url7595.opvia.co.uk/ls/click?upn=-2Bj-2Bzh41igOQnnD-2B9e2zsP9xdSHKD-2F8XcK9jBgmk0RB7wGxZcXJ9NF32D0FX80tnsLkbFK73ao7eID2xj3F3QAA-3D-3DrhQi_Wj2p3l1TiQK1IfoEiCqPUyp68f55S-2FjeG1XZ1tlWzNi5A-2FSiMRbq4rlv8VhhAc78qrvhu9MoPxBjJLcAQ7hakKnvorUu0saWBI1Riq6fCiCb8f1bIKrauVKC77WsHrS3DqjE-2FpVAl9Tg2gzQBYlt4rM0G3BRXvHgaH5Pa-2BV7VmYQoHRxYncIFhtgg6FIr9CUvIzEk-2FU2t-2Bqgm-2B3DlXrxVIkIcODLjVys8yM99lVKOQgMZl5V2ELu2aa6insXd3K4uIv03AkEgSEhwZG-2F2c2ww7bOEeGpKzHKYbfJ1rBBnBlvH57Kx-2FRB4rGNjcvVgRFodNWi-2B39vqvUG14VnPC-2B1jPvHlpWQYh9vjjGnJcum2dFk6cxlSwHIHvDBCs7Vb0nuwPU82vr21VSuhqTOh08sc-2FdAMcJ4PsPxtsmYz-2BkvunI-3D
167.89.115.56302 Found 62 B URL HTTP/1.1 url7595.opvia.co.uk/ls/click?upn=-2Bj-2Bzh41igOQnnD-2B9e2zsP9xdSHKD-2F8XcK9jBgmk0RB7wGxZcXJ9NF32D0FX80tnsLkbFK73ao7eID2xj3F3QAA-3D-3DrhQi_Wj2p3l1TiQK1IfoEiCqPUyp68f55S-2FjeG1XZ1tlWzNi5A-2FSiMRbq4rlv8VhhAc78qrvhu9MoPxBjJLcAQ7hakKnvorUu0saWBI1Riq6fCiCb8f1bIKrauVKC77WsHrS3DqjE-2FpVAl9Tg2gzQBYlt4rM0G3BRXvHgaH5Pa-2BV7VmYQoHRxYncIFhtgg6FIr9CUvIzEk-2FU2t-2Bqgm-2B3DlXrxVIkIcODLjVys8yM99lVKOQgMZl5V2ELu2aa6insXd3K4uIv03AkEgSEhwZG-2F2c2ww7bOEeGpKzHKYbfJ1rBBnBlvH57Kx-2FRB4rGNjcvVgRFodNWi-2B39vqvUG14VnPC-2B1jPvHlpWQYh9vjjGnJcum2dFk6cxlSwHIHvDBCs7Vb0nuwPU82vr21VSuhqTOh08sc-2FdAMcJ4PsPxtsmYz-2BkvunI-3D
IP 167.89.115.56:0
File type HTML document, ASCII text
Hash 0813f5beb1839a58b34c18295332bfd6
9185de57b9c0c7b4edf468812cc61ed3c2a16bb0
4bd0bd7800263ab3a3aa93eed187a61bd04680f6de2b7cb91d697d26614030f9
Analyzer Verdict Alert fortinet Phishing
GET /ls/click?upn=-2Bj-2Bzh41igOQnnD-2B9e2zsP9xdSHKD-2F8XcK9jBgmk0RB7wGxZcXJ9NF32D0FX80tnsLkbFK73ao7eID2xj3F3QAA-3D-3DrhQi_Wj2p3l1TiQK1IfoEiCqPUyp68f55S-2FjeG1XZ1tlWzNi5A-2FSiMRbq4rlv8VhhAc78qrvhu9MoPxBjJLcAQ7hakKnvorUu0saWBI1Riq6fCiCb8f1bIKrauVKC77WsHrS3DqjE-2FpVAl9Tg2gzQBYlt4rM0G3BRXvHgaH5Pa-2BV7VmYQoHRxYncIFhtgg6FIr9CUvIzEk-2FU2t-2Bqgm-2B3DlXrxVIkIcODLjVys8yM99lVKOQgMZl5V2ELu2aa6insXd3K4uIv03AkEgSEhwZG-2F2c2ww7bOEeGpKzHKYbfJ1rBBnBlvH57Kx-2FRB4rGNjcvVgRFodNWi-2B39vqvUG14VnPC-2B1jPvHlpWQYh9vjjGnJcum2dFk6cxlSwHIHvDBCs7Vb0nuwPU82vr21VSuhqTOh08sc-2FdAMcJ4PsPxtsmYz-2BkvunI-3D HTTP/1.1
Host: url7595.opvia.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 15 Sep 2022 12:51:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 62
Connection: keep-alive
Location: https://calendly.com/will-bates-1/30min
X-Robots-Tag: noindex, nofollow
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 12:10:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 64zfkjBxinPDZl21j5GozV80PyizS8Ic_f--mVg9cQibbsLqUA7fTg==
Age: 2443
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6716f88f982aa553eaf5de31b2629224
97ab757b0a059027ffb04675114e5c55738fccaf
06af9ae9fc72a3aeb4be2b742128a0cb8ea4aff348afe2e4490d3639b3b377d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16554
Expires: Thu, 15 Sep 2022 17:27:02 GMT
Date: Thu, 15 Sep 2022 12:51:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6UkW3eIZY8yt5-dgtgvqr9cwm9oyyR_vn6doR7YOznU6WlxvvScwPw==
age: 29753
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 12:51:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 12:03:22 GMT
Expires: Thu, 15 Sep 2022 12:58:39 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sORr48XQnShkJ-ARfVvtlGmTCQ3xZtKuOL8XCNknlqec6RD3an0TWg==
Age: 2866
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:08 GMT
Last-Modified: Thu, 15 Sep 2022 11:40:10 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5a0890f76de28b917f5f437d663e6fa9
4eb47d1b9b8dce30048faa2200bcbcd5ee5317c3
99fbdd65a167b2fd9e82af4898db202e5edb109a7a36b33414660390c7f9aa65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:09 GMT
Last-Modified: Thu, 15 Sep 2022 11:20:46 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
js.stripe.com/v3
151.101.84.176200 OK 84 kB IP 151.101.84.176:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91073caf3405610d721e77d2bed20038
7b8f0f31abeba0d7d21dd2f2e44fa88cd881b8f7
85299316f0f647c1cc65f06a9c6b08fedbf60f5f90442b75dbdcb7e7ba8be53d
GET /v3 HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 20:13:36 GMT
etag: "56bf9c15f1be934f1f4dd07bb9cad2ae"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 15 Sep 2022 12:51:09 GMT
via: 1.1 varnish
age: 2
x-request-id: f3830d8f-4a50-4858-979d-40e71bed8dec
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
timing-allow-origin: *
content-length: 83882
X-Firefox-Spdy: h2
assets.calendly.com/assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png
172.66.42.216200 OK 22 kB URL HTTP/2 assets.calendly.com/assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png
IP 172.66.42.216:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b1505175dfb013552361a3cce3afb90e
65e195383803a248f4ba065013bd69b7cab41c44
260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a
GET /assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: image/png
content-length: 22254
cf-ray: 74b17dfdee901bfa-OSL
accept-ranges: bytes
age: 15016370
cache-control: public, max-age=31536000
etag: "b1505175dfb013552361a3cce3afb90e"
expires: Fri, 16 Sep 2022 12:51:09 GMT
last-modified: Fri, 25 Mar 2022 15:10:12 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
cdn.segment.io/analytics.js/v1/rfvnxd6wnn/analytics.min.js
54.230.111.79200 OK 76 kB URL HTTP/1.1 cdn.segment.io/analytics.js/v1/rfvnxd6wnn/analytics.min.js
IP 54.230.111.79:0
File type ASCII text, with very long lines (41714)
Hash 49dd9c12d8282b3bd030186fa6326437
7935b29e962b56f972dd29abf32b1b423bdf0a43
ba058d275f63c82be6cf6c21211e9938d3e161315c24c189585de91ac14f1d95
GET /analytics.js/v1/rfvnxd6wnn/analytics.min.js HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 31 Aug 2022 20:07:20 GMT
x-amz-version-id: yX1GWOcPuE_MoJ4wXzODO1KHuBUk9oru
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 15 Sep 2022 12:50:43 GMT
Cache-Control: public, max-age=120
ETag: W/"a90e1d4a1f158c22e4cb80fbe0b4cdeb"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: snzOY23Z4HTG_ZV_BT4gvZjEmi-iU4oslu3CD0TMRRrGlDuT-pnDqQ==
Age: 31
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash ec12a4ed6414d59f440cc6667f54fa56
dc045fd45a736db97db94c22d5b4d3a29aa10ea6
1a4fd42ea4ea00d7762d0a273e6094ac7967db784c736280fe77328025427373
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: 7BKk7WQU1Z9EDMZmf1T6Vg==
last-modified: Wed, 14 Sep 2022 19:30:30 GMT
etag: 0x8DA968795FE8E83
x-ms-request-id: cc4d814a-101e-0024-4d8f-c841a8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6266
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17dfe2a380b39-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ef39aad9aa5e1d69849931ef43d19476
c52a902cded5addce77493e2ec5529acb0008149
da7dd96ef8d6e279cee8b6dad47e0a32f4ab774c1622aa43d3850caf59ec2fda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.recaptcha.net/recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n
142.250.74.131200 OK 621 B URL HTTP/2 www.recaptcha.net/recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n
IP 142.250.74.131:0
File type ASCII text, with very long lines (977), with no line terminators
Hash 6a902f686f1f45613e458de9abe428a1
dfef27efbfde813d3cab86fdb23e1628f5c002ec
f62708ac17a1a92252f6eeeae40d45b8bb1e5b31a550c6432a623c25acfccaa0
GET /recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 15 Sep 2022 12:51:09 GMT
date: Thu, 15 Sep 2022 12:51:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 621
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.147.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.147.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: b2mHc5u2VCf4IG8/MDgPOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: txA2j6UBZ4ev8eTaSiNDezTH+n0=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ef39aad9aa5e1d69849931ef43d19476
c52a902cded5addce77493e2ec5529acb0008149
da7dd96ef8d6e279cee8b6dad47e0a32f4ab774c1622aa43d3850caf59ec2fda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json
104.16.148.64200 OK 1.7 kB URL HTTP/2 cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4645), with no line terminators
Hash dd3b79f45a6bed303cdfc18adf641f83
d70c62113630c38df1b6e3075f5a57899c397dc1
6b4e9c7f479860846487cd8a81d439d809c5ffcd2880c382b810d3860f1f45cb
GET /consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/x-javascript
content-length: 1707
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: 3Tt59Fpr7TA838GK32Qfgw==
last-modified: Tue, 17 May 2022 15:06:54 GMT
etag: 0x8DA3816E0FB52CC
x-ms-request-id: 9b72dfde-c01e-0026-660c-6a4352000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4798
expires: Thu, 15 Sep 2022 16:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17dff6b67b4f7-OSL
X-Firefox-Spdy: h2
cdn.pendo.io/agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js
54.230.111.15200 OK 144 kB URL HTTP/1.1 cdn.pendo.io/agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js
IP 54.230.111.15:0
File type Java source, ASCII text, with very long lines (32049)
Size 144 kB (144497 bytes)
Hash 53d28872db938de8f8882a4779c12724
801bd7cfe6e70b61055f0170163c7eb06915b8b6
5dba964d817757b0d4b9e1d1c2f567f2100dcc218073a6bb5e46d732f7cbfcab
GET /agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js HTTP/1.1
Host: cdn.pendo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 144497
Connection: keep-alive
X-GUploader-UploadID: ADPycduy5VKEI18R1wkIV3sbAcCSU7UyCo79qVmUPBiE1YLPmpYTIKFdG1AunLATB9a1miUA5mI68jH4_4DrioiP9DOayg
Last-Modified: Thu, 08 Sep 2022 20:17:17 GMT
x-goog-generation: 1662668237741205
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 144497
Content-Encoding: gzip
x-goog-hash: crc32c=lxMZNg==, md5=U9KIctuTjej4iCpHecEnJA==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *
Server: UploadServer
Date: Thu, 15 Sep 2022 12:45:32 GMT
Expires: Thu, 15 Sep 2022 12:53:00 GMT
Cache-Control: max-age=450
ETag: "53d28872db938de8f8882a4779c12724"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -E3Vfjovl2zjE8ZiASlDZuv7_OkUeo8WEHQ11drTLH3LAylTsUgX9g==
Age: 339
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 3a87bfd2acee203527bd0311bcc30d9d
ff205c5c6de0c90a4c03409c6adcb1b8f44a052e
b0671b001613e6548f91b5c007eeb86540a8951b90af0c734eaad3d67d7b8282
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 12:51:09 GMT
Last-Modified: Thu, 15 Sep 2022 11:08:01 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3coF827ZFcU601iC-_DdEKY5183mZvZhK5cQHCAAgZ0jyjMajps2aA==
Age: 6188
cdn.cookielaw.org/scripttemplates/6.35.0/otBannerSdk.js
104.16.148.64200 OK 87 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 6c3a79eec4b4e3d743911a822f89b9dd
825b0a196869a4e5c94448fd4295a97b187627a2
ecc79fab45c82bc236b38b2ff002a7daa38e7e3dc32e7deec1f2258b263edc46
GET /scripttemplates/6.35.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/javascript
content-length: 87115
content-encoding: gzip
content-md5: bDp57sS049dDkRqCL4m53Q==
last-modified: Mon, 06 Jun 2022 06:21:06 GMT
etag: 0x8DA4784BD4AE529
x-ms-request-id: 74e8856d-c01e-0004-086f-792d64000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 9766
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e00cd1c0b39-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json
104.16.148.64200 OK 19 kB URL HTTP/2 cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash ffc393730af5aa801ace79567a095e9f
4f998710da3d8df8e3511bb21a6e42f36575df3e
1d2fd128819aedc1c27aeb12dae1ace95985a515642a1b5e2554da3cd335264f
GET /consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/x-javascript
content-length: 19165
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: /8OTcwr1qoAaznlWeglenw==
last-modified: Tue, 17 May 2022 15:07:08 GMT
etag: 0x8DA3816E96C2519
x-ms-request-id: 7ab75c2a-b01e-004f-300d-6a1cfe000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 4798
expires: Thu, 15 Sep 2022 16:51:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e013da4b4f7-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/v2/otPcPanel.json
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/v2/otPcPanel.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (51572)
Hash 9246cb73c01d3b10b1067a8b4e7010a6
5565240d8384405f853a078aa9c436d33748caa0
5aca462cb4e9f0fd04a42f030a23531e9a8f937d0aaa697b25af883e92a94841
GET /scripttemplates/6.35.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/json
content-length: 13040
content-encoding: gzip
content-md5: kkbLc8AdOxCxBnqLTnAQpg==
last-modified: Mon, 06 Jun 2022 06:20:59 GMT
etag: 0x8DA4784B91103B6
x-ms-request-id: e6607447-f01e-016e-6a82-79379a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6857
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e01fe81b4f7-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10856)
Hash cc948eb637569cf77ed166fd88c3725f
1f4a0b0572bec956b6cf690649a2d02b84bb57e2
33dfefa3180070c5a5006930180d07fd4248aa69b6b82d81e246db42ce82bb26
GET /scripttemplates/6.35.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/json
content-length: 2959
content-encoding: gzip
content-md5: zJSOtjdWnPd+0Wb9iMNyXw==
last-modified: Mon, 06 Jun 2022 06:20:56 GMT
etag: 0x8DA4784B7908BBB
x-ms-request-id: 76124876-a01e-0176-5b81-791a0f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6857
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e01ee80b4f7-OSL
X-Firefox-Spdy: h2
cdn.heapanalytics.com/js/heap-3509290134.js
54.230.111.41200 OK 47 kB URL HTTP/2 cdn.heapanalytics.com/js/heap-3509290134.js
IP 54.230.111.41:0
Hash 4fbc0da7170950d4320a433659e94d33
9cc76412ad1acf9637380ce86365fade73306c4f
ba3e1eb18c5069546c7f3f2c3a8d4bc140bccbf42e4160534e80e380ed04e8a6
GET /js/heap-3509290134.js HTTP/1.1
Host: cdn.heapanalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 15 Sep 2022 12:50:39 GMT
server: nginx
etag: W/"1d127-xfGXKaGD/O5U4GVscKF24Q"
cache-control: public, max-age=120
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: K6Loh6YvK9r6luaPvsU0GDoDbYJ6B_iL6OvnusVcNcml-mlkguLOlg==
age: 30
X-Firefox-Spdy: h2
heapanalytics.com/h?a=3509290134&u=3693185352436268&v=3101778127082220&s=7669326404241841&b=web&tv=4.0&z=0&h=%2Fwill-bates-1%2F30min&q=%3Fmonth%3D2022-09&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1663246254383&st=1663246254384
18.211.151.172200 OK 37 B URL HTTP/2 heapanalytics.com/h?a=3509290134&u=3693185352436268&v=3101778127082220&s=7669326404241841&b=web&tv=4.0&z=0&h=%2Fwill-bates-1%2F30min&q=%3Fmonth%3D2022-09&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1663246254383&st=1663246254384
IP 18.211.151.172:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /h?a=3509290134&u=3693185352436268&v=3101778127082220&s=7669326404241841&b=web&tv=4.0&z=0&h=%2Fwill-bates-1%2F30min&q=%3Fmonth%3D2022-09&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1663246254383&st=1663246254384 HTTP/1.1
Host: heapanalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: image/gif
content-length: 37
server: nginx
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
etag: W/"25-PqzQEyMQ6kTK11azeKO8Bw"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
calendly.com/api/booking/event_types/FCD55ZHGHWIRGHQM/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-09-15&range_end=2022-09-30
172.66.42.216200 OK 1.2 kB URL HTTP/2 calendly.com/api/booking/event_types/FCD55ZHGHWIRGHQM/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-09-15&range_end=2022-09-30
IP 172.66.42.216:0
File type JSON data\012- , ASCII text, with very long lines (13832), with no line terminators
Hash 2d9401b7a864fb8bcdfdf5a648aca99d
7bf84748f67d713c679405e1b13c2a04e1d4cf40
b98f23bc3e404ef2b9716fb8a01d6ef5bc2e2c8cf87929df4a0cb007ed669eda
GET /api/booking/event_types/FCD55ZHGHWIRGHQM/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-09-15&range_end=2022-09-30 HTTP/1.1
Host: calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/will-bates-1/30min?month=2022-09
X-CSRF-Token: kBwgL-cOm_THd32hhMtVuB9rqfkrLxvi-PeQnzt42TC5TVk1pGP2ohiK3U5t_zN1yfnZUgx54kKx_-oOaFZVTQ
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _calendly_session=iKUKZREa8enzoauHh6RNPvts%2BewT9J0cPV5Rc%2Ba7ddHAMc8uhnV%2FKGLK7%2F9iQH6BG2kY%2BKa6Z0jDGu2PwA%2FMIEMb0tglqnqInMi2Mxj7KqmrNTiA7RSy%2FtzsiDf1uiBYWLSl36EiFdDMXqJ%2FkkhJYO95QLZoWyini5Q0mH9D4r0T%2Fhf5S8n074g8hDMC7LAQVJdfCP0x%2Ba7NgRaHBk683RdYudC%2FH81ot17IsjvxveetPYXyJ52XbqgKGVJoNN1x3EqZXW%2Fb4Rp5E38Agl2oiXXpEVLOxUBJrMTEVhAKynliXyFLxuswfw0kF%2BmqoSbaChy%2Fhd8Ai%2B9iW07KApLojqaBW1rzMVbgPUClpPwq94qBkc%2Bk2pFbio73LMwVc85Lh3e81yRAd%2F4UDsT5vg%2BCL3DOjcP80Oed9slJOMgls3T1MWThIyNHGJjS9eFV8%2Fxz%2F039mCLFhZP0xWScmXL%2F1wm4IciM%2BsetMGzhdxRHfK9lwFMSlS2MeIxEJ1CKAGFghnQNRAUhGNW5HVBBQA26brumSAeAEwTnUDxgY1Az%2FKyF8mzZ98WLANjXmb5zhcjYPbT2VgcPcg%3D%3D--c4uB67mQNy4%2BBxYn--sTgO3V%2BvycqHxJI0Nvl6Mw%3D%3D; __cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/json; charset=utf-8
cf-ray: 74b17dff4fdf1bfa-OSL
cache-control: max-age=0, private, must-revalidate
etag: W/"5682547e4ec459373c8d18a5cf8256aa"
set-cookie: _calendly_session=wbnAHWCmbGYfa2RWgmqKLYimDEWTszW4ijZcV8My8Jxoeav3YwvUtER8h1Dyfn1cGy6I9albIf4TESFD0SZB4oJ62tS5EA1AFmDElTrziDrpv0fBM9x0iTBXiDUDV9wyybDE9wgjp%2FOjxeGE%2FC4Tok67Sa5hPdeCTgV8nVcy081SS4Z0NZMVWCENhCrjfhKd482PXUCQlY66MOHhxFa9eQZY9uVZvpzF%2F9QJxMFzl0X2LUzcw1Ji%2ButlnDrOd3MbIzcmJOr2ZGc0ZixnDp0US71UQMcJEsqbqu84sPBeboiXAHqlSprcIgO5XEb3rpM4vdZHLGJRenTzSOHZIg31D%2FRM%2Bo8%2B4tPSSzoT5Jlil991D7uElzb8c9e%2FGbl8Q%2FEF0hveTHrWadMH%2Fzei1gA8URyFZ2L53LSs2CeeUW4E6sYAk%2BevcJYLrVkUxQ%2BpUUQxVx0FVLSf8PEg941I74g73dp5qZ2%2FBRDAsRX%2BOeAwXNHKc6XPivQ3%2BJ6wV7uUP%2FJsweoiMFl6mAuS%2BBAY60%2B1ht7PkO3sOORFWq4asMsgCP3ajBEmjXNzPsnbLHl7WqPM9zTXw31y3w%3D%3D--7oK9NkmQqrtLWIxj--AoJY9%2F2P%2B%2BNSolhSb2Rf2A%3D%3D; path=/; expires=Thu, 06 Oct 2022 12:51:09 GMT; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: ALLOWALL
x-request-id: b90c277e9d90b3be9d7fa83ea44ba322
x-runtime: 0.510317
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:23:20 GMT
expires: Wed, 13 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
age: 156470
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.148.64200 OK 24 kB URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.148.64:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (34784)
Hash 097ed9a24990fd0758e66ae79a38714f
af614f50561dc7873dbde37cf4e19ed4e80c92eb
7916eeea6c53adc8b7b101b0314f5b1f1079ebe4f469cf67b57b7ac9f733eb48
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Wed, 14 Sep 2022 19:30:39 GMT
x-ms-request-id: a727758c-f01e-006a-1e8f-c8844d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 11205
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e02bf3e0b39-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
assets.calendly.com/packs/booking/js/locales/en-9a2585827677274756ec.chunk.js
172.66.42.216200 OK 11 kB URL HTTP/2 assets.calendly.com/packs/booking/js/locales/en-9a2585827677274756ec.chunk.js
IP 172.66.42.216:0
File type Unicode text, UTF-8 text, with very long lines (25420), with no line terminators
Hash 5f135ed656ff6dc67351c8dbb2b0723f
570b66308b63e4af1ea7bb2eca5e2c467d9c1e7c
99f8de1e840af38d33c3b55e8d232dedbeba431d4d4c3639814de1ab09388e9e
GET /packs/booking/js/locales/en-9a2585827677274756ec.chunk.js HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/javascript
cf-ray: 74b17dfd6e151bfa-OSL
age: 4740720
cache-control: public, max-age=31536000
etag: W/"a819abd8369530121af9cbf22c8c1e12"
expires: Fri, 16 Sep 2022 12:51:09 GMT
last-modified: Fri, 22 Jul 2022 15:50:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13877
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 12:51:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b4eed58b61d5b83ee76acc95859d7bf
e7b7cfeaa2c704cd6092846cbec314689d0504b3
f99e45e7102d04339cd5c11123d84714b27621e287633a4c18fa38ceb161eb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F99E45E7102D04339CD5C11123D84714B27621E287633A4C18FA38CEB161EB59"
Last-Modified: Thu, 15 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13877
Expires: Thu, 15 Sep 2022 16:42:27 GMT
Date: Thu, 15 Sep 2022 12:51:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:28 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 51942
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a76383eca28732b4f7847139f12a5cb
6c1ed76ca3c29af41ef4031eaea6b9040465517b
5d205ffc5a3177111f640f270fd0204eef790e531f69299d3de075f9387df966
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8010
x-amzn-requestid: 498e0a9a-7fd6-4a08-9111-91020cbebdf0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB59FiWIAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249d9-737b49125f659cb64d1de09a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ByjIeUOe8ws46kVoLkd08LpLIdiWkKJoIFxeXTGaHYB863tOGGlBuQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:39:22 GMT
age: 54708
etag: "6c1ed76ca3c29af41ef4031eaea6b9040465517b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-928701750fd6a9890dc499a3b592c9a9.html
151.101.84.176200 OK 115 B URL HTTP/2 js.stripe.com/v3/m-outer-928701750fd6a9890dc499a3b592c9a9.html
IP 151.101.84.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 91111775fae79e3753de9bbb50b39a20
7d2493a360ff886b0c9a984dd0ea40b195da25c7
e97649155253170a56d1339d65f4e661c2fc2978493bfa979047b32798ba2ca3
GET /v3/m-outer-928701750fd6a9890dc499a3b592c9a9.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 19:41:01 GMT
etag: "928701750fd6a9890dc499a3b592c9a9"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk='; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 15 Sep 2022 12:51:10 GMT
via: 1.1 varnish
age: 61683
x-request-id: 0bce6691-08c1-46ce-949f-d64d199c08ee
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 10988
vary: Accept-Encoding
timing-allow-origin: *
content-length: 115
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 54546
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb7c9c7f4257ab79526157f3ba507d6e
098d000aebd7ba0637fe420b9dfdacd2146af240
74fd95bcffcaf6919e8bca4184978340bef089528f9d184e7d88e1fd4c83288b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6484
x-amzn-requestid: cefd7270-c8ca-4ced-b9bd-52353fbefa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBIIUHOZIAMF9wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316ba35-7d4c4c53090c83ea3fadbf4e;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 03:10:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V0CJvbFSNJT2eHVOeCkdZNStr6eZg3EO0YTNyTUsmiirYMm9gfzBKg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:19 GMT
age: 54531
etag: "098d000aebd7ba0637fe420b9dfdacd2146af240"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0nTpbTo79RT78Sin1pTWaq4pRKWZyqnBkZCT2p66wWoW-A1OScJmIg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:09 GMT
age: 59401
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 6a307dbf-af18-4b40-a2c4-cda4a6e302d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLe84HUzIAMFkUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631adeb8-166dc8b954f4e5b50a0843de;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:35:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qQaQeJRgo5OcpjqbzgyZQCl-pYpvj6P_aoB07WGfV0YXyZqv4AQNCg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:17 GMT
age: 54533
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-0d1954de4571b77af468035f2ec1a3af.js
151.101.84.176200 OK 256 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-0d1954de4571b77af468035f2ec1a3af.js
IP 151.101.84.176:0
File type ASCII text, with very long lines (526), with no line terminators
Hash 81235fac06e9d326aeef8b39a495c8ce
ef91fdb8aefe71c4152a8d5d04a932db00039f49
a1dff1e13da8d931f175c206d6d2bedd4989c3b8f338162b35a18eec08840944
GET /v3/fingerprinted/js/m-outer-0d1954de4571b77af468035f2ec1a3af.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-928701750fd6a9890dc499a3b592c9a9.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 19:41:00 GMT
etag: "d96c709017743c0759cf3853d1806ba5"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Thu, 15 Sep 2022 12:51:10 GMT
via: 1.1 varnish
age: 50
x-request-id: e28dd430-0700-4f54-94ac-e0d29e978133
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 28
vary: Accept-Encoding
timing-allow-origin: *
content-length: 256
X-Firefox-Spdy: h2
m.stripe.network/inner.html
54.230.111.75200 OK 930 B URL HTTP/2 m.stripe.network/inner.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash fc2e029628f163bb59adc6fa5a31161c
0f4547ae510d1bf36e3630d41bdab29d64c03d64
a5f27af9c0c6f37979ebafcac22eb3a613841a3d4e728f4577baf94e64d42f35
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
accept-ranges: bytes
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
date: Thu, 15 Sep 2022 12:49:07 GMT
cache-control: max-age=300, public
etag: "fc2e029628f163bb59adc6fa5a31161c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EKuoarO03LLCbXQXD1j2Hsc_p0YhgVZHQUBo9uDcwFmFU20ajnXxEg==
age: 131
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/JzVxcj15eY0
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/JzVxcj15eY0
IP 142.250.74.3:0
Hash b8c06a366a5c3f252ddbccabd6010bec
d3588373ee6493949d5c2a751a0812fda5ecc880
f865dd3e95841b810e4b71be480cfec876067a1f46228d163d8d999e2dcd2c45
POST /s/gts1d4/JzVxcj15eY0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.stripe.network/out-4.5.42.js
54.230.111.75200 OK 15 kB URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 54.230.111.75:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 79d19c9047ac1af95778e991e910ba07
f17c478004d92fcfc30e2e69cf9455b44ebc3596
ff909b70654001f048b5f7ae750657056d7deb6eb5dba0d7eecec76dcdc5d9a1
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-encoding: br
date: Thu, 15 Sep 2022 12:47:26 GMT
cache-control: max-age=300, public
etag: W/"21df7244385e5c0bdf32da01d0dad6c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iB3FGu6DkW2TcngAP3tiNmVjgkTuDA2U-gW9sxEgh_H5B1_wES0dHA==
age: 224
X-Firefox-Spdy: h2
data.pendo.io/data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.151.2_prod&ct=1663246255361&jzb=eJw9jk1PhDAQhv9LzyBQpFESYxT2sMYPDpuoMaYpUKRJabEdFslm__uOaPY0mb7vPH0-DgSWUZKcaCtaEpDa2dlLx0EN-JowltJLRrMMR0D2yiuwjqsWD3i1eS5f-I7fVdtu_-1L3zEEiKaxk4G1YyatAzI5jfUeYPR5FDVCS9Pq5aKxQzQrrcNagPRhEqXxoMztYA30NzSmNIyvkTc6O3qSH1bBfy2aZPERI-GkgZ2ot-e_4G8hP--Pc_FUqSv3UGzeCoegzolBruGXsYxSvaS9KO9fq9-wXtABwYweP092BFjs
34.107.204.85200 OK 42 B URL HTTP/2 data.pendo.io/data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.151.2_prod&ct=1663246255361&jzb=eJw9jk1PhDAQhv9LzyBQpFESYxT2sMYPDpuoMaYpUKRJabEdFslm__uOaPY0mb7vPH0-DgSWUZKcaCtaEpDa2dlLx0EN-JowltJLRrMMR0D2yiuwjqsWD3i1eS5f-I7fVdtu_-1L3zEEiKaxk4G1YyatAzI5jfUeYPR5FDVCS9Pq5aKxQzQrrcNagPRhEqXxoMztYA30NzSmNIyvkTc6O3qSH1bBfy2aZPERI-GkgZ2ot-e_4G8hP--Pc_FUqSv3UGzeCoegzolBruGXsYxSvaS9KO9fq9-wXtABwYweP092BFjs
IP 34.107.204.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.151.2_prod&ct=1663246255361&jzb=eJw9jk1PhDAQhv9LzyBQpFESYxT2sMYPDpuoMaYpUKRJabEdFslm__uOaPY0mb7vPH0-DgSWUZKcaCtaEpDa2dlLx0EN-JowltJLRrMMR0D2yiuwjqsWD3i1eS5f-I7fVdtu_-1L3zEEiKaxk4G1YyatAzI5jfUeYPR5FDVCS9Pq5aKxQzQrrcNagPRhEqXxoMztYA30NzSmNIyvkTc6O3qSH1bBfy2aZPERI-GkgZ2ot-e_4G8hP--Pc_FUqSv3UGzeCoegzolBruGXsYxSvaS9KO9fq9-wXtABwYweP092BFjs HTTP/1.1
Host: data.pendo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:10 GMT
content-type: image/gif
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/JzVxcj15eY0
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/JzVxcj15eY0
IP 142.250.74.3:0
Hash b8c06a366a5c3f252ddbccabd6010bec
d3588373ee6493949d5c2a751a0812fda5ecc880
f865dd3e95841b810e4b71be480cfec876067a1f46228d163d8d999e2dcd2c45
POST /s/gts1d4/JzVxcj15eY0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0118c354d91c31b67a0512f1a395d8b6
f5d5603922a71a814f8eb4dcd7a9e4821d16b384
fe54a1054d398ea033bc69bc968493cd63d11e6c249c23ed7b4bb91b0726ec7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5568
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 12:51:10 GMT
Last-Modified: Thu, 15 Sep 2022 11:18:22 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
m.stripe.com/6
35.81.202.99200 OK 156 B IP 35.81.202.99:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c9c2e5572754a3fb39fc7d3d2502cc71
d8792e20bdcc5c1a7bab27081b622f2ed9e49b3b
15f8eeeb1ee89637f5a28d071c0477d42ecee030969d52c637664a3912bd836f
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2332
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 12:51:11 GMT
content-length: 156
set-cookie: m=c42fbba6-e5fe-4a92-83b2-8160ebcadea2def7a6;Expires=Sat, 14-Sep-2024 12:51:11 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
m.stripe.com/6
35.81.202.99200 OK 156 B IP 35.81.202.99:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c9c2e5572754a3fb39fc7d3d2502cc71
d8792e20bdcc5c1a7bab27081b622f2ed9e49b3b
15f8eeeb1ee89637f5a28d071c0477d42ecee030969d52c637664a3912bd836f
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1152
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Cookie: m=c42fbba6-e5fe-4a92-83b2-8160ebcadea2def7a6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 12:51:14 GMT
content-length: 156
set-cookie: m=c42fbba6-e5fe-4a92-83b2-8160ebcadea2def7a6;Expires=Sat, 14-Sep-2024 12:51:14 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
js.appboycdn.com/web-sdk/3.1/appboy.min.js
104.17.218.31200 OK 0 B URL HTTP/2 js.appboycdn.com/web-sdk/3.1/appboy.min.js
IP 104.17.218.31:0
GET /web-sdk/3.1/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: fWaUAy85I3OGfp5Yat3q2YpqLSFkKavxj9T9nlVUzQChU97gFu1zDcKS8fs/SxePpI3qSbZVzME=
x-amz-request-id: 4HN36FEXFZ9BZE1J
last-modified: Tue, 02 Feb 2021 00:22:35 GMT
etag: W/"1c3631b60e0fed888d7a4fcedb3e0448"
cf-cache-status: HIT
age: 4603
expires: Thu, 15 Sep 2022 16:51:09 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b17dffcad10afa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74b17e009c6fb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/6.35.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:09 GMT
content-type: text/css
content-md5: /wtHD+oYY7dZRzCx50GZrQ==
last-modified: Mon, 06 Jun 2022 06:21:12 GMT
x-ms-request-id: 56bfbd6c-f01e-00c0-7082-7952a2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 6857
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74b17e01fe82b4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
data.pendo.io/data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJxNjkFLgEAQhf_LnrU1gyAhQjDIS3noLtM6iwuzu7YzGhH-dzdC6Tbf8M2896M2x05i6ifVqHF4fu3exvexHXq7fXLH9l4VCoyJa5BfJaxEhVoTZXsWWbjR2gBhmOj7xkSvvxxR-QGCXN7qu8q78ORjkPmxruq6rB7yO48CEwio5krP437l_MECCYO0_1f5CM8KGyZ2MZzISPYlsmDuaIEY9_0A8RJLig&v=2.151.2_prod&ct=1663246255339
34.107.204.85200 OK 0 B URL HTTP/2 data.pendo.io/data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJxNjkFLgEAQhf_LnrU1gyAhQjDIS3noLtM6iwuzu7YzGhH-dzdC6Tbf8M2896M2x05i6ifVqHF4fu3exvexHXq7fXLH9l4VCoyJa5BfJaxEhVoTZXsWWbjR2gBhmOj7xkSvvxxR-QGCXN7qu8q78ORjkPmxruq6rB7yO48CEwio5krP437l_MECCYO0_1f5CM8KGyZ2MZzISPYlsmDuaIEY9_0A8RJLig&v=2.151.2_prod&ct=1663246255339
IP 34.107.204.85:0
GET /data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJxNjkFLgEAQhf_LnrU1gyAhQjDIS3noLtM6iwuzu7YzGhH-dzdC6Tbf8M2896M2x05i6ifVqHF4fu3exvexHXq7fXLH9l4VCoyJa5BfJaxEhVoTZXsWWbjR2gBhmOj7xkSvvxxR-QGCXN7qu8q78ORjkPmxruq6rB7yO48CEwio5krP437l_MECCYO0_1f5CM8KGyZ2MZzISPYlsmDuaIEY9_0A8RJLig&v=2.151.2_prod&ct=1663246255339 HTTP/1.1
Host: data.pendo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:10 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
calendly.com/will-bates-1/30min
172.66.42.216200 OK 0 B URL HTTP/2 calendly.com/will-bates-1/30min
IP 172.66.42.216:0
GET /will-bates-1/30min HTTP/1.1
Host: calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:08 GMT
content-type: text/html; charset=utf-8
cf-ray: 74b17df8c9de1bfa-OSL
cache-control: max-age=0, private, must-revalidate
link: <https://assets.calendly.com/packs/booking/css/booking-21d07ced.css>; rel=preload; as=style; nopush
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: ALLOWALL
x-request-id: 5db6a4f316717583675ac78eb369617e
x-runtime: 0.125496
vary: Accept-Encoding
set-cookie: _calendly_session=iKUKZREa8enzoauHh6RNPvts%2BewT9J0cPV5Rc%2Ba7ddHAMc8uhnV%2FKGLK7%2F9iQH6BG2kY%2BKa6Z0jDGu2PwA%2FMIEMb0tglqnqInMi2Mxj7KqmrNTiA7RSy%2FtzsiDf1uiBYWLSl36EiFdDMXqJ%2FkkhJYO95QLZoWyini5Q0mH9D4r0T%2Fhf5S8n074g8hDMC7LAQVJdfCP0x%2Ba7NgRaHBk683RdYudC%2FH81ot17IsjvxveetPYXyJ52XbqgKGVJoNN1x3EqZXW%2Fb4Rp5E38Agl2oiXXpEVLOxUBJrMTEVhAKynliXyFLxuswfw0kF%2BmqoSbaChy%2Fhd8Ai%2B9iW07KApLojqaBW1rzMVbgPUClpPwq94qBkc%2Bk2pFbio73LMwVc85Lh3e81yRAd%2F4UDsT5vg%2BCL3DOjcP80Oed9slJOMgls3T1MWThIyNHGJjS9eFV8%2Fxz%2F039mCLFhZP0xWScmXL%2F1wm4IciM%2BsetMGzhdxRHfK9lwFMSlS2MeIxEJ1CKAGFghnQNRAUhGNW5HVBBQA26brumSAeAEwTnUDxgY1Az%2FKyF8mzZ98WLANjXmb5zhcjYPbT2VgcPcg%3D%3D--c4uB67mQNy4%2BBxYn--sTgO3V%2BvycqHxJI0Nvl6Mw%3D%3D; path=/; expires=Thu, 06 Oct 2022 12:51:08 GMT; secure; HttpOnly; SameSite=Lax
__cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268; path=/; domain=.calendly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
assets.calendly.com/packs/booking/css/booking-21d07ced.css
172.66.42.216200 OK 0 B URL HTTP/2 assets.calendly.com/packs/booking/css/booking-21d07ced.css
IP 172.66.42.216:0
GET /packs/booking/css/booking-21d07ced.css HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:08 GMT
content-type: text/css
cf-ray: 74b17dfb0c0e1bfa-OSL
age: 166476
cache-control: public, max-age=31536000
etag: W/"2942163e53124f5d4dcd3c41999893e8"
expires: Fri, 16 Sep 2022 12:51:08 GMT
last-modified: Tue, 13 Sep 2022 14:29:24 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=330561
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
assets.calendly.com/packs/booking/js/booking-runtime-1355f560b9c1963b13b9.js
172.66.42.216200 OK 0 B URL HTTP/2 assets.calendly.com/packs/booking/js/booking-runtime-1355f560b9c1963b13b9.js
IP 172.66.42.216:0
GET /packs/booking/js/booking-runtime-1355f560b9c1963b13b9.js HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cfruid=cbe25d340441267fbd13b87271ebe92f4cf992fd-1663246268
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 12:51:08 GMT
content-type: application/javascript
cf-ray: 74b17dfb0c0f1bfa-OSL
age: 166476
cache-control: public, max-age=31536000
etag: W/"ae4ad1a7587680a094ecca3a7e4d491b"
expires: Fri, 16 Sep 2022 12:51:08 GMT
last-modified: Tue, 13 Sep 2022 14:29:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=19822
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2