beaumont.org.mcas-df.ms/
20.241.142.98200 OK 580 B IP 20.241.142.98:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 49af74a95928d2b36bce3661d335055f
d3204ddf24850957aee379316ae1858f8221ee84
a34b1e3dce07b78450d0fc8981cf316bc5c2d1d910a6bd96047bf52fd3114adc
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: beaumont.org.mcas-df.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: openresty
Date: Thu, 08 Dec 2022 19:20:21 GMT
X-MCAS-Request-Id: 1667cfbb67a2f1074748fca83b10464c
Expires: Mon, 01-Jan-1990 00:00:00 GMT
Strict-Transport-Security: max-age=31536000
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
X-MCAS-Upstream-Time: n/a
X-MCAS-Processing-Time: 6
Content-Encoding: gzip
X-MCAS-Cache-Status: MISS
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2588
Expires: Thu, 08 Dec 2022 20:03:30 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6977
Expires: Thu, 08 Dec 2022 21:16:39 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 19:08:13 GMT
content-type: application/json
age: 729
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6429
Expires: Thu, 08 Dec 2022 21:07:31 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Nr4A9+f1SIsiXitifgvEHV3C205zh4tLdEDavq/EXVsCkuQnFxa3ybTducUcdpTqoFYcipDsIvs=
x-amz-request-id: 0HRADTVVJ9VRTA8V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 18:48:01 GMT
age: 1941
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 19:20:22 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 19:07:55 GMT
age: 747
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5880
Cache-Control: max-age=141870
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:22 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:44:52 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js
23.36.77.27200 OK 4.8 kB URL HTTP/2 mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js
IP 23.36.77.27:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4832), with no line terminators
Hash 0e8afb8d8f57ba1ce938091b3db887a1
94a6f21886a6722914000b15958b8f7082e4968b
5f7add0638c6207d7a84267735b9eed3fee3a68696e3ec755fafd5283db0b8f3
GET /proxyweb/1.26.10/js/session-context-store-helper.min.js HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 4832
content-type: application/javascript
content-md5: Dor7jY9XuhzpOAkbPbiHoQ==
last-modified: Thu, 08 Dec 2022 17:26:12 GMT
etag: 0x8DAD9414D84AB77
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2802ff3e-401e-0032-1d3a-0b2429000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.158.219101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.158.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6Env8oceflDUtRPzAIDfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W13C5ASG/mX79NvschXm1lhpKGc=
mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html
23.36.77.27200 OK 209 B URL HTTP/2 mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html
IP 23.36.77.27:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5c43ffb1fa2e36c593f047cf3025ce0
6895734c802fc8f6afcfd980dd22a7de7817718d
a3c954e6d1422643abfe41e74b726918caa087460903ec4267bc4e5293132451
GET /proxyweb/1.26.10/html/session-context-restore.html HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 209
content-type: text/html
content-md5: xcQ/+x+i42xZPwR88wJc4A==
last-modified: Thu, 08 Dec 2022 17:27:26 GMT
etag: 0x8DAD94179D7C30D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd47f1a-a01e-002c-703a-0b3616000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31535965
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2
mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js
23.36.77.27200 OK 39 kB URL HTTP/2 mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js
IP 23.36.77.27:0
ASN #20940 Akamai International B.V.
File type C source, ASCII text, with very long lines (38543)
Hash fd868cc8bac79f7d1a1dc54bb507e673
cdde9e75a8a7eeed048c61ee11b9bd6f3789a488
50c7a6bc126f23bed4e86844e23471bc2b77bdf396bfe93fee9eb364bc99f9f6
GET /proxyweb/1.26.10/js/session-context-restore.min.js HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 38628
content-type: application/javascript
content-md5: /YaMyLrHn30aHcVLtQfmcw==
last-modified: Thu, 08 Dec 2022 17:26:12 GMT
etag: 0x8DAD9414DC3A70B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd47f25-a01e-002c-783a-0b3616000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31535959
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 72229
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 72986
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 71225
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 75542
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: etWGqF-8tXSwaeZVTPK4g9CV5ZbdYv5ZDjF5Yx2PSNnTsreewpbhdA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:48:08 GMT
age: 37936
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 72459
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 93fa5274d7a5dbcba47e96a88df2dec5
a36f4ba006917b9f297427890f9bf605c885670f
3944e45dc727a640753ed198b231e3e8ecb7f5db9c1473f5836db30b25d69dd1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "3944E45DC727A640753ED198B231E3E8ECB7F5DB9C1473F5836DB30B25D69DD1"
Last-Modified: Thu, 08 Dec 2022 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Thu, 08 Dec 2022 20:20:24 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive
beaumont.org/?
138.91.106.25301 Moved Permanently 195 B IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e0d1a4a70b7864dd9ba22ff15341cfa0
32346cf022d83679b2f437eb9b02092168bafa8c
a76004959bdd8402fe10509e667dd20ad3e7390f6e8097cc44ef935c908e0e36
GET /? HTTP/1.1
Host: beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: Microsoft-Azure-Application-Gateway/v2
Date: Thu, 08 Dec 2022 19:20:24 GMT
Content-Type: text/html
Content-Length: 195
Connection: keep-alive
Location: https://www.beaumont.org/?
www.beaumont.org/?
138.91.106.25200 OK 74 kB IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1979), with CRLF, LF line terminators
Hash 4185fefefb1b947ab1a04766d29a4f75
8c7885ab8090eae0e5a0432f1ae7e0bc655d3c7b
4e607b84abd3060cc53accd056e054998081d622ccf02051081dda0e97e528b5
GET /? HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://beaumont.org.mcas-df.ms/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 73834
Connection: keep-alive
Set-Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; Path=/; SameSite=None; Secure
ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; Path=/
ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; path=/; secure; HttpOnly; SameSite=Lax
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KW3K84
142.250.74.168200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KW3K84
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (14971)
Hash 9628341400908f097995ec1f7e0f8326
3559e890ff5df515f304014036fdb44d16119bac
9e4923ec0db5062644c9088b2fd5f5dd1d945f0bd7fa04b0a346b916f4ff8c76
GET /gtm.js?id=GTM-KW3K84 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 19:20:26 GMT
expires: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64220
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c
142.250.74.168200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c
IP 142.250.74.168:0
File type ASCII text, with very long lines (37615)
Hash 4f81f216758668a655e882f2dea2f374
b2221b82e33de9823e785a0f7fb29a0bf88f93ae
93b40753a1d2f45ed6d8ced05852edb9ac5b871b241d9b7424eed4a69de64f39
GET /gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 19:20:26 GMT
expires: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
138.91.106.25200 OK 132 kB URL HTTP/1.1 www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64593)
Size 132 kB (132493 bytes)
Hash f89481ceadd2587e7443d6df691aa045
ad3a507c7cac919272487c8c0f5b8b06908e22b2
a674e094103fe852552ad98d24e45ea3e5457f1f02512706e3a9acac661f15fe
GET /ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: text/css
Content-Length: 132493
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:20:30 GMT
Accept-Ranges: bytes
ETag: "01b3bc65d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 40ed5ec0836e5a03f0c1347b5db96966
40a1f62afbf3c26ea40be6d287122f3ffd19870e
2fd03cac65cc434ddade13acacc1c68a2a4bbc557e3a03777ea20fdd6c91a441
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5453
Cache-Control: max-age=133918
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Etag: "63918bcb-117"
Expires: Sat, 10 Dec 2022 08:32:24 GMT
Last-Modified: Thu, 08 Dec 2022 07:01:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 40ed5ec0836e5a03f0c1347b5db96966
40a1f62afbf3c26ea40be6d287122f3ffd19870e
2fd03cac65cc434ddade13acacc1c68a2a4bbc557e3a03777ea20fdd6c91a441
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5453
Cache-Control: max-age=133918
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Etag: "63918bcb-117"
Expires: Sat, 10 Dec 2022 08:32:24 GMT
Last-Modified: Thu, 08 Dec 2022 07:01:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f9aac3c48c36a018d080099eff89626a
6d339dc5831b5cca7e9596ce692f15e92162389d
05a756fec95a4bb5c2155c2f43368c9bce2024a9b9b6fb72a8659f4fea2d011c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3552
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Last-Modified: Thu, 08 Dec 2022 18:21:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000
138.91.106.25200 OK 9.2 kB URL HTTP/1.1 www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9103869cea82860d702e7f52eaa16b27
e7c435360d6eb3e4a713b683b73e8865e5450155
7df0d2c7c3c7f1871854c58b34928c0e7d149f2974ece5315117fbfd1e0702f9
GET /WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: application/x-javascript
Content-Length: 9192
Connection: keep-alive
Cache-Control: public
Expires: Fri, 01 Dec 2023 01:17:37 GMT
Last-Modified: Wed, 15 Jun 2022 02:06:32 GMT
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css
104.16.124.175200 OK 7.8 kB URL HTTP/2 unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css
IP 104.16.124.175:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (43355)
Hash 0042108bf2a21366eb927ca9830594fa
e8df05386032591e6f2ace957c398626e42ef4d3
ad16bbd6eb4db93f67a28d05447e25044b7a3f908642960b6a551ee103fa3b99
GET /ionicons@4.5.10-0/dist/css/ionicons.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"b09c-0qR+qwWhl5h3I61TCWRhFVmJ40Y"
via: 1.1 fly.io
fly-request-id: 01G4XH18G0VGPQD2F60APCJDXG-fra
cf-cache-status: HIT
age: 15973861
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7767dbbcddf71bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pro.fontawesome.com/releases/v5.14.0/webfonts/fa-solid-900.woff2
104.18.23.52200 OK 141 kB URL HTTP/2 pro.fontawesome.com/releases/v5.14.0/webfonts/fa-solid-900.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 140704, version 331.17301\012- data
Size 141 kB (140704 bytes)
Hash 150120b3d9b448dd116680b66eba9bbe
cbbc03d0fdc2da1fe474f25a0bc10c702049759f
2a2399d510fe0bb91bf136a84c8f186c5bd3a57a2aac94a39bf167850588717f
GET /releases/v5.14.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: font/woff2
content-length: 140704
x-amz-id-2: vDyEItWCrPve45ozC9USjmt1uvpF8UHUp0YchohOmKMh91nojIK/36UM1UNWUuracJByq0GjxFE=
x-amz-request-id: BDG49HFZTGYXMB1M
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:14:37 GMT
etag: "150120b3d9b448dd116680b66eba9bbe"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 11225982
accept-ranges: bytes
server: cloudflare
cf-ray: 7767dbbe2fac1bfe-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 19:22:23 GMT
expires: Wed, 06 Dec 2023 19:22:23 GMT
cache-control: public, max-age=31536000
age: 172683
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1
138.91.106.25200 OK 55 kB URL HTTP/1.1 www.beaumont.org/images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=1402, bps=206, PhotometricIntepretation=RGB, description=Moonbeams December 17 2018, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, width=2100], baseline, precision 8, 360x360, components 3\012- data
Hash b8fd0f3f190a168ee89427418da850a2
34352298045f99239dc564a5f80f623bd9a92a81
e7f8b83eac98e124539ae432711aede3b1b5e048c4e49f3981090e2a607e7319
GET /images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 54812
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-moonbeams-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png
138.91.106.25200 OK 16 kB URL HTTP/1.1 www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 480 x 375, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bd6c75e982e73049bc28fbee15b6cfc
982f8491d309537dae6b62aadf03df46521c8b43
49f83210d2ea05f1f91eb672fadb6273a6b33d5de5f4e67c7bb4525372987396
GET /images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 15974
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=corewell-health_bh-website-hero_tm_mobile-1.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png
138.91.106.25200 OK 23 kB URL HTTP/1.1 www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 1400 x 375, 8-bit/color RGB, non-interlaced\012- data
Hash 043bace5241d1fc871451fef309f9c19
0cd0d7bd4f2a3a5880c5a7cd03bf614f917e5b01
422c627206b36cb3d409c21b8830b322a078e8c74057fae5899d1be8220f5d0d
GET /images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 23191
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=corewell-health_bh-website-hero_tm_desktop-3.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2
138.91.106.25200 OK 759 kB URL HTTP/1.1 www.beaumont.org/images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3840, bps=218, PhotometricIntepretation=RGB, description=Multi-ethnic group of young people on a rooftop party, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, width=5760], baseline, precision 8, 805x455, components 4\012- data
Size 759 kB (758614 bytes)
Hash 53c977ed7fe0faaf22bb4dbcdfc22b04
3e397d59e73275b99b2269af3221890da93b782d
5df79a3a8e57f4794c980df35768feddefa550a0e12dddf2b8ad7af25a12b65a
GET /images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 758614
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=pandemic_to_endemic.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
pro.fontawesome.com/releases/v5.14.0/webfonts/fa-duotone-900.woff2
104.18.23.52200 OK 187 kB URL HTTP/2 pro.fontawesome.com/releases/v5.14.0/webfonts/fa-duotone-900.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 186964, version 331.17301\012- data
Size 187 kB (186964 bytes)
Hash c877e45db0614bba8e121510162149fc
ff18284c03cec54f5148023745668b8ce73b7e0c
20ec55e764f09d132a679b2aa4ef98a9256b58b7a1a79f70dfec5e901160de75
GET /releases/v5.14.0/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: font/woff2
content-length: 186964
x-amz-id-2: 0uU1fOqryfj3gqqEe7jLIOYrNA6ppmQpTmO44vziJn0BZaxyUF9u7UKWfKn06jTLAbIXNpl2kS8=
x-amz-request-id: 8329G2BRVXVGGHJF
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:14:37 GMT
etag: "c877e45db0614bba8e121510162149fc"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7767dbbe0f6e1bfe-OSL
X-Firefox-Spdy: h2
www.beaumont.org/images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2
138.91.106.25200 OK 103 kB URL HTTP/1.1 www.beaumont.org/images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=18, height=2832, bps=0, PhotometricIntepretation=RGB, description=doctor examining teen boy or young man, manufacturer=NIKON CORPORATION, model=NIKON D700, orientation=upper-left, width=4256], progressive, precision 8, 805x443, components 3\012- data
Size 103 kB (102770 bytes)
Hash aaafc290bb401e462073de0a12091b9d
4576c8c56f223d7a69b47669141181dfff2cada2
a22f5763670e1f281bd34a817852194ea793750dafd3921c55ed2d56dc653123
GET /images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 102770
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=covid_and_myocarditis.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237
138.91.106.25200 OK 493 kB URL HTTP/1.1 www.beaumont.org/ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Size 493 kB (493341 bytes)
Hash 28e62f8de8399274ed46caa9e13232f1
b0c299c00860f3fe3728d7fb527f49a9e6b8717a
07304ee0f8ea9c4cc051f1c7203e0c1b0d0e62a57e0b0148dddcfc2018d36137
GET /ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: application/javascript
Content-Length: 493341
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:20:28 GMT
Accept-Ranges: bytes
ETag: "0ee9c55d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/ResourcePackages/Beaumont/img/clipboard.png
138.91.106.25200 OK 2.2 kB URL HTTP/1.1 www.beaumont.org/ResourcePackages/Beaumont/img/clipboard.png
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 15 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash a5ac6f9e12b2e18ff6495b27cf49dd03
aec385ad0719f06b8edcea17f0593874fd3d416d
6031287bc78ceb6a47d680bdcd02454367e6108f83a18a96336c2d0d17f7fb60
GET /ResourcePackages/Beaumont/img/clipboard.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 2160
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg
138.91.106.25200 OK 87 kB URL HTTP/1.1 www.beaumont.org/images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=4589, bps=194, PhotometricIntepretation=RGB, description=Non sedation TAVR procedure. L_R Angie Miller, surgucal tech, Allessandro Vivacqua MD and O.W. Brown MD, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, width=6876], baseline, precision 8, 360x360, components 3\012- data
Hash a8e13ab47675b7315d8b64db7351aca1
1040775fb9a62bba02faa23ee7dab3981df678c6
c9b8e5840b9451b26c78d924838797d384d792bcb32e1d86c9303f3244e6ec70
GET /images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 86994
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-usnwr-surgery-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg
138.91.106.25200 OK 72 kB URL HTTP/1.1 www.beaumont.org/images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=5504, bps=0, compression=none, PhotometricIntepretation=RGB, description=Cropped shot of a senior couple using a digital tablet while going over bills and paperwork together at home, manufacturer=NIKON CORPORATION, model=NIKON D850, orientation=upper-left, width=8256], progressive, precision 8, 360x360, components 3\012- data
Hash ceb2797317a39441b53390dcf62b5082
7d6ed620841d6e9a117451c3bc55676e8f3e53ff
d8e80ee12dd35abfca2adf64d2b349608d874011b8a7cca0278b68859071640a
GET /images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 71628
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-insurance-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2
138.91.106.25200 OK 89 kB URL HTTP/1.1 www.beaumont.org/images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=3417, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=5120], baseline, precision 8, 805x455, components 3\012- data
Hash c15bfa1c3d757cb97aa9213b332afe4e
eda9cfa75401504102c860aa672c92a78763da28
67167b3b6621c1c0875163b3511864546d12d29ba866efd278e946701437b049
GET /images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 88731
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=covid-19_and_obesity_rates.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2
138.91.106.25200 OK 110 kB URL HTTP/1.1 www.beaumont.org/images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=5464, bps=206, PhotometricIntepretation=RGB, description=A mature black woman enjoying outdoors., manufacturer=Canon, model=Canon EOS R5, orientation=upper-left, width=8192], baseline, precision 8, 805x456, components 3\012- data
Size 110 kB (110103 bytes)
Hash d485370e132807f728ba6569e1d8045a
1e2396d6d62807736e7a1774c45762c0853d2bbb
399b2a00baf41e89be3ee39b21601f9eeca5aeb2102fcf899a3a4488b00a8d68
GET /images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 110103
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=obesity_and-severe-covid-symptoms.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226>m=2oebu0&aip=1
108.177.14.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226>m=2oebu0&aip=1
IP 108.177.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.beaumont.org
date: Thu, 08 Dec 2022 19:20:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.beaumont.org/images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2
138.91.106.25200 OK 98 kB URL HTTP/1.1 www.beaumont.org/images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3456, bps=218, PhotometricIntepretation=RGB, description=Closeup woman having heart attack. Woman touching breast and having chest pain after long hours work on computer. Office syndro, manufacturer=OLYMPUS IMAGING CORP., model=E-M10, orientation=upper-left, width=4608], baseline, precision 8, 805x460, components 3\012- data
Hash 66ee8e3818f555d28d33c8588045f56d
79f0a00f2fb56e1d579a292d174d8667db65e340
7f35615bba0a6e266bb5eb00f75320d9abd1b3242641b2cfe641d841c976cb8b
GET /images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 97458
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=heart-chest-pain.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4
138.91.106.25200 OK 3.5 kB URL HTTP/1.1 www.beaumont.org/images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 204 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 39686de8af206857dcf79f9b808d07ed
5f3f66101808b7981129afe99a61bccc80017a34
36974a848db2ac745881e8a37e7224673abd12a31698ea53b7d64b67fa57b529
GET /images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/png
Content-Length: 3502
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=logo.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2
138.91.106.25200 OK 106 kB URL HTTP/1.1 www.beaumont.org/images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=375, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1600], baseline, precision 8, 360x360, components 3\012- data
Size 106 kB (105766 bytes)
Hash 66fd0651de8ebb3a2d3611389204cc2d
80e8d6105e4a53b1f258173d0e3a0cf7aec91ad5
ddaa187da417a65ca93d7ecc4229e8c3b585446c92081d25aa1c206cadb24c94
GET /images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 105766
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-careers-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.beaumont.org/images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2
138.91.106.25200 OK 464 kB URL HTTP/1.1 www.beaumont.org/images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=17, height=0, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, width=0], baseline, precision 8, 805x455, components 3\012- data
Size 464 kB (464526 bytes)
Hash 6ac8a243541ee75a2464cfd684a2fe75
1275ab969c6418ea623441b2fe0b0e01d9bcc300
7acf94e2a48239717a60863a2c1ae7639ce54e8cb52b31df61bf832e4da0d019
GET /images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 464526
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=dr_cowan_freep.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4cd4c16473ff451b91a3952570ef3817
cca6c377b1bb1c272312dc5ae7a7c54b01002723
a6dc60853d75ef5d30c0001518af79249f63aa1e40716f98394f99f63f48a7f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6DC60853D75EF5D30C0001518AF79249F63AA1E40716F98394F99F63F48A7F3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18913
Expires: Fri, 09 Dec 2022 00:35:40 GMT
Date: Thu, 08 Dec 2022 19:20:27 GMT
Connection: keep-alive
www.beaumont.org/favicon.ico
138.91.106.25200 OK 1.4 kB URL HTTP/1.1 www.beaumont.org/favicon.ico
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash c96a2a1e4a45c880a7328e37e2500e6d
8b9d61a11c7b35111f089a424033cac31e423a21
857295ad384b6d17a9ad65f213c3927ba1af2647fdd21687f0d4c803755d79e9
GET /favicon.ico HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/x-icon
Content-Length: 1406
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:50 GMT
Accept-Ranges: bytes
ETag: "07f561f5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
207.189.124.84200 5.4 kB URL HTTP/1.1 info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
IP 207.189.124.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7437)
Hash 83dca92ca1864ef1c63a309705389f30
3d76fa8310cb5c124b4d987ce9bd7d4add5eb944
b9be5e224ae5e9059a67ea0b0ec2e2cb691985926dc7176729a5c536405b8827
GET /acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"; Max-Age=31536000; SameSite=None; Secure; Domain=.beaumont.org; Version=1; Path=/
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Content-Type: text/html;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
www.beaumont.org/MyChart/mychart.dev.html
138.91.106.25200 OK 5.3 kB URL HTTP/1.1 www.beaumont.org/MyChart/mychart.dev.html
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (312), with CRLF line terminators
Hash 5141954357ef8ad596e4b08c84f47732
a50f3b75a345520e8542fc76d5627e1e1dc373a7
77a39d78f589526d20d36574d05d6d87bb5bd978b2d224e86bf823a33e4a87fd
GET /MyChart/mychart.dev.html HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: text/html
Content-Length: 5328
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:15:46 GMT
Accept-Ranges: bytes
ETag: "025f41c5d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/ResourcePackages/Beaumont/ajax-loader.gif
138.91.106.25200 OK 4.2 kB URL HTTP/1.1 www.beaumont.org/ResourcePackages/Beaumont/ajax-loader.gif
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 32 x 32\012- data
Hash c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /ResourcePackages/Beaumont/ajax-loader.gif HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/gif
Content-Length: 4178
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/MyChart/mychart.dev.html
138.91.106.25200 OK 5.3 kB URL HTTP/1.1 www.beaumont.org/MyChart/mychart.dev.html
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (312), with CRLF line terminators
Hash 5141954357ef8ad596e4b08c84f47732
a50f3b75a345520e8542fc76d5627e1e1dc373a7
77a39d78f589526d20d36574d05d6d87bb5bd978b2d224e86bf823a33e4a87fd
GET /MyChart/mychart.dev.html HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: text/html
Content-Length: 5328
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:15:46 GMT
Accept-Ranges: bytes
ETag: "025f41c5d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/ResourcePackages/Beaumont/img/icon-new-user.jpg
138.91.106.25200 OK 1.5 kB URL HTTP/1.1 www.beaumont.org/ResourcePackages/Beaumont/img/icon-new-user.jpg
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 43x30, components 3\012- data
Hash a59ea06ace2c27ed356e5ccf59e63161
f44b1266cf76400f5e74cafb589e2fcbbdb4fe8d
b690ffe3e01cfaf2efd2e4472b641070547fd0547825210530c6a9d4685a6196
GET /ResourcePackages/Beaumont/img/icon-new-user.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/MyChart/mychart.dev.html
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/jpeg
Content-Length: 1475
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js
138.91.106.25200 OK 30 kB URL HTTP/1.1 www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js
IP 138.91.106.25:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 9a524107a1d07783123fed1d63d4754e
acbbfc62eb82bf7ef86a078a43e471aee8f39f41
4d9cf971761e155c96eca80ccb456faceb1e65372d93c9c4c91991882f543ab4
GET /App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/MyChart/mychart.dev.html
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: application/javascript
Content-Length: 30401
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Tue, 01 May 2018 03:09:50 GMT
Accept-Ranges: bytes
ETag: "0931def9e0d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data: https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET
info.beaumont.org/acton/content/form_embed.js
207.189.124.84200 14 kB URL HTTP/1.1 info.beaumont.org/acton/content/form_embed.js
IP 207.189.124.84:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (1228)
Hash 4a00d4d1e851b6c2514d415e20a96516
835396720a34b888d3cc37939d61f7d06f323054
5f75af5be2d02b6489e20b3404f89e479cf67625c244748480d19d4d6d544696
GET /acton/content/form_embed.js HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Accept-Ranges: bytes
ETag: W/"49613-1670022382000"
Last-Modified: Fri, 02 Dec 2022 23:06:22 GMT
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14145
info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459
207.189.124.84200 4.8 kB URL HTTP/1.1 info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459
IP 207.189.124.84:0
Hash 99417a2adc42df72a1f7dca994b7e089
ae617d3f6107bdc909c707689292bb2939cf0dfa
188b49e835d934c806677f85796a6ca9fb79a63c5096a5690ce6047a08821426
GET /cdnr/forpci24/acton/bn/tracker/31459 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
P3P: CP="Act-On does not have a P3P policy. Learn why here: https://act-on.com/p3p-policy/"
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"; Path=/; Max-Age=31536000; Domain=.beaumont.org; SameSite=None; Secure; Version=1
Content-Type: application/javascript;charset=utf-8
Content-Length: 4814
Date: Thu, 08 Dec 2022 19:20:27 GMT
X-Cnection: close
Strict-Transport-Security: max-age=16070400
info.beaumont.org/acton/content/form_flattener.css
207.189.124.84200 7.9 kB URL HTTP/1.1 info.beaumont.org/acton/content/form_flattener.css
IP 207.189.124.84:0
Hash f7fa9caa1170f09b44dd93f931a83df4
074caf412042e5185b583e7ffebf0b665c487679
dbc4c17d00ef5125bf43f2b4ecb9d43c9358084a5dabd98f223a92faa3310b2f
GET /acton/content/form_flattener.css HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Accept-Ranges: bytes
ETag: W/"8569-1670022684000"
Last-Modified: Fri, 02 Dec 2022 23:11:24 GMT
Content-Type: text/css;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1762
info.beaumont.org/acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501
207.189.124.84200 1.9 kB URL HTTP/1.1 info.beaumont.org/acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501
IP 207.189.124.84:0
File type JSON data\012- HTML document, ASCII text, with very long lines (8382), with no line terminators
Hash 52a2b1cc8972337d79e65c2926bdb10e
f6e3a021aba28fdcd681d2fea44483488be46766
7fca6ea527ed2432aaabd8c464a3ba905b643b43117d27dd058aac8c566304f6
GET /acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Origin: https://info.beaumont.org
Access-Control-Allow-Credentials: true
Content-Type: application/json;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
fonts.gstatic.com/s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2
142.250.74.35200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 10016, version 1.0\012- data
Hash efc008ddacd9f630d61b0717e7864257
8c79a2fe12c7e4d80f053e40540e4544744600a5
c2cd3e005de210fcbb5372b4267c5d3d067e0564f017dd5ccba202d040f820d7
GET /s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.beaumont.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 14:54:33 GMT
expires: Sun, 03 Dec 2023 14:54:33 GMT
cache-control: public, max-age=31536000
age: 447955
last-modified: Mon, 11 Jul 2022 21:03:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8274b291596906eb3779dccb82ec41cb
b2ec554df1fa55e18a4316b76ac617dc626b7598
69129be0a1c2e3d1dfc602aea4ef004ea01b3bfa6c5863bd225843472f1bb7c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
216.58.211.4200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 08 Dec 2022 19:20:28 GMT
date: Thu, 08 Dec 2022 19:20:28 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
info.beaumont.org/acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0
207.189.124.84200 43 B URL HTTP/1.1 info.beaumont.org/acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0
IP 207.189.124.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f7f26805de1a1f270e665bf7873d7e19
c32085898c6e36d361d4b8017087de90e1b8465c
2188414d64d2930eb54f4731b6eb9a931358ba625d1cd7535a889409218609d2
GET /acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDILHNthgm_hknDD"; Path=/; Max-Age=31536000; Domain=.beaumont.org; SameSite=None; Secure; Version=1
P3P: CP="Act-On does not have a P3P policy. Learn why here: https://act-on.com/p3p-policy/"
Content-Type: image/gif
Content-Length: 43
Date: Thu, 08 Dec 2022 19:20:27 GMT
X-Cnection: close
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
216.58.211.3200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.beaumont.org
Connection: keep-alive
Referer: https://info.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 106826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans+Condensed:700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans+Condensed:700
IP 142.250.74.74:0
GET /css?family=Open+Sans+Condensed:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 19:20:26 GMT
date: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Work+Sans:400,100,200,300,500,600,700,800
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Work+Sans:400,100,200,300,500,600,700,800
IP 142.250.74.74:0
GET /css?family=Work+Sans:400,100,200,300,500,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 19:20:26 GMT
date: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pro.fontawesome.com/releases/v5.14.0/css/all.css
104.18.23.52200 OK 0 B URL HTTP/2 pro.fontawesome.com/releases/v5.14.0/css/all.css
IP 104.18.23.52:0
GET /releases/v5.14.0/css/all.css HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css
x-amz-id-2: FWdnE9uQe32EGgGzTIixDTNyZ5Xw1WUW23BA3aYegDULBaRJsH9vmE/fWVl9Y6Slb0EgovcHMMg=
x-amz-request-id: GM3HMYFAJX9WSPHJ
last-modified: Mon, 28 Jun 2021 17:12:47 GMT
etag: W/"1dfe138ae594553bc5ddec1f1f1ef389"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 13987585
vary: Accept-Encoding
server: cloudflare
cf-ray: 7767dbbd08ed0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 19838033
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7767dbbcaaaeb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2