Report - beaumont.org.mcas-df.ms

Report Overview

Submitted URL
beaumont.org.mcas-df.ms
IP
20.241.142.98
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-12-08 19:20:33
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	7.7 kB	142.250.74.131
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	796 B	147 kB	142.250.74.168
info.beaumont.org	808890	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	37 kB	207.189.124.84
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	445 B	164 kB	216.58.211.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.7 kB	93.184.220.29
beaumont.org	157196	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	471 B	420 B	138.91.106.25
www.beaumont.org	486004	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	2.9 MB	138.91.106.25
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
mcasproxy.azureedge.net	70367	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	46 kB	23.36.77.27
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	1.5 kB	142.250.74.74
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.0 kB	104.110.10.32
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	8.3 kB	104.16.124.175
pro.fontawesome.com	5887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	330 kB	104.18.23.52
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	996 B	60 kB	142.250.74.35
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.2 kB	216.58.211.4
beaumont.org.mcas-df.ms	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	1.1 kB	20.241.142.98
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.77.32
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	563 B	108.177.14.155
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	872 B	104.18.11.207
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.158.219

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-08	medium	beaumont.org.mcas-df.ms/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-18
Pretty URL www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-18 08:31:54 Times Seen2963 Hash 378087a64e1394fc51f300bb9c11878c 0c3192b500a4fd550e483cf77a49806a5872185b 4fe68fa216176e6d1f4580e924bafecc9f519984ecc06b1a840a08b0d88c95de Loading...

	info.beaumont.org/acton/content/form_embed.js	50 kB	2023-03-08	2023-03-26
Pretty URL info.beaumont.org/acton/content/form_embed.js IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-26 00:59:47 Times Seen3 Hash be2c619247e4b6e8390f1ae03f91cfdb 806bfe770c87bf73b35d68ebe6aa3e080e6682de b96a4e714428c82a770aaac02c4a4cba4b20839ffbda3f4131e6627c9da1d90b Loading...

	beaumont.org.mcas-df.ms/	218 B	2023-03-07	2023-04-02
Pretty URL beaumont.org.mcas-df.ms/ IP 20.241.142.98 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:39 Last Seen2023-04-02 21:16:07 Times Seen7 Hash 7cca7779d1fb10e3dd864f975d923b29 ca0c01ece9871b7b7091f3597df292294794bfe5 583f6a8c106168d819a244880fe39b6b2971cb33e71fb281af269be02ed02baf Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KW3K84	184 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KW3K84 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-08 22:38:20 Times Seen1 Hash b22a5ff268ea107ec4b5760d989d71c5 570502f899bb10cde0fd744d9f7d13d95895f965 2e1daf5e17c3003f53b3f85e8e6d41a744333dfb3313b7581959f0c390421afe Loading...

	www.beaumont.org/?	509 B	2023-03-08	2023-03-10
Pretty URL www.beaumont.org/? IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-10 18:46:04 Times Seen1 Hash 52b2bcc253852fd1a1e31426995e5bc9 c0796f9e3b3e5b8dd2665cddb8cea27272c139ee 87e770b4b59221326db414149fbe7b63a44fb42e76cdbe6a7166098b30e15204 Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 09:45:32 Times Seen36971269 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0	1.2 kB	2023-03-08	2023-03-10
Pretty URL info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-10 18:46:04 Times Seen1 Hash 19556a1a1ffbe1409677bc76f4556f8d fcbd4f6aa2d6003a415f656b9a75abb475e48025 703a12f09ad8acb6e87a42984bfb340cde5a63d70d893e80fbb2a3fef944bc3c Loading...

	info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459	4.8 kB	2023-03-08	2023-03-08
Pretty URL info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459 IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-08 22:38:20 Times Seen1 Hash 99417a2adc42df72a1f7dca994b7e089 ae617d3f6107bdc909c707689292bb2939cf0dfa 188b49e835d934c806677f85796a6ca9fb79a63c5096a5690ce6047a08821426 Loading...

	mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js	39 kB	2023-03-08	2023-03-26
Pretty URL mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js IP 23.36.77.27 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-26 14:36:52 Times Seen2 Hash fd868cc8bac79f7d1a1dc54bb507e673 cdde9e75a8a7eeed048c61ee11b9bd6f3789a488 50c7a6bc126f23bed4e86844e23471bc2b77bdf396bfe93fee9eb364bc99f9f6 Loading...

	mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html#action=store&contextData=https%3A%2F%2Fbeaumont.org%2F&fragment=	69 B	2023-03-07	2023-04-02
Pretty URL mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html#action=store&contextData=https%3A%2F%2Fbeaumont.org%2F&fragment= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:39 Last Seen2023-04-02 21:16:07 Times Seen7 Hash 882c16bf7464b3286c286310f288e654 09d4a8fa40a3d9252accde3eba380bbf4b81e9fa fa81ab133a083e403757e9f27ace4f05f89702c0bc842a944c53e8db6300d45e Loading...

	www.beaumont.org/?	22 B	2023-03-07	2024-04-04
Pretty URL www.beaumont.org/? IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:56 Last Seen2024-04-04 19:52:59 Times Seen37 Hash c84d3ffb9ae2644b42ccf8960641cb83 acb47891da7bf9b2428ff9ea7054c60e8ba4c14e 6d7e86f026265803735b9497ab4a64652a60a562cae56f939c1352eeb26f2b3e Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js	17 kB	2023-03-07	2024-04-19
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-19 18:58:19 Times Seen9862 Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 Loading...

	info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0	374 B	2023-03-08	2023-03-10
Pretty URL info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-10 18:46:04 Times Seen1 Hash 29e511f60745bc96e0ed33fbd3279c06 dd2a02c245e8a3d8ad9426f54d81b3559f5e3355 859a04a8301418d43c050e4283a60f2edbd757e6e45d146ee73f97cc6f165d3a Loading...

	info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0	388 B	2023-03-08	2023-11-22
Pretty URL info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-11-22 05:24:24 Times Seen13 Hash 8454611eab67d473c7367f9767c64f18 35b0d1bf146f54555ae8546763dde7cb398d6880 70507c642d2cf6123fe79328ca21f74f670b68dcbce717da5368a3e0cb2a373c Loading...

	www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js	409 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash b2507198388fcc94ca9e94ed4c5561c5 8853fc86f1c616bd20a73e3e24442036fd90fd2f 02c7565a86d6d3a80295b85161d78fc88d8c79a0e314c0c7777570237a365ed0 Loading...

	beaumont.org.mcas-df.ms/	347 B	2023-03-08	2023-03-08
Pretty URL beaumont.org.mcas-df.ms/ IP 20.241.142.98 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-08 22:38:20 Times Seen1 Hash 07e9eb89f488b3926ddbe0eab79c770c 89207bbd1b614e111a76d829fa6a27e252f6d124 3935fd0be849722b2e8962553027f30c5dc4ba69b84506c01c9418f68e13866a Loading...

	www.beaumont.org/?	500 B	2023-03-08	2023-03-08
Pretty URL www.beaumont.org/? IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-08 22:38:20 Times Seen1 Hash 22c5d313cdf6de3a32ace95a6b8cb82e e378a981edd4f353c2c1d6ec312987e177859915 0c04afcc95db25477e887c57a7c4e5f7c4a5062ead9e793cf39fec75ef2afd6d Loading...

	www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000	9.2 kB	2023-03-08	2024-02-06
Pretty URL www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000 IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:52:55 Last Seen2024-02-06 14:58:24 Times Seen288 Hash eaabed9e53bc7a65ca33847cb5ef6e5a 848ee04c945d52c26594dd82799b734af336c616 70af2c1692797d05c8e4df12a63f1a1034600dfb1e303ebfc32750b7cd8e5630 Loading...

	info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0	4.5 kB	2023-03-08	2023-11-22
Pretty URL info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 IP 207.189.124.84 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-11-22 05:24:24 Times Seen13 Hash ca17179ee30c117e30f65b3937ac6170 221fa8c524cab9d82725a83405b1fc623dc59bda ca7577e5a38d8f915ba341dd93d228cb1951caaafb9fb722215946d649640fcb Loading...

	mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js	4.8 kB	2023-03-08	2023-05-09
Pretty URL mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js IP 23.36.77.27 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:26 Last Seen2023-05-09 04:30:06 Times Seen13 Hash 0e8afb8d8f57ba1ce938091b3db887a1 94a6f21886a6722914000b15958b8f7082e4968b 5f7add0638c6207d7a84267735b9eed3fee3a68696e3ec755fafd5283db0b8f3 Loading...

	www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c	245 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-08 22:38:20 Times Seen1 Hash 33ebdb190ca9c6e4b10585dd7f43e5eb 52f9e0237b1a916138060b0f5ae34bf361a2a7dd f710e0461c03b5edd019dbb62fab033a9964d9ab73d3bf2cbd01f06204cfeff8 Loading...

	www.beaumont.org/MyChart/mychart.dev.html	8.9 kB	2023-03-08	2023-03-10
Pretty URL www.beaumont.org/MyChart/mychart.dev.html IP 138.91.106.25 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-10 18:46:04 Times Seen1 Hash d2114eef6e348de3216930a6f123e7dd 5cb8b2eed1c1afbbbb703eb6e0e6c6441f7ea45c bbb9c129858b50097d3105be719d216934013c24cc8c1a20e307b84a2dd3057d Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-08	2023-03-17
Pretty URL www.google.com/recaptcha/api.js IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash a6d9f11246866ef6247a51ae9116cf53 1ba0ec4e57dd5d3845edb729fea44e6f709c7aca 60eac53947f6a289ca775891e56b3a4a1084cb8763fe2bf4220b759a58761f1d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 6a75e0d971e90198058d3191c1b94988	438 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-12 14:30:10 Times Seen1 Hash 6a75e0d971e90198058d3191c1b94988 26602a91e731de1a7f8a599b7a106ddd2abf3055 3a2303e060bacd5ebddbf53b642d9304488d1bb4f4cb76039161f726828b3217 Loading...

	#2 Eval - c5429a11cf0bf5fc81ee25eaec7031ec	119 B	2023-03-08	2023-03-12
Pretty Observations First Seen2023-03-08 22:38:20 Last Seen2023-03-12 14:30:10 Times Seen1 Hash c5429a11cf0bf5fc81ee25eaec7031ec 270d6a3f3166bd0710edc79654e67069b5e72250 22aca13e8811bcc9aa183b26fdac7e8473d73e3460d0695a8fefa51e6ef78a5b Loading...

HTTP Transactions (85)

URL IP Response Size

beaumont.org.mcas-df.ms/

20.241.142.98

200 OK

580 B

URL HTTP/1.1
beaumont.org.mcas-df.ms/
IP
20.241.142.98:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
580 B (580 bytes)
Hash
49af74a95928d2b36bce3661d335055f
d3204ddf24850957aee379316ae1858f8221ee84
a34b1e3dce07b78450d0fc8981cf316bc5c2d1d910a6bd96047bf52fd3114adc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: beaumont.org.mcas-df.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: openresty
Date: Thu, 08 Dec 2022 19:20:21 GMT
X-MCAS-Request-Id: 1667cfbb67a2f1074748fca83b10464c
Expires: Mon, 01-Jan-1990 00:00:00 GMT
Strict-Transport-Security: max-age=31536000
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
X-MCAS-Upstream-Time: n/a
X-MCAS-Processing-Time: 6
Content-Encoding: gzip
X-MCAS-Cache-Status: MISS

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2588
Expires: Thu, 08 Dec 2022 20:03:30 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6977
Expires: Thu, 08 Dec 2022 21:16:39 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 19:08:13 GMT
content-type: application/json
age: 729
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6429
Expires: Thu, 08 Dec 2022 21:07:31 GMT
Date: Thu, 08 Dec 2022 19:20:22 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Nr4A9+f1SIsiXitifgvEHV3C205zh4tLdEDavq/EXVsCkuQnFxa3ybTducUcdpTqoFYcipDsIvs=
x-amz-request-id: 0HRADTVVJ9VRTA8V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 18:48:01 GMT
age: 1941
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 19:20:22 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 19:07:55 GMT
age: 747
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5880
Cache-Control: max-age=141870
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:22 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:44:52 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js

23.36.77.27

200 OK

4.8 kB

URL HTTP/2
mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-store-helper.min.js
IP
23.36.77.27:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (4832), with no line terminators
Size
4.8 kB (4832 bytes)
Hash
0e8afb8d8f57ba1ce938091b3db887a1
94a6f21886a6722914000b15958b8f7082e4968b
5f7add0638c6207d7a84267735b9eed3fee3a68696e3ec755fafd5283db0b8f3

HTTP Headers

GET /proxyweb/1.26.10/js/session-context-store-helper.min.js HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 4832
content-type: application/javascript
content-md5: Dor7jY9XuhzpOAkbPbiHoQ==
last-modified: Thu, 08 Dec 2022 17:26:12 GMT
etag: 0x8DAD9414D84AB77
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2802ff3e-401e-0032-1d3a-0b2429000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.43.158.219

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.158.219:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6Env8oceflDUtRPzAIDfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W13C5ASG/mX79NvschXm1lhpKGc=

mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html

23.36.77.27

200 OK

209 B

URL HTTP/2
mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html
IP
23.36.77.27:0
ASN
#20940 Akamai International B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
209 B (209 bytes)
Hash
c5c43ffb1fa2e36c593f047cf3025ce0
6895734c802fc8f6afcfd980dd22a7de7817718d
a3c954e6d1422643abfe41e74b726918caa087460903ec4267bc4e5293132451

HTTP Headers

GET /proxyweb/1.26.10/html/session-context-restore.html HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 209
content-type: text/html
content-md5: xcQ/+x+i42xZPwR88wJc4A==
last-modified: Thu, 08 Dec 2022 17:27:26 GMT
etag: 0x8DAD94179D7C30D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd47f1a-a01e-002c-703a-0b3616000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31535965
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2

mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js

23.36.77.27

200 OK

39 kB

URL HTTP/2
mcasproxy.azureedge.net/proxyweb/1.26.10/js/session-context-restore.min.js
IP
23.36.77.27:0
ASN
#20940 Akamai International B.V.

File type
C source, ASCII text, with very long lines (38543)
Size
39 kB (38628 bytes)
Hash
fd868cc8bac79f7d1a1dc54bb507e673
cdde9e75a8a7eeed048c61ee11b9bd6f3789a488
50c7a6bc126f23bed4e86844e23471bc2b77bdf396bfe93fee9eb364bc99f9f6

HTTP Headers

GET /proxyweb/1.26.10/js/session-context-restore.min.js HTTP/1.1
Host: mcasproxy.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mcasproxy.azureedge.net/proxyweb/1.26.10/html/session-context-restore.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-length: 38628
content-type: application/javascript
content-md5: /YaMyLrHn30aHcVLtQfmcw==
last-modified: Thu, 08 Dec 2022 17:26:12 GMT
etag: 0x8DAD9414DC3A70B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd47f25-a01e-002c-783a-0b3616000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31535959
date: Thu, 08 Dec 2022 19:20:23 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2726
Expires: Thu, 08 Dec 2022 20:05:50 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7801 bytes)
Hash
8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 72229
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12534 bytes)
Hash
57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 72986
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8659 bytes)
Hash
b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 71225
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9596 bytes)
Hash
c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 75542
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: etWGqF-8tXSwaeZVTPK4g9CV5ZbdYv5ZDjF5Yx2PSNnTsreewpbhdA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:48:08 GMT
age: 37936
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7268 bytes)
Hash
24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 72459
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
93fa5274d7a5dbcba47e96a88df2dec5
a36f4ba006917b9f297427890f9bf605c885670f
3944e45dc727a640753ed198b231e3e8ecb7f5db9c1473f5836db30b25d69dd1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "3944E45DC727A640753ED198B231E3E8ECB7F5DB9C1473F5836DB30B25D69DD1"
Last-Modified: Thu, 08 Dec 2022 18:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Thu, 08 Dec 2022 20:20:24 GMT
Date: Thu, 08 Dec 2022 19:20:24 GMT
Connection: keep-alive

beaumont.org/?

138.91.106.25

301 Moved Permanently

195 B

URL HTTP/1.1
beaumont.org/?
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
195 B (195 bytes)
Hash
e0d1a4a70b7864dd9ba22ff15341cfa0
32346cf022d83679b2f437eb9b02092168bafa8c
a76004959bdd8402fe10509e667dd20ad3e7390f6e8097cc44ef935c908e0e36

HTTP Headers

GET /? HTTP/1.1
Host: beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://beaumont.org.mcas-df.ms/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: Microsoft-Azure-Application-Gateway/v2
Date: Thu, 08 Dec 2022 19:20:24 GMT
Content-Type: text/html
Content-Length: 195
Connection: keep-alive
Location: https://www.beaumont.org/?

www.beaumont.org/?

138.91.106.25

200 OK

74 kB

URL HTTP/1.1
www.beaumont.org/?
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1979), with CRLF, LF line terminators
Size
74 kB (73834 bytes)
Hash
4185fefefb1b947ab1a04766d29a4f75
8c7885ab8090eae0e5a0432f1ae7e0bc655d3c7b
4e607b84abd3060cc53accd056e054998081d622ccf02051081dda0e97e528b5

HTTP Headers

GET /? HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://beaumont.org.mcas-df.ms/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 73834
Connection: keep-alive
Set-Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; Path=/; SameSite=None; Secure
ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; Path=/
ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; path=/; secure; HttpOnly; SameSite=Lax
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-KW3K84

142.250.74.168

200 OK

64 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-KW3K84
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (14971)
Size
64 kB (64220 bytes)
Hash
9628341400908f097995ec1f7e0f8326
3559e890ff5df515f304014036fdb44d16119bac
9e4923ec0db5062644c9088b2fd5f5dd1d945f0bd7fa04b0a346b916f4ff8c76

HTTP Headers

GET /gtm.js?id=GTM-KW3K84 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 19:20:26 GMT
expires: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64220
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (37615)
Size
81 kB (80981 bytes)
Hash
4f81f216758668a655e882f2dea2f374
b2221b82e33de9823e785a0f7fb29a0bf88f93ae
93b40753a1d2f45ed6d8ced05852edb9ac5b871b241d9b7424eed4a69de64f39

HTTP Headers

GET /gtag/js?id=G-MMRF97YMCQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 19:20:26 GMT
expires: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80981
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237

138.91.106.25

200 OK

132 kB

URL HTTP/1.1
www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (64593)
Size
132 kB (132493 bytes)
Hash
f89481ceadd2587e7443d6df691aa045
ad3a507c7cac919272487c8c0f5b8b06908e22b2
a674e094103fe852552ad98d24e45ea3e5457f1f02512706e3a9acac661f15fe

HTTP Headers

GET /ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: text/css
Content-Length: 132493
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:20:30 GMT
Accept-Ranges: bytes
ETag: "01b3bc65d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
40ed5ec0836e5a03f0c1347b5db96966
40a1f62afbf3c26ea40be6d287122f3ffd19870e
2fd03cac65cc434ddade13acacc1c68a2a4bbc557e3a03777ea20fdd6c91a441

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5453
Cache-Control: max-age=133918
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Etag: "63918bcb-117"
Expires: Sat, 10 Dec 2022 08:32:24 GMT
Last-Modified: Thu, 08 Dec 2022 07:01:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
40ed5ec0836e5a03f0c1347b5db96966
40a1f62afbf3c26ea40be6d287122f3ffd19870e
2fd03cac65cc434ddade13acacc1c68a2a4bbc557e3a03777ea20fdd6c91a441

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5453
Cache-Control: max-age=133918
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Etag: "63918bcb-117"
Expires: Sat, 10 Dec 2022 08:32:24 GMT
Last-Modified: Thu, 08 Dec 2022 07:01:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f9aac3c48c36a018d080099eff89626a
6d339dc5831b5cca7e9596ce692f15e92162389d
05a756fec95a4bb5c2155c2f43368c9bce2024a9b9b6fb72a8659f4fea2d011c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3552
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Last-Modified: Thu, 08 Dec 2022 18:21:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000

138.91.106.25

200 OK

9.2 kB

URL HTTP/1.1
www.beaumont.org/WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
9.2 kB (9192 bytes)
Hash
9103869cea82860d702e7f52eaa16b27
e7c435360d6eb3e4a713b683b73e8865e5450155
7df0d2c7c3c7f1871854c58b34928c0e7d149f2974ece5315117fbfd1e0702f9

HTTP Headers

GET /WebResource.axd?d=Oiw5o8i74rDb2VpVaCaMSpVOhIXb1qvzgCC29kML8oXwPJ0mQCHacos0Mdn7eK2kSDkfO8TP_-402_fMsHBCTHgZBynVWy4bLHHStKRQDp3dt9AeIGABAqI05SyiefTI6B2xPVxx0w2xXyCd6EnJJkYc4omiY58jEHCzgtiZzKePlGvRh5F7KDZ3Kj4scPJG7usnnKbYM2ixqOCEkk1EgPOh7lx9QMk8Xxr-n4x73io1&t=637908267920000000 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: application/x-javascript
Content-Length: 9192
Connection: keep-alive
Cache-Control: public
Expires: Fri, 01 Dec 2023 01:17:37 GMT
Last-Modified: Wed, 15 Jun 2022 02:06:32 GMT
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css

104.16.124.175

200 OK

7.8 kB

URL HTTP/2
unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (43355)
Size
7.8 kB (7768 bytes)
Hash
0042108bf2a21366eb927ca9830594fa
e8df05386032591e6f2ace957c398626e42ef4d3
ad16bbd6eb4db93f67a28d05447e25044b7a3f908642960b6a551ee103fa3b99

HTTP Headers

GET /ionicons@4.5.10-0/dist/css/ionicons.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"b09c-0qR+qwWhl5h3I61TCWRhFVmJ40Y"
via: 1.1 fly.io
fly-request-id: 01G4XH18G0VGPQD2F60APCJDXG-fra
cf-cache-status: HIT
age: 15973861
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7767dbbcddf71bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pro.fontawesome.com/releases/v5.14.0/webfonts/fa-solid-900.woff2

104.18.23.52

200 OK

141 kB

URL HTTP/2
pro.fontawesome.com/releases/v5.14.0/webfonts/fa-solid-900.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 140704, version 331.17301\012- data
Size
141 kB (140704 bytes)
Hash
150120b3d9b448dd116680b66eba9bbe
cbbc03d0fdc2da1fe474f25a0bc10c702049759f
2a2399d510fe0bb91bf136a84c8f186c5bd3a57a2aac94a39bf167850588717f

HTTP Headers

GET /releases/v5.14.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: font/woff2
content-length: 140704
x-amz-id-2: vDyEItWCrPve45ozC9USjmt1uvpF8UHUp0YchohOmKMh91nojIK/36UM1UNWUuracJByq0GjxFE=
x-amz-request-id: BDG49HFZTGYXMB1M
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:14:37 GMT
etag: "150120b3d9b448dd116680b66eba9bbe"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 11225982
accept-ranges: bytes
server: cloudflare
cf-ray: 7767dbbe2fac1bfe-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

142.250.74.35

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Size
48 kB (47728 bytes)
Hash
b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73

HTTP Headers

GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 19:22:23 GMT
expires: Wed, 06 Dec 2023 19:22:23 GMT
cache-control: public, max-age=31536000
age: 172683
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.beaumont.org/images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1

138.91.106.25

200 OK

55 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=1402, bps=206, PhotometricIntepretation=RGB, description=Moonbeams December 17 2018, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, width=2100], baseline, precision 8, 360x360, components 3\012- data
Size
55 kB (54812 bytes)
Hash
b8fd0f3f190a168ee89427418da850a2
34352298045f99239dc564a5f80f623bd9a92a81
e7f8b83eac98e124539ae432711aede3b1b5e048c4e49f3981090e2a607e7319

HTTP Headers

GET /images/default-source/home/beaumont-homepage-feature-moonbeams-360x360.jpg?sfvrsn=5d7c41fb_1 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 54812
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-moonbeams-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png

138.91.106.25

200 OK

16 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 480 x 375, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15974 bytes)
Hash
9bd6c75e982e73049bc28fbee15b6cfc
982f8491d309537dae6b62aadf03df46521c8b43
49f83210d2ea05f1f91eb672fadb6273a6b33d5de5f4e67c7bb4525372987396

HTTP Headers

GET /images/default-source/bhsh/corewell-health_bh-website-hero_tm_mobile-1.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 15974
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=corewell-health_bh-website-hero_tm_mobile-1.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png

138.91.106.25

200 OK

23 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 1400 x 375, 8-bit/color RGB, non-interlaced\012- data
Size
23 kB (23191 bytes)
Hash
043bace5241d1fc871451fef309f9c19
0cd0d7bd4f2a3a5880c5a7cd03bf614f917e5b01
422c627206b36cb3d409c21b8830b322a078e8c74057fae5899d1be8220f5d0d

HTTP Headers

GET /images/default-source/bhsh/corewell-health_bh-website-hero_tm_desktop-3.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 23191
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=corewell-health_bh-website-hero_tm_desktop-3.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2

138.91.106.25

200 OK

759 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3840, bps=218, PhotometricIntepretation=RGB, description=Multi-ethnic group of young people on a rooftop party, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, width=5760], baseline, precision 8, 805x455, components 4\012- data
Size
759 kB (758614 bytes)
Hash
53c977ed7fe0faaf22bb4dbcdfc22b04
3e397d59e73275b99b2269af3221890da93b782d
5df79a3a8e57f4794c980df35768feddefa550a0e12dddf2b8ad7af25a12b65a

HTTP Headers

GET /images/default-source/covid-19/pandemic_to_endemic.jpg?sfvrsn=81e7ffb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 758614
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=pandemic_to_endemic.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

pro.fontawesome.com/releases/v5.14.0/webfonts/fa-duotone-900.woff2

104.18.23.52

200 OK

187 kB

URL HTTP/2
pro.fontawesome.com/releases/v5.14.0/webfonts/fa-duotone-900.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 186964, version 331.17301\012- data
Size
187 kB (186964 bytes)
Hash
c877e45db0614bba8e121510162149fc
ff18284c03cec54f5148023745668b8ce73b7e0c
20ec55e764f09d132a679b2aa4ef98a9256b58b7a1a79f70dfec5e901160de75

HTTP Headers

GET /releases/v5.14.0/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: font/woff2
content-length: 186964
x-amz-id-2: 0uU1fOqryfj3gqqEe7jLIOYrNA6ppmQpTmO44vziJn0BZaxyUF9u7UKWfKn06jTLAbIXNpl2kS8=
x-amz-request-id: 8329G2BRVXVGGHJF
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:14:37 GMT
etag: "c877e45db0614bba8e121510162149fc"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7767dbbe0f6e1bfe-OSL
X-Firefox-Spdy: h2

www.beaumont.org/images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2

138.91.106.25

200 OK

103 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=18, height=2832, bps=0, PhotometricIntepretation=RGB, description=doctor examining teen boy or young man, manufacturer=NIKON CORPORATION, model=NIKON D700, orientation=upper-left, width=4256], progressive, precision 8, 805x443, components 3\012- data
Size
103 kB (102770 bytes)
Hash
aaafc290bb401e462073de0a12091b9d
4576c8c56f223d7a69b47669141181dfff2cada2
a22f5763670e1f281bd34a817852194ea793750dafd3921c55ed2d56dc653123

HTTP Headers

GET /images/default-source/covid-19/covid_and_myocarditis.jpg?sfvrsn=adcd7efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 102770
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=covid_and_myocarditis.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237

138.91.106.25

200 OK

493 kB

URL HTTP/1.1
www.beaumont.org/ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
493 kB (493341 bytes)
Hash
28e62f8de8399274ed46caa9e13232f1
b0c299c00860f3fe3728d7fb527f49a9e6b8717a
07304ee0f8ea9c4cc051f1c7203e0c1b0d0e62a57e0b0148dddcfc2018d36137

HTTP Headers

GET /ResourcePackages/Beaumont/js/combined.js?v=1.0.8369.40237 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: application/javascript
Content-Length: 493341
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:20:28 GMT
Accept-Ranges: bytes
ETag: "0ee9c55d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/ResourcePackages/Beaumont/img/clipboard.png

138.91.106.25

200 OK

2.2 kB

URL HTTP/1.1
www.beaumont.org/ResourcePackages/Beaumont/img/clipboard.png
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 15 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2160 bytes)
Hash
a5ac6f9e12b2e18ff6495b27cf49dd03
aec385ad0719f06b8edcea17f0593874fd3d416d
6031287bc78ceb6a47d680bdcd02454367e6108f83a18a96336c2d0d17f7fb60

HTTP Headers

GET /ResourcePackages/Beaumont/img/clipboard.png HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/png
Content-Length: 2160
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg

138.91.106.25

200 OK

87 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=4589, bps=194, PhotometricIntepretation=RGB, description=Non sedation TAVR procedure. L_R Angie Miller, surgucal tech, Allessandro Vivacqua MD and O.W. Brown MD, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, width=6876], baseline, precision 8, 360x360, components 3\012- data
Size
87 kB (86994 bytes)
Hash
a8e13ab47675b7315d8b64db7351aca1
1040775fb9a62bba02faa23ee7dab3981df678c6
c9b8e5840b9451b26c78d924838797d384d792bcb32e1d86c9303f3244e6ec70

HTTP Headers

GET /images/default-source/home/beaumont-homepage-feature-usnwr-surgery-360x360.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 86994
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-usnwr-surgery-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg

138.91.106.25

200 OK

72 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=5504, bps=0, compression=none, PhotometricIntepretation=RGB, description=Cropped shot of a senior couple using a digital tablet while going over bills and paperwork together at home, manufacturer=NIKON CORPORATION, model=NIKON D850, orientation=upper-left, width=8256], progressive, precision 8, 360x360, components 3\012- data
Size
72 kB (71628 bytes)
Hash
ceb2797317a39441b53390dcf62b5082
7d6ed620841d6e9a117451c3bc55676e8f3e53ff
d8e80ee12dd35abfca2adf64d2b349608d874011b8a7cca0278b68859071640a

HTTP Headers

GET /images/default-source/home/beaumont-homepage-feature-insurance-360x360.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 71628
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-insurance-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2

138.91.106.25

200 OK

89 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=3417, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=5120], baseline, precision 8, 805x455, components 3\012- data
Size
89 kB (88731 bytes)
Hash
c15bfa1c3d757cb97aa9213b332afe4e
eda9cfa75401504102c860aa672c92a78763da28
67167b3b6621c1c0875163b3511864546d12d29ba866efd278e946701437b049

HTTP Headers

GET /images/default-source/covid-19/covid-19_and_obesity_rates.jpg?sfvrsn=c57efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 88731
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=covid-19_and_obesity_rates.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2

138.91.106.25

200 OK

110 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=5464, bps=206, PhotometricIntepretation=RGB, description=A mature black woman enjoying outdoors., manufacturer=Canon, model=Canon EOS R5, orientation=upper-left, width=8192], baseline, precision 8, 805x456, components 3\012- data
Size
110 kB (110103 bytes)
Hash
d485370e132807f728ba6569e1d8045a
1e2396d6d62807736e7a1774c45762c0853d2bbb
399b2a00baf41e89be3ee39b21601f9eeca5aeb2102fcf899a3a4488b00a8d68

HTTP Headers

GET /images/default-source/covid-19/obesity_and-severe-covid-symptoms.jpg?sfvrsn=cc57efb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 110103
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=obesity_and-severe-covid-symptoms.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226&gtm=2oebu0&aip=1

108.177.14.155

204 No Content

0 B

URL HTTP/2
stats.g.doubleclick.net/g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226&gtm=2oebu0&aip=1
IP
108.177.14.155:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-MMRF97YMCQ&cid=985430721.1670527226&gtm=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beaumont.org
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.beaumont.org
date: Thu, 08 Dec 2022 19:20:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.beaumont.org/images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2

138.91.106.25

200 OK

98 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3456, bps=218, PhotometricIntepretation=RGB, description=Closeup woman having heart attack. Woman touching breast and having chest pain after long hours work on computer. Office syndro, manufacturer=OLYMPUS IMAGING CORP., model=E-M10, orientation=upper-left, width=4608], baseline, precision 8, 805x460, components 3\012- data
Size
98 kB (97458 bytes)
Hash
66ee8e3818f555d28d33c8588045f56d
79f0a00f2fb56e1d579a292d174d8667db65e340
7f35615bba0a6e266bb5eb00f75320d9abd1b3242641b2cfe641d841c976cb8b

HTTP Headers

GET /images/default-source/heart/heart-chest-pain.jpg?sfvrsn=24a7cfb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 97458
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=heart-chest-pain.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4

138.91.106.25

200 OK

3.5 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 204 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3502 bytes)
Hash
39686de8af206857dcf79f9b808d07ed
5f3f66101808b7981129afe99a61bccc80017a34
36974a848db2ac745881e8a37e7224673abd12a31698ea53b7d64b67fa57b529

HTTP Headers

GET /images/default-source/default-album/logo.png?sfvrsn=d43d7fef_4 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/png
Content-Length: 3502
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=logo.png
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

www.beaumont.org/images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2

138.91.106.25

200 OK

106 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=375, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1600], baseline, precision 8, 360x360, components 3\012- data
Size
106 kB (105766 bytes)
Hash
66fd0651de8ebb3a2d3611389204cc2d
80e8d6105e4a53b1f258173d0e3a0cf7aec91ad5
ddaa187da417a65ca93d7ecc4229e8c3b585446c92081d25aa1c206cadb24c94

HTTP Headers

GET /images/default-source/home/beaumont-homepage-feature-careers-360x360.jpg?sfvrsn=468345fb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 105766
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=beaumont-homepage-feature-careers-360x360.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.beaumont.org/images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2

138.91.106.25

200 OK

464 kB

URL HTTP/1.1
www.beaumont.org/images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=17, height=0, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, width=0], baseline, precision 8, 805x455, components 3\012- data
Size
464 kB (464526 bytes)
Hash
6ac8a243541ee75a2464cfd684a2fe75
1275ab969c6418ea623441b2fe0b0e01d9bcc300
7acf94e2a48239717a60863a2c1ae7639ce54e8cb52b31df61bf832e4da0d019

HTTP Headers

GET /images/default-source/heart/dr_cowan_freep.jpg?sfvrsn=5ccc7ffb_2 HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:26 GMT
Content-Type: image/jpeg
Content-Length: 464526
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Disposition: inline; filename=dr_cowan_freep.jpg
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4cd4c16473ff451b91a3952570ef3817
cca6c377b1bb1c272312dc5ae7a7c54b01002723
a6dc60853d75ef5d30c0001518af79249f63aa1e40716f98394f99f63f48a7f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6DC60853D75EF5D30C0001518AF79249F63AA1E40716F98394F99F63F48A7F3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18913
Expires: Fri, 09 Dec 2022 00:35:40 GMT
Date: Thu, 08 Dec 2022 19:20:27 GMT
Connection: keep-alive

www.beaumont.org/favicon.ico

138.91.106.25

200 OK

1.4 kB

URL HTTP/1.1
www.beaumont.org/favicon.ico
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Size
1.4 kB (1406 bytes)
Hash
c96a2a1e4a45c880a7328e37e2500e6d
8b9d61a11c7b35111f089a424033cac31e423a21
857295ad384b6d17a9ad65f213c3927ba1af2647fdd21687f0d4c803755d79e9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/x-icon
Content-Length: 1406
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:50 GMT
Accept-Ranges: bytes
ETag: "07f561f5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0

207.189.124.84

200

5.4 kB

URL HTTP/1.1
info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7437)
Size
5.4 kB (5428 bytes)
Hash
83dca92ca1864ef1c63a309705389f30
3d76fa8310cb5c124b4d987ce9bd7d4add5eb944
b9be5e224ae5e9059a67ea0b0ec2e2cb691985926dc7176729a5c536405b8827

HTTP Headers

GET /acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/1.1 200 
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"; Max-Age=31536000; SameSite=None; Secure; Domain=.beaumont.org; Version=1; Path=/
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Content-Type: text/html;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

www.beaumont.org/MyChart/mychart.dev.html

138.91.106.25

200 OK

5.3 kB

URL HTTP/1.1
www.beaumont.org/MyChart/mychart.dev.html
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (312), with CRLF line terminators
Size
5.3 kB (5328 bytes)
Hash
5141954357ef8ad596e4b08c84f47732
a50f3b75a345520e8542fc76d5627e1e1dc373a7
77a39d78f589526d20d36574d05d6d87bb5bd978b2d224e86bf823a33e4a87fd

HTTP Headers

GET /MyChart/mychart.dev.html HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: text/html
Content-Length: 5328
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:15:46 GMT
Accept-Ranges: bytes
ETag: "025f41c5d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/ResourcePackages/Beaumont/ajax-loader.gif

138.91.106.25

200 OK

4.2 kB

URL HTTP/1.1
www.beaumont.org/ResourcePackages/Beaumont/ajax-loader.gif
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 32 x 32\012- data
Size
4.2 kB (4178 bytes)
Hash
c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b

HTTP Headers

GET /ResourcePackages/Beaumont/ajax-loader.gif HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/ResourcePackages/Beaumont/styles.min.css?v=1.0.8369.40237
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/gif
Content-Length: 4178
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/MyChart/mychart.dev.html

138.91.106.25

200 OK

5.3 kB

URL HTTP/1.1
www.beaumont.org/MyChart/mychart.dev.html
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (312), with CRLF line terminators
Size
5.3 kB (5328 bytes)
Hash
5141954357ef8ad596e4b08c84f47732
a50f3b75a345520e8542fc76d5627e1e1dc373a7
77a39d78f589526d20d36574d05d6d87bb5bd978b2d224e86bf823a33e4a87fd

HTTP Headers

GET /MyChart/mychart.dev.html HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/?
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: text/html
Content-Length: 5328
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 08:15:46 GMT
Accept-Ranges: bytes
ETag: "025f41c5d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/ResourcePackages/Beaumont/img/icon-new-user.jpg

138.91.106.25

200 OK

1.5 kB

URL HTTP/1.1
www.beaumont.org/ResourcePackages/Beaumont/img/icon-new-user.jpg
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 43x30, components 3\012- data
Size
1.5 kB (1475 bytes)
Hash
a59ea06ace2c27ed356e5ccf59e63161
f44b1266cf76400f5e74cafb589e2fcbbdb4fe8d
b690ffe3e01cfaf2efd2e4472b641070547fd0547825210530c6a9d4685a6196

HTTP Headers

GET /ResourcePackages/Beaumont/img/icon-new-user.jpg HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/MyChart/mychart.dev.html
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: image/jpeg
Content-Length: 1475
Connection: keep-alive
Cache-Control: max-age=2678400
Last-Modified: Thu, 01 Dec 2022 08:15:48 GMT
Accept-Ranges: bytes
ETag: "052251e5d5d91:0"
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js

138.91.106.25

200 OK

30 kB

URL HTTP/1.1
www.beaumont.org/App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js
IP
138.91.106.25:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
30 kB (30401 bytes)
Hash
9a524107a1d07783123fed1d63d4754e
acbbfc62eb82bf7ef86a078a43e471aee8f39f41
4d9cf971761e155c96eca80ccb456faceb1e65372d93c9c4c91991882f543ab4

HTTP Headers

GET /App_Master/Beaumont-assets/js/vendor/jquery-3.3.1.min.js HTTP/1.1
Host: www.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beaumont.org/MyChart/mychart.dev.html
Connection: keep-alive
Cookie: ApplicationGatewayAffinityCORS=657fdcdfbdaa255f0d38b6186356409b; ApplicationGatewayAffinity=657fdcdfbdaa255f0d38b6186356409b; ASP.NET_SessionId=lw3ankmlv0en3shlx5rzlook; _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; sf-prs-ss=638061240265170000; sf-prs-lu=https://www.beaumont.org/?; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:20:27 GMT
Content-Type: application/javascript
Content-Length: 30401
Connection: keep-alive
Cache-Control: max-age=2678400
Content-Encoding: gzip
Last-Modified: Tue, 01 May 2018 03:09:50 GMT
Accept-Ranges: bytes
ETag: "0931def9e0d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.gstatic.com  www.google.com *.google-analytics.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://cdn.insight.sitefinity.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org https://code.jquery.com https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js https://cookie-cdn.cookiepro.com/scripttemplates/otSDKStub.js https://kendo.cdn.telerik.com/2017.2.504/js/kendo.all.min.js https://gateway.answerscloud.com/beaumont-org/production/gateway.min.js https://gateway.foresee.com/sites/beaumont-org/production/gateway.min.js https://cookie-cdn.cookiepro.com/ https://cdnjs.cloudflare.com/ajax/libs/bootstrap/5.0.2/js/bootstrap.min.js https://cdn.kyruus.com https://api.enqbator.com https://w.usabilla.com https://api.usabilla.com https://d6tizftlrpuof.cloudfront.net https://www.googletagmanager.com http://cdn.b0e8.com https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://kit.fontawesome.com *.sharethis.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net platform.twitter.com/css/ *.twimg.com https://unpkg.com/ionicons@4.5.10-0/dist/css/ionicons.min.css https://maxcdn.bootstrapcdn.com/ https://pro.fontawesome.com/releases/v5.14.0/css/all.css https://use.fontawesome.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0/css/all.min.css https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net https://cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:  https://maxcdn.bootstrapcdn.com/ https://unpkg.com/ https://pro.fontawesome.com/ https://use.fontawesome.com/ https://cdn.jsdelivr.net https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cdn.kyruus.com https://d6tizftlrpuof.cloudfront.net; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com platform.tumblr.com web.facebook.com www.facebook.com https://delicious.com www.redditstatic.com www.linkedin.com i.ytimg.com https://syndication.twitter.com https://static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png https://dec.azureedge.net https://*.insight.sitefinity.com https://*.dec.sitefinity.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: *.eloqua.com track.hubspot.com https://www.beaumont.org/images/ https://kloggyr-service.kyruus.com https://d6tizftlrpuof.cloudfront.net https://w.usabilla.com https://cdn-images.kyruus.com https://cdn.kyruus.com http://a.b0e8.com/brightedge3.php https://a1.b0e8.com/brightedge3.php https://kyruus-app-static.kyruus.com https://www.beaumont.edu https://www.beaumont.org https://a1.b0e8.com *.sharethis.com; media-src 'self' data: blob:; frame-src 'self' https://www.beaumont.org/MyChart/mychart.dev.html https://info.beaumont.org https://info.beaumont.org https://www.youtube.com https://d6tizftlrpuof.cloudfront.net https://mroexpress.mrocorp.com https://secure.beaumont.org https://w.soundcloud.com/ https://www.google.com https://e.issuu.com https://www.auntbertha.com; child-src 'self' https://platform.twitter.com/ https://syndication.twitter.com/ https://www.youtube.com/ https://www.youtube-nocookie.com https://player.vimeo.com/ https://w.soundcloud.com/ apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com https://info.beaumont.org/; connect-src 'self' accounts.google.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com *.mktoresp.com *.google-analytics.com *.gstatic.com https://cookie-cdn.cookiepro.com/ https://api.enqbator.com https://doctors.beaumont.org https://maps.googleapis.com https://analytics.google.com https://mroexpress.mrocorp.com https://forms.office.com https://stats.g.doubleclick.net https://adservice.google.com https://www.google.com/pagead/ https://104413.tctm.xyz/ https://104413.tctm.co/ https://104413.cctm.xyz/ https://careers.beaumont.org;
Referrer-Policy: no-referrer-when-downgrade
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Request-Context: appId=cid-v1:3cc89f18-55f1-4411-9314-da3835105d8b
Access-Control-Expose-Headers: Request-Context
X-Powered-By: ASP.NET

info.beaumont.org/acton/content/form_embed.js

207.189.124.84

200

14 kB

URL HTTP/1.1
info.beaumont.org/acton/content/form_embed.js
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
Algol 68 source text\012- Pascal source, ASCII text, with very long lines (1228)
Size
14 kB (14145 bytes)
Hash
4a00d4d1e851b6c2514d415e20a96516
835396720a34b888d3cc37939d61f7d06f323054
5f75af5be2d02b6489e20b3404f89e479cf67625c244748480d19d4d6d544696

HTTP Headers

GET /acton/content/form_embed.js HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"49613-1670022382000"
Last-Modified: Fri, 02 Dec 2022 23:06:22 GMT
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14145

info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459

207.189.124.84

200

4.8 kB

URL HTTP/1.1
info.beaumont.org/cdnr/forpci24/acton/bn/tracker/31459
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 text
Size
4.8 kB (4814 bytes)
Hash
99417a2adc42df72a1f7dca994b7e089
ae617d3f6107bdc909c707689292bb2939cf0dfa
188b49e835d934c806677f85796a6ca9fb79a63c5096a5690ce6047a08821426

HTTP Headers

GET /cdnr/forpci24/acton/bn/tracker/31459 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
P3P: CP="Act-On does not have a P3P policy. Learn why here: https://act-on.com/p3p-policy/"
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"; Path=/; Max-Age=31536000; Domain=.beaumont.org; SameSite=None; Secure; Version=1
Content-Type: application/javascript;charset=utf-8
Content-Length: 4814
Date: Thu, 08 Dec 2022 19:20:27 GMT
X-Cnection: close
Strict-Transport-Security: max-age=16070400

info.beaumont.org/acton/content/form_flattener.css

207.189.124.84

200

7.9 kB

URL HTTP/1.1
info.beaumont.org/acton/content/form_flattener.css
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
data
Size
7.9 kB (7929 bytes)
Hash
f7fa9caa1170f09b44dd93f931a83df4
074caf412042e5185b583e7ffebf0b665c487679
dbc4c17d00ef5125bf43f2b4ecb9d43c9358084a5dabd98f223a92faa3310b2f

HTTP Headers

GET /acton/content/form_flattener.css HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"8569-1670022684000"
Last-Modified: Fri, 02 Dec 2022 23:11:24 GMT
Content-Type: text/css;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1762

info.beaumont.org/acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501

207.189.124.84

200

1.9 kB

URL HTTP/1.1
info.beaumont.org/acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
JSON data\012- HTML document, ASCII text, with very long lines (8382), with no line terminators
Size
1.9 kB (1927 bytes)
Hash
52a2b1cc8972337d79e65c2926bdb10e
f6e3a021aba28fdcd681d2fea44483488be46766
7fca6ea527ed2432aaabd8c464a3ba905b643b43117d27dd058aac8c566304f6

HTTP Headers

GET /acton/openapi/form/v1/31459/499c3a2a-6a05-40c8-aa0d-0fcf0c2c3911:d-0017?ts=1670527227501 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Access-Control-Allow-Origin: https://info.beaumont.org
Access-Control-Allow-Credentials: true
Content-Type: application/json;charset=UTF-8
Date: Thu, 08 Dec 2022 19:20:27 GMT
Keep-Alive: timeout=10
Connection: keep-alive
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

fonts.gstatic.com/s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2

142.250.74.35

200 OK

10 kB

URL HTTP/2
fonts.gstatic.com/s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10016, version 1.0\012- data
Size
10 kB (10016 bytes)
Hash
efc008ddacd9f630d61b0717e7864257
8c79a2fe12c7e4d80f053e40540e4544744600a5
c2cd3e005de210fcbb5372b4267c5d3d067e0564f017dd5ccba202d040f820d7

HTTP Headers

GET /s/arimo/v27/P5sfzZCDf9_T_3cV7NCUECyoxNk37cxcABrB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.beaumont.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 14:54:33 GMT
expires: Sun, 03 Dec 2023 14:54:33 GMT
cache-control: public, max-age=31536000
age: 447955
last-modified: Mon, 11 Jul 2022 21:03:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8274b291596906eb3779dccb82ec41cb
b2ec554df1fa55e18a4316b76ac617dc626b7598
69129be0a1c2e3d1dfc602aea4ef004ea01b3bfa6c5863bd225843472f1bb7c8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js

216.58.211.4

200 OK

553 B

URL HTTP/2
www.google.com/recaptcha/api.js
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
553 B (553 bytes)
Hash
1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Thu, 08 Dec 2022 19:20:28 GMT
date: Thu, 08 Dec 2022 19:20:28 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

info.beaumont.org/acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0

207.189.124.84

200

43 B

URL HTTP/1.1
info.beaumont.org/acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0
IP
207.189.124.84:0
ASN
#13649 ASN-VINS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
f7f26805de1a1f270e665bf7873d7e19
c32085898c6e36d361d4b8017087de90e1b8465c
2188414d64d2930eb54f4731b6eb9a931358ba625d1cd7535a889409218609d2

HTTP Headers

GET /acton/bn/31459?target=https%3A%2F%2Finfo.beaumont.org%2Facton%2Ffs%2Fblocks%2FshowLandingPage%2Fa%2F31459%2Fp%2Fp-0013%2Ft%2Fpage%2Ffm%2F0&ref=https%3A%2F%2Fwww.beaumont.org%2F%3F&v=2&ts=1670527227161&nc=0 HTTP/1.1
Host: info.beaumont.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.beaumont.org/acton/fs/blocks/showLandingPage/a/31459/p/p-0013/t/page/fm/0
Cookie: _gcl_au=1.1.63311887.1670527225; _ga_MMRF97YMCQ=GS1.1.1670527225.1.0.1670527225.60.0.0; _ga=GA1.1.985430721.1670527226; wp31459="WUXYCDDDDDDZHUKUIDgNssDDD"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Set-Cookie: wp31459="WUXYCDDDDDDZHUKUIDgNssDILHNthgm_hknDD"; Path=/; Max-Age=31536000; Domain=.beaumont.org; SameSite=None; Secure; Version=1
P3P: CP="Act-On does not have a P3P policy. Learn why here: https://act-on.com/p3p-policy/"
Content-Type: image/gif
Content-Length: 43
Date: Thu, 08 Dec 2022 19:20:27 GMT
X-Cnection: close
Strict-Transport-Security: max-age=16070400
Vary: Accept-Encoding

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:20:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js

216.58.211.3

200 OK

163 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (730)
Size
163 kB (162976 bytes)
Hash
79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6

HTTP Headers

GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.beaumont.org
Connection: keep-alive
Referer: https://info.beaumont.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 106826
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans+Condensed:700

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans+Condensed:700
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans+Condensed:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 19:20:26 GMT
date: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Work+Sans:400,100,200,300,500,600,700,800

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Work+Sans:400,100,200,300,500,600,700,800
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Work+Sans:400,100,200,300,500,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 19:20:26 GMT
date: Thu, 08 Dec 2022 19:20:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pro.fontawesome.com/releases/v5.14.0/css/all.css

104.18.23.52

200 OK

0 B

URL HTTP/2
pro.fontawesome.com/releases/v5.14.0/css/all.css
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.14.0/css/all.css HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css
x-amz-id-2: FWdnE9uQe32EGgGzTIixDTNyZ5Xw1WUW23BA3aYegDULBaRJsH9vmE/fWVl9Y6Slb0EgovcHMMg=
x-amz-request-id: GM3HMYFAJX9WSPHJ
last-modified: Mon, 28 Jun 2021 17:12:47 GMT
etag: W/"1dfe138ae594553bc5ddec1f1f1ef389"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 13987585
vary: Accept-Encoding
server: cloudflare
cf-ray: 7767dbbd08ed0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.11.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.beaumont.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:20:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 19838033
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7767dbbcaaaeb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP