getcontentdog.com/app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75
80.86.87.206301 Moved Permanently 162 B URL HTTP/1.1 getcontentdog.com/app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75
IP 80.86.87.206:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET /app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75 HTTP/1.1
Host: getcontentdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 12 Nov 2022 17:41:16 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://getcontentdog.com/app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2481
Expires: Sat, 12 Nov 2022 18:22:37 GMT
Date: Sat, 12 Nov 2022 17:41:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3578
Cache-Control: max-age=150577
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:16 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:30:53 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17001
Expires: Sat, 12 Nov 2022 22:24:38 GMT
Date: Sat, 12 Nov 2022 17:41:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 16:44:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3423
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 12513fJwqVU87Ed3ewvPODhT+nu/OPDrIvCe9aTxXGJuGCJC7g/NlGtN6/Wv2KX+Uvnxxr6AeuHJZ3L1PFCp5Q==
x-amz-request-id: FC7067Y61J5S54NV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 17:13:04 GMT
age: 1693
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 17:41:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a09acdc0d269fa05a813746c15f7f979
2f340697788e1f1c80c906a94edc7e3ee7c4e088
314266451d9804d697651dee821b20c8cccb5e1e3905163c4c5536e3015b1ff3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314266451D9804D697651DEE821B20C8CCCB5E1E3905163C4C5536E3015B1FF3"
Last-Modified: Sat, 12 Nov 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21574
Expires: Sat, 12 Nov 2022 23:40:51 GMT
Date: Sat, 12 Nov 2022 17:41:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4182fdea27a17564a641d8b02c34e012
d54c5492aaa37876a1bd8059bbd94e34ce9e5c2a
0101f6cf150ef044a02c9bbc1c5f96eff3005a00bc52936a721cb657c9ff1565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2661
Cache-Control: max-age=90577
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:17 GMT
Etag: "636e8f29-117"
Expires: Sun, 13 Nov 2022 18:50:54 GMT
Last-Modified: Fri, 11 Nov 2022 18:06:33 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 16:44:48 GMT
cache-control: public,max-age=3600
age: 3389
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4687
Cache-Control: max-age=146622
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:17 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:24:59 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.40.161.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.161.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0o24+pN1VgdQBpYh9BPMYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kg0kKE74D0qLfjTgrxdR1nw8/14=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3f0d436e741a557f23489ae801ebb33f
085f4bf5c6a9c67ce1f622c3cc5bb93901676980
52609234111a1f2665b9d4444dc7432b920234e2f304d5be43bbefc647bdbc64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3923
Cache-Control: max-age=117812
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:18 GMT
Etag: "636ef49f-1d7"
Expires: Mon, 14 Nov 2022 02:24:50 GMT
Last-Modified: Sat, 12 Nov 2022 01:19:27 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
assets.calendly.com/packs/booking/js/booking-032c72bc.js
172.64.152.20200 OK 533 kB URL HTTP/2 assets.calendly.com/packs/booking/js/booking-032c72bc.js
IP 172.64.152.20:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 533 kB (533119 bytes)
Hash 3427bfcb40e152ec422de8b6c0adafce
99943ec923e154987695dbca9f168bb610224958
60a6393022d25acca5ed461b3518367acd1804957c3ad6b580ea539d6cfa02d5
GET /packs/booking/js/booking-032c72bc.js HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; __cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: application/javascript
cf-ray: 76910ec2f9c9b521-OSL
age: 85831
cache-control: public, max-age=31536000
etag: W/"653e9d35a43927b001053590347c1901"
expires: Sun, 13 Nov 2022 17:41:18 GMT
last-modified: Fri, 11 Nov 2022 17:45:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=1716457
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 1cdc786dd1264609f9834f4aba53e2ef
fff15e833ab27c356e7723dce3441e194b6350bf
70768bac474def6b0ed3e517083dd9c2f1ae3f0fe714ea550c406ce89906adc9
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: HNx4bdEmRgn5g09KulPi7w==
last-modified: Thu, 10 Nov 2022 22:15:45 GMT
etag: 0x8DAC3691D5A9489
x-ms-request-id: 69d9ff0c-501e-00cd-6162-f5bdae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 57125
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ec73e8fb4fa-OSL
X-Firefox-Spdy: h2
assets.calendly.com/assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png
172.64.152.20200 OK 22 kB URL HTTP/2 assets.calendly.com/assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png
IP 172.64.152.20:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b1505175dfb013552361a3cce3afb90e
65e195383803a248f4ba065013bd69b7cab41c44
260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a
GET /assets/touch-icon-ipad-retina-260067382323ed52661bd79f4fa22edee49175d0d5b1cfc96cdc28eabbea159a.png HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; __cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: image/png
content-length: 22254
cf-ray: 76910ec6cffab521-OSL
accept-ranges: bytes
age: 20044979
cache-control: public, max-age=31536000
etag: "b1505175dfb013552361a3cce3afb90e"
expires: Sun, 13 Nov 2022 17:41:18 GMT
last-modified: Fri, 25 Mar 2022 15:10:12 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
d3v0px0pttie1i.cloudfront.net/uploads/user/avatar/5996574/cbc06cb4.jpg
54.230.245.91200 OK 8.5 kB URL HTTP/1.1 d3v0px0pttie1i.cloudfront.net/uploads/user/avatar/5996574/cbc06cb4.jpg
IP 54.230.245.91:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash e977e2cae08b8effee308978b57294a9
8e9de51a7d74e73cadc7c3dde27a077835b612d4
cc6398d52c86d7ee9dc5ffde8912f5a5d8919410f7955c1bd71a6940cb4171a4
GET /uploads/user/avatar/5996574/cbc06cb4.jpg HTTP/1.1
Host: d3v0px0pttie1i.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 8521
Connection: keep-alive
Date: Thu, 10 Nov 2022 08:43:15 GMT
Last-Modified: Mon, 22 Jun 2020 08:57:10 GMT
ETag: "e977e2cae08b8effee308978b57294a9"
Cache-Control: max-age=315576000
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2LkVJhx0ZqHPsFMG6d_p1jKzWKsJTvgIXgTLiNwasuOY5amE4EBr-w==
Age: 205084
d3v0px0pttie1i.cloudfront.net/uploads/user/logo/5996574/75db6ee5.png
54.230.245.91200 OK 3.4 kB URL HTTP/1.1 d3v0px0pttie1i.cloudfront.net/uploads/user/logo/5996574/75db6ee5.png
IP 54.230.245.91:0
File type PNG image data, 157 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 56694decc8ae6f77f1cedf3ea4d9dc95
e0b133fae7534652e65854037f5a99a8bdbf2eb5
540d81455850c2df00944c1a79e917d259e1e61e332e5b14397917ff94764d16
GET /uploads/user/logo/5996574/75db6ee5.png HTTP/1.1
Host: d3v0px0pttie1i.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3440
Connection: keep-alive
Date: Thu, 10 Nov 2022 08:43:15 GMT
Last-Modified: Mon, 22 Jun 2020 08:57:44 GMT
ETag: "56694decc8ae6f77f1cedf3ea4d9dc95"
Cache-Control: max-age=315576000
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z46l47Hm3ICCIXwJo6U_jHfqCe7lE4GDFssWylQGCkoJNor47jIFdA==
Age: 205084
assets.calendly.com/assets/favicon-bfb0492a754bdf44a0a58b969963f44235653cca09a1c0110309c1e03077e368.ico
172.64.152.20200 OK 29 kB URL HTTP/2 assets.calendly.com/assets/favicon-bfb0492a754bdf44a0a58b969963f44235653cca09a1c0110309c1e03077e368.ico
IP 172.64.152.20:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bc2cc361856b34c3e36d963ae48885b
b5102a35903bf4ea79011fd0d842ee21d8992086
2992c8180281013135e8adaf81a1354332380f5e1a94c147aa50c2156220c59f
GET /assets/favicon-bfb0492a754bdf44a0a58b969963f44235653cca09a1c0110309c1e03077e368.ico HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; __cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: image/vnd.microsoft.icon
cf-ray: 76910ec6cffcb521-OSL
age: 11318780
cache-control: public, max-age=31536000
etag: W/"cdb7798a9d7236abfd2859a8746609a4"
expires: Sun, 13 Nov 2022 17:41:18 GMT
last-modified: Fri, 25 Mar 2022 17:29:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0d57cf107235a00ee4619e5551f12666
2cfe1b76ae1efb57bacfac934fd6773278df78d5
1ef83b36eba8505cc27c5b38c1ad05557693a3ba07661a135d43f423970f706f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.recaptcha.net/recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n
142.250.74.131200 OK 618 B URL HTTP/2 www.recaptcha.net/recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n
IP 142.250.74.131:0
File type ASCII text, with very long lines (977), with no line terminators
Hash 568605f5967324dd57190e160e09460c
5a9b627e547af7402cce7c5bc76238e604154390
9119dad4a9324b54b777710948db885d0b63afe08fd4c5434025fb54efe75912
GET /recaptcha/enterprise.js?render=6LeAb4QUAAAAAOM9CNYSsvbnzWTByRAgm3GA5D4n HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 12 Nov 2022 17:41:18 GMT
date: Sat, 12 Nov 2022 17:41:18 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 618
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0d57cf107235a00ee4619e5551f12666
2cfe1b76ae1efb57bacfac934fd6773278df78d5
1ef83b36eba8505cc27c5b38c1ad05557693a3ba07661a135d43f423970f706f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (668)
Size 163 kB (162590 bytes)
Hash 70dc760a0efad09d703883a39f7683b2
2bc70f2a100ff27d27a89d563dfe279590c8336b
2bc59eab94309c59fba62afa40dfd841fb83760714e9ec7248ce3e10ae05fd19
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:25:44 GMT
expires: Sat, 11 Nov 2023 23:25:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 65734
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json
104.16.148.64200 OK 1.8 kB URL HTTP/2 cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4860), with no line terminators
Hash ab808bb2591aabfecd0ecf1d6e1fa47c
e171ff9edfea2e76039c53d3bb07b871a5221a5a
5cb9457e8018bb8e388037fc094869f74a39c6fe2b6189ee322f545eac1e9574
GET /consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/a838c8e4-e3ce-442e-8f96-c88d0af98990.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: application/x-javascript
content-length: 1767
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: q4CLslkaq/7NDs8dbh+kfA==
last-modified: Fri, 23 Sep 2022 14:23:04 GMT
etag: 0x8DA9D6F20AE7912
x-ms-request-id: 9cf98986-a01e-015f-0e77-cf6c4d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 68644
expires: Sun, 13 Nov 2022 17:41:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ec8bd5cb4f1-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 078a2618d3cfaaf9432a8189b32776e0
efc4ac6c93839307ff787a9b7837f52010aa094c
5096bccd689e4836d86eec97f0dec67332e6224e9c6831e181d1ac81e8dade02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5560
Cache-Control: max-age=157962
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:18 GMT
Etag: "636f8b10-116"
Expires: Mon, 14 Nov 2022 13:34:00 GMT
Last-Modified: Sat, 12 Nov 2022 12:01:20 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.146.158200 OK 163 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.146.158:0
File type JSON data\012- , ASCII text, with very long lines (668)
Size 163 kB (162678 bytes)
Hash 96e2181252b15596dc06b363e1e8e2f5
f608a440cd33e540a7680813d6ad3251ebb390e2
cc71b43f20f3714221f66cb3fc104955228c9a5cecf0b0151871b32a0cace3fb
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76910ec9a9b0b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/otBannerSdk.js
104.16.148.64200 OK 87 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 6c3a79eec4b4e3d743911a822f89b9dd
825b0a196869a4e5c94448fd4295a97b187627a2
ecc79fab45c82bc236b38b2ff002a7daa38e7e3dc32e7deec1f2258b263edc46
GET /scripttemplates/6.35.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/javascript
content-length: 87115
content-encoding: gzip
content-md5: bDp57sS049dDkRqCL4m53Q==
last-modified: Mon, 06 Jun 2022 06:21:06 GMT
etag: 0x8DA4784BD4AE529
x-ms-request-id: 74e8856d-c01e-0004-086f-792d64000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 57088
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910eca3a5eb4fa-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2606
Expires: Sat, 12 Nov 2022 18:24:45 GMT
Date: Sat, 12 Nov 2022 17:41:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2606
Expires: Sat, 12 Nov 2022 18:24:45 GMT
Date: Sat, 12 Nov 2022 17:41:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2606
Expires: Sat, 12 Nov 2022 18:24:45 GMT
Date: Sat, 12 Nov 2022 17:41:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2606
Expires: Sat, 12 Nov 2022 18:24:45 GMT
Date: Sat, 12 Nov 2022 17:41:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516f1bfefb1c1a737ea2441f85343b32
0cc22d7bf9092fb30f31e2ca8f242c197b891669
733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:43 GMT
age: 70836
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94a390953f36bf9902cb9f04007c36c1
13535f16f207d4c19c1b6019757f6739a4531eeb
37d73300955a979e5b9d3dabc6e924c4e9734c6c63d92c42c709f8cb0d5aeabb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9f88d70-47ed-4a86-9b90-ea63f189df00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5902
x-amzn-requestid: 9c8be25c-9c96-4861-89c8-8b7bf06ffc16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNBrH2DoAMFqbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec20a-6c770a86581d1f7f4599684f;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ncUYc6gH2CYjxAwoVCC4MEj8Va5GGn1ZAg-gBmFtm5gzYIe898Ittg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
age: 71767
etag: "13535f16f207d4c19c1b6019757f6739a4531eeb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f09e254cd6f2e29b3bf198cc5d58a46f
fa34520e849bf746ff43aec3d28beb9e4be44f4d
2e29eace95fd8cb5b6d77df880d2044ecab4206cba47931c3a95e77c1b4e9d9a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8953
x-amzn-requestid: 2a2d20f4-3aa5-475e-8ec2-fc569766335e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQGAhIAMFrjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-26dc0259793ec94814f3d41a;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: OKFzEoCVITStAPxYzhksarrlTkVeATx6AzBnEK32WLFaOeEIwLMu_Q==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "fa34520e849bf746ff43aec3d28beb9e4be44f4d"
content-type: image/jpeg
age: 71767
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mMfP4wVk4SVBFR_ZqBEFuKeOS_NHYS1RuAnRSZajYau-oLVcc4j9BA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:14:05 GMT
age: 70034
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:50:44 GMT
age: 46235
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eac2ed4bece6282c8273a58a88371e2e
2d90ff66079e8ffbaaa367a6bfc08927e7cc424d
aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8633
x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEC1oAMF8tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxrfhO5oOGvECIrlZYKsfXOTZZksAIIHAafyRM-FdRXAaBVZs5cEQA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:21 GMT
age: 71758
etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.segment.io/v1/projects/rfvnxd6wnn/settings
54.230.111.129200 OK 3.1 kB URL HTTP/1.1 cdn.segment.io/v1/projects/rfvnxd6wnn/settings
IP 54.230.111.129:0
File type JSON data\012- , ASCII text, with very long lines (17552), with no line terminators
Hash 08f5dd20042bf0e0f0841e379005243f
497adeaef3527ba50d3d8dbbaddfa7d6f4f47308
f2e9d4aefe5c2743d076f6f4e03822f79d5242e97669a535ba12aececc6e8b5b
GET /v1/projects/rfvnxd6wnn/settings HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 02 Nov 2022 20:56:04 GMT
x-amz-version-id: bosqXavmfxM1o8OR8EYvoEe7vboTsFBA
Server: AmazonS3
Content-Encoding: br
Date: Sat, 12 Nov 2022 16:48:53 GMT
Cache-Control: public, max-age=10800
ETag: W/"7dbdadc706f2c48934d4221af1c3dd55"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Gc4jbIMyCtvM88i_8ADV04FFWyqdMUWHOf-QKVOAhx1dZ2fAJsHTEg==
Age: 3147
cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json
104.16.148.64200 OK 21 kB URL HTTP/2 cdn.cookielaw.org/consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 53c569621461f0386d693c493281e2a1
5c689aca672259108d4e6d3346973f229f308f38
99e7bf0855166fa1881fee477c05906fe832677584a62507e57d7a774f76fe4b
GET /consent/a838c8e4-e3ce-442e-8f96-c88d0af98990/5951f320-20c6-4a8b-af0f-fd8407279735/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/x-javascript
content-length: 20906
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: U8VpYhRh8DhtaTxJMoHioQ==
last-modified: Fri, 23 Sep 2022 14:23:26 GMT
etag: 0x8DA9D6F2E2A99CC
x-ms-request-id: 1008f8a9-201e-0128-685f-cfe90c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 68644
expires: Sun, 13 Nov 2022 17:41:19 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ecaf805b4f1-OSL
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
151.101.84.176200 OK 122 B URL HTTP/2 js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
IP 151.101.84.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 46bd30b4199e0b8e15b68d540122a3a4
fbd8a7de21b379fb7bc96fb879746a974848eef0
b1e0b3aa50bbf404bcfa7f3dd84e6ee2ab7e0809c20d8aa97058393ebeb39b1c
GET /v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Oct 2022 20:13:44 GMT
etag: "3437aaddcdf6922d623e172c2d6f9278"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Sat, 12 Nov 2022 17:41:19 GMT
via: 1.1 varnish
age: 2669131
x-request-id: 08ff62b0-50f6-4704-88ce-53ea1e5185ba
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 114389
vary: Accept-Encoding
timing-allow-origin: *
content-length: 122
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10856)
Hash cc948eb637569cf77ed166fd88c3725f
1f4a0b0572bec956b6cf690649a2d02b84bb57e2
33dfefa3180070c5a5006930180d07fd4248aa69b6b82d81e246db42ce82bb26
GET /scripttemplates/6.35.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/json
content-length: 2959
content-encoding: gzip
content-md5: zJSOtjdWnPd+0Wb9iMNyXw==
last-modified: Mon, 06 Jun 2022 06:20:56 GMT
etag: 0x8DA4784B7908BBB
x-ms-request-id: 76124876-a01e-0176-5b81-791a0f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 68644
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ecb686bb4f1-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/v2/otPcPanel.json
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/v2/otPcPanel.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (51572)
Hash 9246cb73c01d3b10b1067a8b4e7010a6
5565240d8384405f853a078aa9c436d33748caa0
5aca462cb4e9f0fd04a42f030a23531e9a8f937d0aaa697b25af883e92a94841
GET /scripttemplates/6.35.0/assets/v2/otPcPanel.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/json
content-length: 13040
content-encoding: gzip
content-md5: kkbLc8AdOxCxBnqLTnAQpg==
last-modified: Mon, 06 Jun 2022 06:20:59 GMT
etag: 0x8DA4784B91103B6
x-ms-request-id: e6607447-f01e-016e-6a82-79379a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 68644
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ecb686cb4f1-OSL
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js
151.101.84.176200 OK 256 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js
IP 151.101.84.176:0
File type ASCII text, with very long lines (526), with no line terminators
Hash 81235fac06e9d326aeef8b39a495c8ce
ef91fdb8aefe71c4152a8d5d04a932db00039f49
a1dff1e13da8d931f175c206d6d2bedd4989c3b8f338162b35a18eec08840944
GET /v3/fingerprinted/js/m-outer-15a2b40a058ddff1cffdb63779fe3de1.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-3437aaddcdf6922d623e172c2d6f9278.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Oct 2022 20:13:43 GMT
etag: "d96c709017743c0759cf3853d1806ba5"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Sat, 12 Nov 2022 17:41:19 GMT
via: 1.1 varnish
age: 2669131
x-request-id: be4758d0-9f4c-402c-a301-778cccfb931f
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 96507
vary: Accept-Encoding
timing-allow-origin: *
content-length: 256
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.35.0/assets/otCommonStyles.css
104.16.148.64200 OK 7.1 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.35.0/assets/otCommonStyles.css
IP 104.16.148.64:0
File type ASCII text, with very long lines (11231)
Hash 8c4a9d794e0f84d31e471fa11d6e9d16
ea87cd76f8d299d78e484a4553733151728ea102
348a057b0e7a8a5e71a92b8a2d2ef9678515803aeb3dce0ea44159313f682324
GET /scripttemplates/6.35.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Origin: https://calendly.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: text/css
content-md5: /wtHD+oYY7dZRzCx50GZrQ==
last-modified: Mon, 06 Jun 2022 06:21:12 GMT
x-ms-request-id: 56bfbd6c-f01e-00c0-7082-7952a2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 68644
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ecb686fb4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.segment.io/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
54.230.111.129200 OK 759 B URL HTTP/1.1 cdn.segment.io/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
IP 54.230.111.129:0
File type ASCII text, with very long lines (1508)
Hash 3d4b031e451f32f4995c5636eb2e9a2c
81da1ed66c50ed669f55223d0d25ff4ca70ef2de
129829afb5f8e69b51d6e4bc36b984f5f75a4db3a68f516090fd24632fbb334d
GET /analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 29 Jun 2022 22:58:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 29 Jun 2022 22:36:31 GMT
ETag: W/"3e448afdfea355c0f19700d04431ce7d"
Cache-Control: public,max-age=31536000,immutable
x-amz-version-id: 8IDMvv7_EUs2Qtk.QHOxLzoE3aR.o_xp
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SlBIWd6xVr19OIOW9Ekm5m7nmIvr6ktMdfmiMc2vJ_CfBFVdltEneg==
Age: 11731376
cdn.segment.io/next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz
54.230.111.129200 OK 4.7 kB URL HTTP/1.1 cdn.segment.io/next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz
IP 54.230.111.129:0
File type ASCII text, with very long lines (18430)
Hash baefe3076be23f00dcbc1db02d893b65
ebad0d70656d189335183d0efccd5ce1fd64a52b
54a7c0e7f637f6c76557fa7729e9d731a450b83b02acec8d5ed849ed259821e1
GET /next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 4666
Connection: keep-alive
Date: Mon, 29 Aug 2022 12:25:11 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Mon, 08 Aug 2022 17:49:04 GMT
ETag: "baefe3076be23f00dcbc1db02d893b65"
Cache-Control: public,max-age=31536000,immutable
Content-Encoding: gzip
x-amz-version-id: 5Ji0XTprX36hP1z8XxzwyA3DMZ.GWCip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8ozRE2z-L6e1f4gv6JElOBuMi2Z2vw-iwwQXdtBCl_RcntzbMrg78w==
Age: 6498968
cdn.segment.io/next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz
54.230.111.129200 OK 1.3 kB URL HTTP/1.1 cdn.segment.io/next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz
IP 54.230.111.129:0
File type HTML document, ASCII text, with very long lines (2755)
Hash 5749d02af60dbfc1f75ad8995c26282b
45ab2a3bb35cfe92ed113fd5127d6f87dab90285
39868881163d6156e67642dcae7bd345c2294d5d834ca11462c5209be68c5d72
GET /next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1295
Connection: keep-alive
Date: Mon, 24 Oct 2022 06:06:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Mon, 19 Sep 2022 21:38:20 GMT
ETag: "5749d02af60dbfc1f75ad8995c26282b"
Cache-Control: public,max-age=31536000,immutable
Content-Encoding: gzip
x-amz-version-id: YGzypEO4YcfB5iLv40HrvB7qFMLMEWuT
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AuLM8RcrFa2jDifq6NZ0PsrL_BunsaSVCGii2YZgzZUzYyS6R1MVXw==
Age: 1683305
cdn.segment.io/next-integrations/integrations/heap/2.1.2/heap.dynamic.js.gz
54.230.111.129200 OK 1.7 kB URL HTTP/1.1 cdn.segment.io/next-integrations/integrations/heap/2.1.2/heap.dynamic.js.gz
IP 54.230.111.129:0
File type HTML document, ASCII text, with very long lines (3723)
Hash aa7430c79694e6aab503a222c1b8cf22
09cd72fc1d557ee98ed04150cc6b75918e331211
7a66306bea19aa57277a29ae51e3452aba6f4f3c102f013076a6b01966f88604
GET /next-integrations/integrations/heap/2.1.2/heap.dynamic.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1671
Connection: keep-alive
Date: Sat, 07 May 2022 03:04:55 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Thu, 21 Apr 2022 20:31:57 GMT
ETag: "aa7430c79694e6aab503a222c1b8cf22"
Cache-Control: public,max-age=31536000,immutable
Content-Encoding: gzip
x-amz-version-id: IEr5b0YMf8gXJe8_msNsrr6tlk_T2o2g
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NxlVyFPICwxPWT3GIrIIY-vHBUaLlxbFirbjYRdBW6pmRWhpL4_Ayg==
Age: 16382185
cdn.segment.io/next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz
54.230.111.129200 OK 22 kB URL HTTP/1.1 cdn.segment.io/next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz
IP 54.230.111.129:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 7741fd16ad2418cd17ab981f8207b106
13d45dddf2bc6331a72ea781098dafdf715a13e7
c66490dc7f609c24fb66b5aeea8b7142f0d183d2075381daa817002b3c25b375
GET /next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 22174
Connection: keep-alive
Date: Sat, 14 May 2022 05:34:48 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Thu, 21 Apr 2022 20:31:55 GMT
ETag: "7741fd16ad2418cd17ab981f8207b106"
Cache-Control: public,max-age=31536000,immutable
Content-Encoding: gzip
x-amz-version-id: Oj6u2z19LDY4aY4JvHDnjoL7UTBjFuHg
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pFuuo0URdcfHc_bN7ujZyvKdmEw1k1N6BsdGsNUy6vQoE9mP7RyEHQ==
Age: 15768392
calendly.com/api/booking/event_types/c61f8714-7d17-4901-a0cc-7e0fbdde986f/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-11-12&range_end=2022-11-30
172.64.152.20200 OK 23 kB URL HTTP/2 calendly.com/api/booking/event_types/c61f8714-7d17-4901-a0cc-7e0fbdde986f/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-11-12&range_end=2022-11-30
IP 172.64.152.20:0
File type JSON data\012- , ASCII text, with very long lines (10567), with no line terminators
Hash 0503a731ae1f70ab966953df4de285b1
7b2ae6712291f6eeb810905cf88191b9d901fff3
f9c8c89989efd8881f003b4de3c40c35bbddeaf047b37dca139396e5c546b4bf
GET /api/booking/event_types/c61f8714-7d17-4901-a0cc-7e0fbdde986f/calendar/range?timezone=UTC&diagnostics=false&range_start=2022-11-12&range_end=2022-11-30 HTTP/1.1
Host: calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/contentdog/growth-strategy?month=2022-11
X-CSRF-Token: CZzE_xhJCafGMfDa2k5L0m8ZdZIa2TGjIbFdVZ0R3xaMI3U-wzpw3Dx4GMu13pUSuDzL2wBfeFepYeGjNzYS4Q
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _calendly_session=Vt8l7yu7Hl65%2FZt62TSPXpd9UU426Gpb0SFITUHgNZzyoAkFW%2Bh3%2Fl3xYh%2BUqaFrFXqCYf%2FXTzXfnbSrUr%2FiKE5Qx6LqrAMrQ1%2Bct5UcRYcXH%2FVYwgZrAYLhzJ%2FJKYYW2eUPVdPLd2CnusmhoVqUpUpW24N44kGV6Z9imjX5rqJ6pMrDrYMkWDCYr8ZjYP%2F3qdEwhKWMWs4K%2BTaT85u6ido5XR%2BOcxOJHMOaYoYOgS6k9Qbxe89lpMq4PrtQFL5FcEj7E06s0D8Rec%2FIvC%2Bin3KQrUMIKWq2iXmnSEwFYLP42Bmv7RBs9XOPnbxpwmU%2FUYdWvcuuzoxyyPH%2BMyCnNi6Dvw0VP4DxqqsMfMyJJy%2BNQ9xqhnFAqKAlPZ%2FOVXc5sSW12cR4yvOl20TC%2BYjoi3teYWWk6Ad8LLq8RwO0RKp2dCtiL7i5Ml2QSi4GRViZe7ahWUGpKCYVHC7gFXb31UCFq68QhJS%2B9OOi4rk4QmihxwbT9vU%2FChkIU%2BPoHr1Yn5wTM2Q%2BzoRf%2F%2FueZScGQPfW385xfuHMkATPr2vHZDhSxB9s5dbUbIY1dmbBN%2BfWF8VKgmOVOy7b7PIAMVUyo9iyvg%3D%3D--8MNcK2bDvt0mTiqv--GuPK3MwJL6OLEw5oKgXRMw%3D%3D; __cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; __cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: application/json; charset=utf-8
cf-ray: 76910ec88a16b521-OSL
cache-control: max-age=0, private, must-revalidate
etag: W/"f85f6de84d45d6797281a6bfaafd1e84"
set-cookie: _calendly_session=bPmKLxkRlXts8PfGQR1Iw1fNfCY7Ln9%2FvWYFXRKQNkpbLXL3miAQ7sPs5dRXoFt9FgpM%2F7MpqFwI9Yjz9iWKQsvTbXOhwT1b2xLGSR4XZpIhx3kzVlkiTEtHvf8JPqXp0vSINGtXy9wLf6sjiQTU1Q0A8JsQxhHvLu8mrnaFap2HTw%2FXIndNyuPThbYd%2FW8oei7mOm%2BuKqbXY2k%2FMkmu4OMXt0yvVcvWaOav2oAMEcPic6HrpRGHzpxV7psUayLLesGx74aRY7OnWQvJbJHnQVXftFG%2Brs%2FrjWlcUXFf3WRCPPj70fB7eoIY3loRuL1ONhbv3rEy8zlLqjksI%2BvDE76MvJuyjOWFwUFKIV4AcLyo2QK81CJO7narONCegnqVDkJOHhmNFBvNqgyYFK539i6L8ZKkwmp4qUVRX%2FMJ7QVKUBusSOKKYUXoCv%2BmYsu8uvovM4xYskTku131GQjRk6A1DFJaQThb%2BXW9lQ%2F4%2Bu3kdh2KUvPb5zByx%2BPIQ3wcad7eFz9P3d37Ltne15rmUBtPO%2Fdf%2BurWkP93kXGJVCehttNnVISNSn21ikUlMMQfZ%2FP2tEyoLLzKd0Rc25Zb%2FDG3Ig%3D%3D--hRvYUdrAaTNmUcmi--2VP8dNopY2D09CTXFHZ4xg%3D%3D; path=/; expires=Sat, 03 Dec 2022 17:41:19 GMT; secure; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: ALLOWALL
x-request-id: cf922646bb773181103c4fd009beadab
x-runtime: 0.358406
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.segment.io/next-integrations/integrations/optimizely/3.5.1/optimizely.dynamic.js.gz
54.230.111.129200 OK 2.6 kB URL HTTP/1.1 cdn.segment.io/next-integrations/integrations/optimizely/3.5.1/optimizely.dynamic.js.gz
IP 54.230.111.129:0
File type ASCII text, with very long lines (7007)
Hash 6ac19b71da72b08483644c17ed6a4986
882ae07fffd74a49df8c5a1fa57b67667fd4a47f
29db086ab143b305f4c9de9fce4b11259b1897d01e0b7dcb6e68ba13fa972ffc
GET /next-integrations/integrations/optimizely/3.5.1/optimizely.dynamic.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2586
Connection: keep-alive
Date: Mon, 03 Oct 2022 19:04:32 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Mon, 19 Sep 2022 21:38:20 GMT
ETag: "6ac19b71da72b08483644c17ed6a4986"
Cache-Control: public,max-age=31536000,immutable
Content-Encoding: gzip
x-amz-version-id: LWiuuaOh3MJMcM_mbmFM_xQOt6bARUXq
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jnj98qkTCLlnmPGdBseGbd_EdoBVPCc50JABFDcWc7mVzgkr9ziutg==
Age: 3451008
cdn.pendo.io/agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js
54.230.111.15200 OK 132 kB URL HTTP/2 cdn.pendo.io/agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js
IP 54.230.111.15:0
File type ASCII text, with very long lines (47462)
Size 132 kB (131933 bytes)
Hash 588c3924b11e65fab64540e17b5d39a1
4c8587c5451af9e43a85164d746357051e02b974
2fd8f9d7becad6dff1dbdf0614ccabb7ac11f320f83c5bfc8d36be985febd4a2
GET /agent/static/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9/pendo.js HTTP/1.1
Host: cdn.pendo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 131933
x-guploader-uploadid: ADPycduzk4fFcVM-gx_2NhwA8dTMW2y5IekarSvcUMqPNQbnlCrdENE3BbrIJpem2P6-OUWjfGthw81-PbW0hwOy0A_ewcEZw0Av
last-modified: Thu, 10 Nov 2022 19:12:27 GMT
x-goog-generation: 1668107547831800
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 131933
content-encoding: gzip
x-goog-hash: crc32c=3DWyQw==, md5=WIw5JLEeZfq2RUDhe105oQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Sat, 12 Nov 2022 17:40:49 GMT
expires: Sat, 12 Nov 2022 17:47:55 GMT
cache-control: max-age=450
etag: "588c3924b11e65fab64540e17b5d39a1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7SkFlLGujtgPR9bo5UK2BkUD2MuyB9GHuSB7fY1ED8ZcRd6W4lfmdA==
age: 54
X-Firefox-Spdy: h2
cdn.segment.io/analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js
54.230.111.129200 OK 600 B URL HTTP/1.1 cdn.segment.io/analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js
IP 54.230.111.129:0
File type ASCII text, with very long lines (1141)
Hash 5760af7d8073353cc4076612fbbbeecb
e703a1601c03f4c86bce79684892f07a305abc03
6079b014d79b381b329a8618d0ed0eb01583645457e180c13a68ed87b91b3fd7
GET /analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 30 Jun 2022 05:34:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
x-amz-replication-status: COMPLETED
Last-Modified: Thu, 30 Jun 2022 00:39:24 GMT
ETag: W/"c1cb8e289adb2c1ec05b08a6ef25cfaf"
Cache-Control: public,max-age=31536000,immutable
x-amz-version-id: 4uJPXFGNAqMZ3w.PoxWEpPGFTaCNeK4f
Server: AmazonS3
Content-Encoding: br
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vacJzyf8IyK-Rqdy3IJCS6TvwH5RnEmok-i6caLs85YREuF08EBszQ==
Age: 11707612
cdn.segment.io/next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz
54.230.111.129200 OK 778 B URL HTTP/1.1 cdn.segment.io/next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz
IP 54.230.111.129:0
File type ASCII text, with very long lines (1751)
Hash 3f0dbc48d4537cdf84414eec13b0164c
daa31dc393ac79c71c464e392dc13a8c4cfff84e
9161f093e2632d08483aba9b8e0b4dab30032316a3c29278e767d69760d11236
GET /next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz HTTP/1.1
Host: cdn.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 778
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Access-Control-Max-Age: 3000
Last-Modified: Mon, 24 Oct 2022 18:47:59 GMT
Content-Encoding: gzip
x-amz-version-id: zvuUQsgnPozOyEKaxRb.XwF.TmEL8OXS
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 12 Nov 2022 10:48:50 GMT
ETag: "3f0dbc48d4537cdf84414eec13b0164c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -8eSWSw7qLXSJ3ySsKQ98WjaAL9yA87370Jmax-RT52eYO-5abF7jg==
Age: 24749
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3f83108025d6c3e8564c1215ed5d298a
cd3131de3108ac2c872bfe8515a33959a4715773
3af0304585d6d51407f72e4e82bbb26b59de2d147ccc5875da1f81c84c724cfb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86095
Date: Sat, 12 Nov 2022 17:41:19 GMT
Etag: "636e7fca-1d7"
Expires: Sun, 13 Nov 2022 17:36:14 GMT
Last-Modified: Fri, 11 Nov 2022 17:00:58 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mNiG86eANOu_rUwdDbxfwbgLTxbetjDbj-myTGDUYeK-ZNKTDZdxQg==
Age: 2116
ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
IP 142.250.74.35:0
Hash 9f1f6b3c4a5f7b135c4f8b4fc116f154
987e887443c3409b7e73a4aacad91c829051c3a7
c24e01bb3688f75a5a2bfd915941eec11a834c173b8b883c526af6bc6091f542
POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
IP 142.250.74.35:0
Hash 9f1f6b3c4a5f7b135c4f8b4fc116f154
987e887443c3409b7e73a4aacad91c829051c3a7
c24e01bb3688f75a5a2bfd915941eec11a834c173b8b883c526af6bc6091f542
POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/S_oXU3H4Jpc
IP 142.250.74.35:0
Hash 9f1f6b3c4a5f7b135c4f8b4fc116f154
987e887443c3409b7e73a4aacad91c829051c3a7
c24e01bb3688f75a5a2bfd915941eec11a834c173b8b883c526af6bc6091f542
POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 9ecf80179b052919c61ee51aaaada72b
67f74b2f44268f4591be5792cdad76bba4f7025a
6ff982c27364a91992ad1bcea19d2d1bf4b347921c219f124a821053cf78abcf
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152530
Date: Sat, 12 Nov 2022 17:41:20 GMT
Etag: "636f75cf-1d7"
Expires: Mon, 14 Nov 2022 12:03:30 GMT
Last-Modified: Sat, 12 Nov 2022 10:30:39 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: azVODaNGjESlOJlyCDlsiCbl9RuCe4yzLU75fPeiAUK6ga1_d3PRNw==
Age: 5571
data.pendo.io/data/guide.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1668274879103&v=2.160.2_prod
34.107.204.85200 OK 42 B URL HTTP/2 data.pendo.io/data/guide.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1668274879103&v=2.160.2_prod
IP 34.107.204.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /data/guide.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1668274879103&v=2.160.2_prod HTTP/1.1
Host: data.pendo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:20 GMT
content-type: image/gif
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.stripe.network/inner.html
54.230.111.85200 OK 930 B URL HTTP/2 m.stripe.network/inner.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash fc2e029628f163bb59adc6fa5a31161c
0f4547ae510d1bf36e3630d41bdab29d64c03d64
a5f27af9c0c6f37979ebafcac22eb3a613841a3d4e728f4577baf94e64d42f35
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
accept-ranges: bytes
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
date: Sat, 12 Nov 2022 17:39:05 GMT
cache-control: max-age=300, public
etag: "fc2e029628f163bb59adc6fa5a31161c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4B1bSfrtwq9ajxmEQEawDIG-kX2XfKWB2AulNJq7kR7-kVtdu3Axcg==
age: 138
X-Firefox-Spdy: h2
data.pendo.io/data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?id=4&jzb=eJxNjk-Lg0AMxb_LnLVTPS1CWRa20KVQ99C7hJn4B8aJzESLFL-7KUUpueQlLy-_p5q62DGFP6sKVf2fb79lda-45K9B6ppNKlFgDI2eXxY_OpeoMThxt8xDLLQ24NBbNx8M9dqQZ_RsqdFNoAe3aeQAjM383cuqPeXHPE-zTGJ7ZLDAoIqdQtpl__cWAwTJ-_kcyRFuKBOG2JHfZERXXygyCmsNLuKyrAdmT74&v=2.160.2_prod&ct=1668274879102
34.107.204.85200 OK 1.3 kB URL HTTP/2 data.pendo.io/data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?id=4&jzb=eJxNjk-Lg0AMxb_LnLVTPS1CWRa20KVQ99C7hJn4B8aJzESLFL-7KUUpueQlLy-_p5q62DGFP6sKVf2fb79lda-45K9B6ppNKlFgDI2eXxY_OpeoMThxt8xDLLQ24NBbNx8M9dqQZ_RsqdFNoAe3aeQAjM383cuqPeXHPE-zTGJ7ZLDAoIqdQtpl__cWAwTJ-_kcyRFuKBOG2JHfZERXXygyCmsNLuKyrAdmT74&v=2.160.2_prod&ct=1668274879102
IP 34.107.204.85:0
Hash f5d105ff13d3c569fc617e9255e6643f
53759b6895c4e82db9464555591bf6acf05f1118
f120df08876e5eb86b9c04d12dfd9e9ff2a37c64a1c9deec6eee587e5fa55894
GET /data/guide.js/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?id=4&jzb=eJxNjk-Lg0AMxb_LnLVTPS1CWRa20KVQ99C7hJn4B8aJzESLFL-7KUUpueQlLy-_p5q62DGFP6sKVf2fb79lda-45K9B6ppNKlFgDI2eXxY_OpeoMThxt8xDLLQ24NBbNx8M9dqQZ_RsqdFNoAe3aeQAjM383cuqPeXHPE-zTGJ7ZLDAoIqdQtpl__cWAwTJ-_kcyRFuKBOG2JHfZERXXygyCmsNLuKyrAdmT74&v=2.160.2_prod&ct=1668274879102 HTTP/1.1
Host: data.pendo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:20 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
heapanalytics.com/h?a=3509290134&u=4042822215403291&v=3632721816512157&s=2313096790479410&b=web&tv=4.0&z=0&h=%2Fcontentdog%2Fgrowth-strategy&q=%3Fmonth%3D2022-11&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1668274879022&st=1668274879023
18.213.204.183200 OK 37 B URL HTTP/2 heapanalytics.com/h?a=3509290134&u=4042822215403291&v=3632721816512157&s=2313096790479410&b=web&tv=4.0&z=0&h=%2Fcontentdog%2Fgrowth-strategy&q=%3Fmonth%3D2022-11&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1668274879022&st=1668274879023
IP 18.213.204.183:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /h?a=3509290134&u=4042822215403291&v=3632721816512157&s=2313096790479410&b=web&tv=4.0&z=0&h=%2Fcontentdog%2Fgrowth-strategy&q=%3Fmonth%3D2022-11&d=calendly.com&t=Select%20a%20Date%20%26%20Time%20-%20Calendly&ts=1668274879022&st=1668274879023 HTTP/1.1
Host: heapanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:20 GMT
content-type: image/gif
content-length: 37
server: nginx
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
etag: W/"25-PqzQEyMQ6kTK11azeKO8Bw"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
data.pendo.io/data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.160.2_prod&ct=1668274879093&jzb=eJw9j3FLwzAQxb9L_u5sG8aaFYaIE1HHpmOIIBKyNG2ypUlJrpMy9t13VpT76_Le_d7L55nA0ClSEutFRRKyD_47qsDBtPiaz2aMFlNWzDNGE3Iy0YAP3FR4wF8f1ssN33HYAOtwXvITAoSUvncwelxvbUL6YNGuAbpYpqkUVrnKDjfSt6n0DpSDyjdpg8GgJxGCANUMty1KekEzSid5jtwu-C6S8jwW_avHpsUFJREQshP7p_9M-F1I_3FchRVtlmv9doSDR1AdRKtG8bl-nN8ftnfb2oj3Ouqf7w-gMIUW2eXrClhTXeE
34.107.204.85200 OK 42 B URL HTTP/2 data.pendo.io/data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.160.2_prod&ct=1668274879093&jzb=eJw9j3FLwzAQxb9L_u5sG8aaFYaIE1HHpmOIIBKyNG2ypUlJrpMy9t13VpT76_Le_d7L55nA0ClSEutFRRKyD_47qsDBtPiaz2aMFlNWzDNGE3Iy0YAP3FR4wF8f1ssN33HYAOtwXvITAoSUvncwelxvbUL6YNGuAbpYpqkUVrnKDjfSt6n0DpSDyjdpg8GgJxGCANUMty1KekEzSid5jtwu-C6S8jwW_avHpsUFJREQshP7p_9M-F1I_3FchRVtlmv9doSDR1AdRKtG8bl-nN8ftnfb2oj3Ouqf7w-gMIUW2eXrClhTXeE
IP 34.107.204.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /data/ptm.gif/4cfbcefc-fcf9-4b66-5dc6-9b0d81bb07a9?v=2.160.2_prod&ct=1668274879093&jzb=eJw9j3FLwzAQxb9L_u5sG8aaFYaIE1HHpmOIIBKyNG2ypUlJrpMy9t13VpT76_Le_d7L55nA0ClSEutFRRKyD_47qsDBtPiaz2aMFlNWzDNGE3Iy0YAP3FR4wF8f1ssN33HYAOtwXvITAoSUvncwelxvbUL6YNGuAbpYpqkUVrnKDjfSt6n0DpSDyjdpg8GgJxGCANUMty1KekEzSid5jtwu-C6S8jwW_avHpsUFJREQshP7p_9M-F1I_3FchRVtlmv9doSDR1AdRKtG8bl-nN8ftnfb2oj3Ouqf7w-gMIUW2eXrClhTXeE HTTP/1.1
Host: data.pendo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:20 GMT
content-type: image/gif
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0222c53a8afd82d9ca5ce49d57ef248d
4bdd401a449627eb0e86b8e2c41aef6a0e91c0ef
e675c3b63484abc1d3c35d939ab0300d2ee70010dc421bcd1a6ca4d8639a0d45
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 722
Cache-Control: max-age=98020
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 17:41:20 GMT
Etag: "636eb3d2-1d7"
Expires: Sun, 13 Nov 2022 20:55:00 GMT
Last-Modified: Fri, 11 Nov 2022 20:42:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
m.stripe.com/6
34.218.171.98200 OK 156 B IP 34.218.171.98:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5aeb86e0840ee8e11af2930897c3d7b1
fc0398a963e56c4ef88eccd8bd39caceeecc4dc1
503f407824e65679e36d1e129dcb12e526c179c64818f990d99d6f7e98f8a5ae
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2360
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 17:41:20 GMT
content-length: 156
set-cookie: m=a721c4de-b5ea-450e-b38f-4065eb2a5a74d067a2;Expires=Mon, 11-Nov-2024 17:41:20 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
m.stripe.com/6
34.218.171.98200 OK 156 B IP 34.218.171.98:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5aeb86e0840ee8e11af2930897c3d7b1
fc0398a963e56c4ef88eccd8bd39caceeecc4dc1
503f407824e65679e36d1e129dcb12e526c179c64818f990d99d6f7e98f8a5ae
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1156
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Cookie: m=a721c4de-b5ea-450e-b38f-4065eb2a5a74d067a2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 17:41:23 GMT
content-length: 156
set-cookie: m=a721c4de-b5ea-450e-b38f-4065eb2a5a74d067a2;Expires=Mon, 11-Nov-2024 17:41:23 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
assets.calendly.com/packs/booking/js/booking-runtime-ee059627.js
172.64.152.20200 OK 0 B URL HTTP/2 assets.calendly.com/packs/booking/js/booking-runtime-ee059627.js
IP 172.64.152.20:0
GET /packs/booking/js/booking-runtime-ee059627.js HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Cookie: __cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; __cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:18 GMT
content-type: application/javascript
cf-ray: 76910ec2f9c8b521-OSL
age: 85831
cache-control: public, max-age=31536000
etag: W/"1e3e375541ff684957f034cf62c5e590"
expires: Sun, 13 Nov 2022 17:41:18 GMT
last-modified: Fri, 11 Nov 2022 17:45:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=19548
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.heapanalytics.com/js/heap-3509290134.js
54.230.111.52200 OK 0 B URL HTTP/2 cdn.heapanalytics.com/js/heap-3509290134.js
IP 54.230.111.52:0
GET /js/heap-3509290134.js HTTP/1.1
Host: cdn.heapanalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sat, 12 Nov 2022 17:41:04 GMT
server: nginx
etag: W/"1d40b-Oa/UTZyRUAf3HKXopwfe6g"
cache-control: public, max-age=120
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: MDuuUTN0p3q-SppjWt1x7gSC20q1dpD6eNOOJtpxoGLlW5ws93y6ew==
age: 15
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.148.64:0
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://calendly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:19 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 10 Nov 2022 22:15:47 GMT
x-ms-request-id: 074aaaa4-201e-00a4-4568-f5e202000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 57128
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76910ecbbca4b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
54.230.111.85200 OK 0 B URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 54.230.111.85:0
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-encoding: gzip
date: Sat, 12 Nov 2022 17:40:27 GMT
cache-control: max-age=300, public
etag: W/"21df7244385e5c0bdf32da01d0dad6c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _kLntBCnHLw00hF8hvFoB4dbCzeM6rufI5PPGbl57BOYXtF8c_2xWw==
age: 54
X-Firefox-Spdy: h2
getcontentdog.com/app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75
80.86.87.206301 Moved Permanently 0 B URL HTTP/2 getcontentdog.com/app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75
IP 80.86.87.206:0
ASN #8972 Host Europe GmbH
Analyzer Verdict Alert fortinet Phishing
GET /app/index.php/campaigns/ww981cnhw5c9f/track-url/bx905b86ad06f/572bd888ac59826a0d1d30b062bb527f5f216e75 HTTP/1.1
Host: getcontentdog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 12 Nov 2022 17:41:17 GMT
content-type: text/html; charset=UTF-8
x-xss-protection: 1; mode=block
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Sat, 12 Nov 2022 17:41:17 GMT
location: https://calendly.com/contentdog/growth-strategy
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
calendly.com/contentdog/growth-strategy
172.64.152.20200 OK 0 B URL HTTP/2 calendly.com/contentdog/growth-strategy
IP 172.64.152.20:0
GET /contentdog/growth-strategy HTTP/1.1
Host: calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 12 Nov 2022 17:41:17 GMT
content-type: text/html; charset=utf-8
cf-ray: 76910ebfceb8b521-OSL
cache-control: max-age=0, private, must-revalidate
link: <https://assets.calendly.com/packs/booking/css/booking-cf8bf3a2.css>; rel=preload; as=style; nopush
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: ALLOWALL
x-request-id: bff62e5e79b0e77f94c058632c78f281
x-runtime: 0.166305
vary: Accept-Encoding
set-cookie: _calendly_session=Vt8l7yu7Hl65%2FZt62TSPXpd9UU426Gpb0SFITUHgNZzyoAkFW%2Bh3%2Fl3xYh%2BUqaFrFXqCYf%2FXTzXfnbSrUr%2FiKE5Qx6LqrAMrQ1%2Bct5UcRYcXH%2FVYwgZrAYLhzJ%2FJKYYW2eUPVdPLd2CnusmhoVqUpUpW24N44kGV6Z9imjX5rqJ6pMrDrYMkWDCYr8ZjYP%2F3qdEwhKWMWs4K%2BTaT85u6ido5XR%2BOcxOJHMOaYoYOgS6k9Qbxe89lpMq4PrtQFL5FcEj7E06s0D8Rec%2FIvC%2Bin3KQrUMIKWq2iXmnSEwFYLP42Bmv7RBs9XOPnbxpwmU%2FUYdWvcuuzoxyyPH%2BMyCnNi6Dvw0VP4DxqqsMfMyJJy%2BNQ9xqhnFAqKAlPZ%2FOVXc5sSW12cR4yvOl20TC%2BYjoi3teYWWk6Ad8LLq8RwO0RKp2dCtiL7i5Ml2QSi4GRViZe7ahWUGpKCYVHC7gFXb31UCFq68QhJS%2B9OOi4rk4QmihxwbT9vU%2FChkIU%2BPoHr1Yn5wTM2Q%2BzoRf%2F%2FueZScGQPfW385xfuHMkATPr2vHZDhSxB9s5dbUbIY1dmbBN%2BfWF8VKgmOVOy7b7PIAMVUyo9iyvg%3D%3D--8MNcK2bDvt0mTiqv--GuPK3MwJL6OLEw5oKgXRMw%3D%3D; path=/; expires=Sat, 03 Dec 2022 17:41:17 GMT; secure; HttpOnly; SameSite=Lax
__cf_bm=CavkJRdz6kP6ePFqP40LiZ2AxfLsercUfntN5QtNKvY-1668274877-0-ARPElvg14bwRVsdSK65jOVUCCWzhpfLpZP7/uJG5pFdSHn560aGbKUnA0tBMM9qMCixUMndNWjITvYkAiziEO6I=; path=/; expires=Sat, 12-Nov-22 18:11:17 GMT; domain=.calendly.com; HttpOnly; Secure; SameSite=None
__cfruid=127c1320e550ed581a07db3c37a5ef339792d9de-1668274877; path=/; domain=.calendly.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2