18:39:12 GMT
etag: W/"4d98f93ebe4eb8cedbbfdb3004920aeb"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e16hJeghcByhQ-1RjD12cdcapigWnX4wQAnD72Rc0wTSFUu-eWWU9g==
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/w.js
200 OK 0 B URL HTTP/2 d10lpsik1i8c69.cloudfront.net/w.js
IP
GET /w.js HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gbta.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 02 Sep 2022 19:59:48 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 24 Jan 2023 17:44:43 GMT
cache-control: max-age=3600
etag: W/"dc0bbcecf2e632d9beb92f4d88b21c2b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BWC1blHtTI39tv-GZHMGLXdM6mcPG7kR9rA9d9xP_C81wJtk6TOoew==
age: 3266
X-Firefox-Spdy: h2
18.208.125.13
93.184.220.29
23.36.76.210
31.13.72.36
34.240.211.162
104.18.20.226