Report - shortener.int.carerev.cloud/8Grk6

Report Overview

Submitted URL
shortener.int.carerev.cloud/8Grk6
IP
3.215.1.79
ASN
#14618 AMAZON-AES
Submitted
2023-01-17 11:10:19
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	7.7 kB	143.204.42.158
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	338 B	23.36.76.184
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	66 kB	34.120.237.76
rum.browser-intake-datadoghq.com	11420	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	676 B	3.233.153.140
kit.fontawesome.com	1868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	643 B	104.18.23.52
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	431 B	164 kB	142.250.74.35
shortener.int.carerev.cloud	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	826 B	893 B	3.215.1.79
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.189.35.180
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	48 kB	23.36.76.186
ka-p.fontawesome.com	4489	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	124 kB	104.18.23.52
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
api-healthcare-dev-carerev.herokuapp.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	4.5 kB	23.22.130.173
session-replay.browser-intake-datadoghq.com	16794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	1.0 kB	3.233.155.124
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
web-healthcare-dev-carerev.herokuapp.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.2 kB	1.2 MB	54.159.116.102
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	1.2 kB	142.250.74.132
wss.int.carerev.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	599 B	237 B	3.215.1.79
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	16 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-17 11:10:06	medium	Client IP	3.215.1.79	ET INFO HTTP Request to Suspicious *.cloud Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	353 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash ed6425bcabf9faee288e7bdae9fdaf8e 2874c22091c6a4ec68445ce306f7c36b161af084 acdb184ae6eaa64879dcdfd32d33197d2b93695743667f9a7cefe05664f1a5d4 Loading...

	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	2.2 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 368dd84d94cf30763af1bb61ae061bd3 136713b8570db05709d5aaf097bb82754a31f63a b5cd81ba161cc60017a3eb1137f7b619d1a8a3df1c211dc3c5d03938c26df035 Loading...

	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	275 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 91223db25f22b4b449877119d8f04fa1 ca7b9cd03b5c8bf2276c4f4d484cc8762cd9124b c70bc050e1707eff952d38c82baf6c9ebe38f08f53aa4b26720e0bd8bd1f0b59 Loading...

	web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.9b37800a60d1d0044d44.js	977 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.9b37800a60d1d0044d44.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 6501a2c3446d7e830f01e78554ef105f 22c6d6c17cea217ba1a63da9431dc2c044a0e160 57c936a6ecfb033be0c6fe6edb5bc5abe35fda05deab211e1285fa0f19852e64 Loading...

	web-healthcare-dev-carerev.herokuapp.com/17.9c9381828e4b6c46009e.chunk.js	95 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/17.9c9381828e4b6c46009e.chunk.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash fc486eea43ba13da44ed489cb5f9f421 987c9c4a149722d68174522efc10fd79c3f1bf81 b72f1e7d356e23465ef5c86fe15625b3b828b0408c2e69b575c216f233208436 Loading...

	www.google.com/recaptcha/api.js?onload=onloadcallback&render=explicit	909 B	2023-03-12	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?onload=onloadcallback&render=explicit IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:52:06 Last Seen2023-03-13 01:59:22 Times Seen1 Hash c1d8cdbe78c001b42e62f69638a2a2cf e8a66ab768366d3906c791666a7b348a06692451 802328606205b1118cbd670dd6a506ba6e984db7de4bdd74c82111e95cdb6490 Loading...

	www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js	409 kB	2023-03-12	2023-03-18
Pretty URL www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:55:41 Last Seen2023-03-18 07:43:22 Times Seen1 Hash b77aa03b149a5a05c17615846d53c792 e315ebe86867af30b468d7b0466da64dd34dca5a 89ba9e2a2ae00e49e80a74fd7ccae60309cd7d7fde1c8593d51397d9df84f92a Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Le0FREgAAAAAPYup7j4-r5cIisbVNh_UNRYaB9D&co=aHR0cHM6Ly93ZWItaGVhbHRoY2FyZS1kZXYtY2FyZXJldi5oZXJva3VhcHAuY29tOjQ0Mw..&hl=en&type=image&v=u35fw2Dx4G0WsO6SztVYg4cV&theme=light&size=invisible&badge=bottomleft&cb=hx4glok3a9zn	315 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Le0FREgAAAAAPYup7j4-r5cIisbVNh_UNRYaB9D&co=aHR0cHM6Ly93ZWItaGVhbHRoY2FyZS1kZXYtY2FyZXJldi5oZXJva3VhcHAuY29tOjQ0Mw..&hl=en&type=image&v=u35fw2Dx4G0WsO6SztVYg4cV&theme=light&size=invisible&badge=bottomleft&cb=hx4glok3a9zn IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 02:11:13 Times Seen249 Hash 312a2a397ac7ddf5a927eebe419d7df2 2a35fbcb23a052f9ec3f0621c2e8f69959a16fff 014d324c605331878f1b40bfccc4d6c5fa9af407ef5331491a34fdd68e768273 Loading...

	web-healthcare-dev-carerev.herokuapp.com/main.5e1499d11e64413c7348.js	2.4 MB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/main.5e1499d11e64413c7348.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash c9fb60246a182c6eaa01648115499599 9d29742a3bff00d66ac5999d21d14fc908cd2294 acda627529fb3238268c551defb19f0ab74ee96c433fcd211d6525a5ab7e1f13 Loading...

	web-healthcare-dev-carerev.herokuapp.com/6.aeb838c70da8b9d17dd4.chunk.js	15 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/6.aeb838c70da8b9d17dd4.chunk.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 490e846ec126e829b979a28b0d293cd3 38f09dfe97af3deef5ee46965127bbaff6e40d9a aa1c1618028b6bf5c5cf170534ce8340f521405bcff38b49dbee94bc7e69268b Loading...

	web-healthcare-dev-carerev.herokuapp.com/13.3a510fb9e264068e536d.chunk.js	161 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/13.3a510fb9e264068e536d.chunk.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 86ddcd4d56c097df791a1b641a278694 9c0005aedad252a670d619e2ccfecbc4ba262df1 bd0491bc287014680ad67540a1d0ac891b77f9570f40146760c30db78f7d3223 Loading...

	web-healthcare-dev-carerev.herokuapp.com/14.a522f73bc5266e66b131.chunk.js	109 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/14.a522f73bc5266e66b131.chunk.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 798aa69fe151304028b0faa230c57436 7b2dd32da32a3f2e392b1272640242fb9cfa1453 3d715a102745a33c65b2c6c9f50590eeadef67517554e12739174181f7e8c74c Loading...

	web-healthcare-dev-carerev.herokuapp.com/env.js	813 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/env.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash f843a768e6311645cffaab86f0be99f6 b19c1a02b15af2a424e928a3ec9a910edf47182b 12c793963423d66f686493db747ac7905a2f15c3d0f123a0327e32ee803c83b3 Loading...

	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	8.5 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 92a746c59c44c31a7fb177e601551d81 3aa0469a99e19f427aa6ba834944a7e2ca3a89f9 fc8b15bfaf74a46c6e1e964af04b6970f116613843b28248f305e2a269a1bb60 Loading...

	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	530 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 23eb0a1b93581f5188801d17202347f9 a6de94b006fecd89f33e04b6090d4e5bf7ea1e38 ef2d878a6f638fcde0e5cfd000721ad33a1094c7f4012396ffb4de02a2f2c06e Loading...

	web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b	577 B	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 4f32b6e559bb11ac35292c6e95e6337a e6fb8517db17dc19698bb1fbd16c749d8922ff65 4161c4abcb0542f27125d7c4616c5cb1bc93ce7a5bcc6dfbe3565463e0d187a9 Loading...

	kit.fontawesome.com/56afa4adb8.js	11 kB	2023-03-13	2023-03-13
Pretty URL kit.fontawesome.com/56afa4adb8.js IP 104.18.23.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash 24202eddae3ec59d6761bf53b2246a70 fc690b3f16b54b06dbc19f2ce6d5ca0fcc95def9 0f74a713a3f3a29285488805782a856b0ddb4566c9873a5cbac6f09fc724fab9 Loading...

	web-healthcare-dev-carerev.herokuapp.com/28.2cdb35bd3449d0094c94.chunk.js	60 kB	2023-03-13	2023-03-13
Pretty URL web-healthcare-dev-carerev.herokuapp.com/28.2cdb35bd3449d0094c94.chunk.js IP 54.159.116.102 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:39:04 Last Seen2023-03-13 01:39:04 Times Seen1 Hash c7bc387988066206eec87cb6b3cc7561 5a627592645df6f272e0fb6225b10077b716f9d2 0da0e46892bcedff06728883742927658455c3f465c635fecf3afb4be91f1ca1 Loading...

HTTP Transactions (80)

URL IP Response Size

shortener.int.carerev.cloud/8Grk6

3.215.1.79

301 Moved Permanently

0 B

URL HTTP/1.1
shortener.int.carerev.cloud/8Grk6
IP
3.215.1.79:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to Suspicious *.cloud Domain

HTTP Headers

GET /8Grk6 HTTP/1.1
Host: shortener.int.carerev.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
location: https://shortener.int.carerev.cloud/8Grk6
date: Tue, 17 Jan 2023 11:10:06 GMT
server: istio-envoy
content-length: 0

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3112
Expires: Tue, 17 Jan 2023 12:01:58 GMT
Date: Tue, 17 Jan 2023 11:10:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
405f8f149ccdf0005ca0d890c96a9cb4
64de3200cef76133dfad901d6709697d6842405e
3a10790c397a419450ac2c90b941fd20bc49af1dbaeb34678836306de8febfce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A10790C397A419450AC2C90B941FD20BC49AF1DBAEB34678836306DE8FEBFCE"
Last-Modified: Mon, 16 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4314
Expires: Tue, 17 Jan 2023 12:22:00 GMT
Date: Tue, 17 Jan 2023 11:10:06 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 10:49:14 GMT
content-type: application/json
age: 1252
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12446
Expires: Tue, 17 Jan 2023 14:37:32 GMT
Date: Tue, 17 Jan 2023 11:10:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8Ha/3tFQC1o1vMYL28mzyx8D+e+gfFKBJaAdLKu+Tc67J+Hmw92eiv/WvmkfoYwze8+e1AtyddKrPSiBMJeeDw==
x-amz-request-id: Z68NDWZYJJJ1VRN3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 10:44:58 GMT
age: 1508
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 11:10:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
431e6ace6723875dfe702f256dbc07ab
63c3c5ef8fbeea99ce537d809210208cd947c738
a68aa3aaeb896adf3d93fa05301a8c8c39dda29465724b42c81bfa54c883d0f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A68AA3AAEB896ADF3D93FA05301A8C8C39DDA29465724B42C81BFA54C883D0F9"
Last-Modified: Tue, 17 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 17 Jan 2023 17:10:06 GMT
Date: Tue, 17 Jan 2023 11:10:06 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 10:33:47 GMT
age: 2180
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 335
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:07 GMT
Last-Modified: Tue, 17 Jan 2023 11:04:32 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
3e22334ac54ab1e7b870e69b67a446df
243866b5da63da6ecff30daffb9247797f377522
5e5d283766835964c690449ff7fb8f6ff247e0e99593efe6d3446c4308193fef

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 11:10:07 GMT
Last-Modified: Tue, 17 Jan 2023 11:09:02 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Uo7H-D7QFxNFN7zFXReX0iiINza1HnMvC9OC5GGDWeaayU4X2T4AMw==
Age: 65

web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b

54.159.116.102

200 OK

5.5 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7704)
Size
5.5 kB (5466 bytes)
Hash
cf23db799a6ede4eead3b51ff70b387b
9f6c6c28131493379477fabca8ce496d370d7539
5cefdc2e7e214f11640647981e07015fe1a17ae1c10203fad3871d276c3347db

HTTP Headers

GET /professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Cache-Control: no-cache
Accept-Ranges: bytes
Last-Modified: Tue, 13 Dec 2022 16:22:26 GMT
Etag: W/"3bb2-1850c4b65d0"
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:07 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

push.services.mozilla.com/

54.189.35.180

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.189.35.180:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jmwmCGnjbGCZ87a1tHsOBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VosU0QyU1aYFb4lINxyHX5gsXPM=

web-healthcare-dev-carerev.herokuapp.com/env.js

54.159.116.102

200 OK

813 B

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/env.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (813), with no line terminators
Size
813 B (813 bytes)
Hash
f843a768e6311645cffaab86f0be99f6
b19c1a02b15af2a424e928a3ec9a910edf47182b
12c793963423d66f686493db747ac7905a2f15c3d0f123a0327e32ee803c83b3

HTTP Headers

GET /env.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Mon, 16 Jan 2023 19:26:29 GMT
Etag: W/"32d-185bc0c1fe9"
Content-Type: application/javascript; charset=UTF-8
Content-Length: 813
Vary: Accept-Encoding
Date: Tue, 17 Jan 2023 11:10:07 GMT
Via: 1.1 vegur

use.typekit.net/itx7acb.css

23.36.76.186

200 OK

687 B

URL HTTP/2
use.typekit.net/itx7acb.css
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
687 B (687 bytes)
Hash
9de50c34b189658474a4f37585bbfa40
bc09faece1270cf876656d6def439341a7aeb10c
253e53dd139e1d1a16ab962b7a1eb07e913295961c3943ab12cbbf35310e30ff

HTTP Headers

GET /itx7acb.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 687
date: Tue, 17 Jan 2023 11:10:07 GMT
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=itx7acb&ht=tk&f=28.30.31&a=13198493&app=typekit&e=css

23.36.76.184

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=itx7acb&ht=tk&f=28.30.31&a=13198493&app=typekit&e=css
IP
23.36.76.184:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=itx7acb&ht=tk&f=28.30.31&a=13198493&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 17 Jan 2023 11:10:07 GMT
X-Firefox-Spdy: h2

web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.9b37800a60d1d0044d44.js

54.159.116.102

200 OK

977 B

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.9b37800a60d1d0044d44.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (977), with no line terminators
Size
977 B (977 bytes)
Hash
6501a2c3446d7e830f01e78554ef105f
22c6d6c17cea217ba1a63da9431dc2c044a0e160
57c936a6ecfb033be0c6fe6edb5bc5abe35fda05deab211e1285fa0f19852e64

HTTP Headers

GET /bootstrapStyles.9b37800a60d1d0044d44.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"3d1-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Content-Length: 977
Vary: Accept-Encoding
Date: Tue, 17 Jan 2023 11:10:08 GMT
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/main.bcdd7606fa8749f76b17.css

54.159.116.102

200 OK

56 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/main.bcdd7606fa8749f76b17.css
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (65304)
Size
56 kB (56413 bytes)
Hash
aefe0298b88774e04e47db93a073f432
6355c1a86299b0992371457f2ff2929d396bc876
436893f8bd4de79c6daf5daf931a9af63f3cda15933f8b243646536fc82998bf

HTTP Headers

GET /main.bcdd7606fa8749f76b17.css HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"54782-1850c4b61e8"
Content-Type: text/css; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:07 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.bcdd7606fa8749f76b17.css

54.159.116.102

200 OK

28 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/bootstrapStyles.bcdd7606fa8749f76b17.css
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (65304)
Size
28 kB (28410 bytes)
Hash
016a766dae7e3c4494d1ec1171814051
d6962e2f8eeed510de881c7ffab6ec0127f0f7f4
f95385bda5716fdc868eb0b56f3d179dc1bd7d079c1d98aa8643dce0b91a65f2

HTTP Headers

GET /bootstrapStyles.bcdd7606fa8749f76b17.css HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"35467-1850c4b61e8"
Content-Type: text/css; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:08 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/main.5e1499d11e64413c7348.js

54.159.116.102

200 OK

760 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/main.5e1499d11e64413c7348.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65536), with no line terminators
Size
760 kB (760145 bytes)
Hash
d3b8ea947db1553af13f3c8be20a506c
0e446d4fcf6a145b41311094611659d670bc3f60
536232f838b6dc4f8c764ca1b32230658d6819becd8eb4fb8f87df3580e7fa99

HTTP Headers

GET /main.5e1499d11e64413c7348.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"24932f-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:08 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Tue, 17 Jan 2023 12:14:47 GMT
Date: Tue, 17 Jan 2023 11:10:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Tue, 17 Jan 2023 12:14:47 GMT
Date: Tue, 17 Jan 2023 11:10:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Tue, 17 Jan 2023 12:14:47 GMT
Date: Tue, 17 Jan 2023 11:10:08 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9529 bytes)
Hash
ad210f0ba6ce6930724549cbba76e83d
e4badc3fbca9913bc11d968dac5cad1f900ff492
ad5f754d5dbe870feabfe090a46838614e96d72e78b9a2a8010ab339c67130be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9529
x-amzn-requestid: 56f2b9a5-91c6-421a-ad84-165376e23dcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm6Fm-oAMFrDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-67a0c1fe6aad6e6b71e50463;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mzmFGVDfMuZte5CJUmchEQIVAuDUKdGfUpm7PRTUqnsP44IcDmbl8A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
etag: "e4badc3fbca9913bc11d968dac5cad1f900ff492"
content-type: image/jpeg
age: 48233
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7800 bytes)
Hash
57828b7affae7633b38d0fb6057b894d
db4cd956ba7e1e6b43174c250b7d4f1193277be9
26d83d511af9583a8f0a9ef1bd2ce3deab3ca42fa2c2ae141b61cd123afa9625

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: eac845c9-b10c-4fce-b2ff-01b4111b506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2OjhHp_IAMFeyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c59149-0058376c385a7bf91e07a395;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 18:02:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FtmoLO8c5S2uN0aj1HxWjVMg31vndNF2iKRJoJXmow1Hbb0NIHm9Cw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 18:16:36 GMT
age: 60812
etag: "db4cd956ba7e1e6b43174c250b7d4f1193277be9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7f5c64c-06d8-4527-a53e-4dd0bbe44138.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8878 bytes)
Hash
c5cf59ac2200ddefc7b1019ac885adb0
5c3c71108063bfa193b848023ee3e5b17c0df978
785fb702d7a2386ec92e5d33e44cb826d38e21b724df3a7ceedb3a5d05cf9c87

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7f5c64c-06d8-4527-a53e-4dd0bbe44138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8878
x-amzn-requestid: 02bc1bf0-b606-45b1-8f2c-3c1ed274db15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbP5GZtIAMFb9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47265-30419ed51f5603314bd9e4b6;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mm0qplBOGJFIpjDa24aFcmKqh4MC9VbVCVWN9jKNFV4Bs3qqLDbvXw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 22:04:38 GMT
age: 47130
etag: "5c3c71108063bfa193b848023ee3e5b17c0df978"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (14703 bytes)
Hash
fefb1f12a78ad92ed309da2c54984a3c
caf58bf6276e226a20a0d0cf6fc3d422f922eb28
baf6596c635254885f32e423cbc5667694754243f01109cbdbeb54c337b16bc2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14703
x-amzn-requestid: bdc14ffc-297a-4046-9a4f-26d454f6f9be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2trpGZkoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c317-58908dd71980be98200e8f6c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oqw0_4rVitBtqGh0oigqr5VmH0oVghH9SQiW1bRvMGsIX6fb8iRR0Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
etag: "caf58bf6276e226a20a0d0cf6fc3d422f922eb28"
content-type: image/jpeg
age: 48233
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fda3d0-f25d-4038-bce9-349d25d63a74.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7847 bytes)
Hash
dd54f560a77956e0ffb9645ba786c193
0a67ed30b7b9c66a6ccd2a72cd0de27b0fd38509
359fd1bdac8f7106b2d1dc71136ddca2bb70e95fab441af114e24d04fa69afe7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fda3d0-f25d-4038-bce9-349d25d63a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 15cc6d5b-0805-4828-9bdc-5067a2d542d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: evbCYETXoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c2d875-5ff79c917007ccbd40957aa3;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 16:29:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t-PsjfY-xNvUhLRlVmRuNtL_kJHAYTN479nHFgJUcYKLqkZlbSxwqg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 06:41:41 GMT
age: 16107
etag: "0a67ed30b7b9c66a6ccd2a72cd0de27b0fd38509"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10660 bytes)
Hash
ec0e283376914297c3fb2464ed15a31b
acd84e057b6c618fd3b31915983998c00fe21dc4
3d02b82d8f6a00703de7594f5b34baf0010294c1a7023818344ca341e4ac203c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10660
x-amzn-requestid: ac5d6edc-5228-4318-a99f-c08d3265aa87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3HXpH4PoAMF78Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5ec30-044bf7c40e44de637c0c2dba;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 00:30:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wALvrvX2EOL6xe6U3Vf2Xmcx_Nmh0mHXveaX1mZL1yUzOLdKg8f_A==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 00:45:05 GMT
age: 37503
etag: "acd84e057b6c618fd3b31915983998c00fe21dc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

use.typekit.net/af/11ee92/00000000000000003b9b2a5d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

23 kB

URL HTTP/2
use.typekit.net/af/11ee92/00000000000000003b9b2a5d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 23416, version 1.0\012- data
Size
23 kB (23416 bytes)
Hash
d7a3a9eaf8354bc7bf908d9938cdd27a
ce50f521bfb3261aed2f2a3fe3fc84849b2138a6
50a02e8f70a1b3b32003472dd80f5cad8c4574830ad8406bdcc53bb725e3ed09

HTTP Headers

GET /af/11ee92/00000000000000003b9b2a5d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23416
etag: "421dca92a0d1328718cf1e11419449e80715dfb1"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 17 Jan 2023 11:10:09 GMT
X-Firefox-Spdy: h2

web-healthcare-dev-carerev.herokuapp.com/6.aeb838c70da8b9d17dd4.chunk.js

54.159.116.102

200 OK

5.7 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/6.aeb838c70da8b9d17dd4.chunk.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (15343), with no line terminators
Size
5.7 kB (5670 bytes)
Hash
7bc0137d3958294acce55f72fdf44333
9d09a1e162bef65c1e1ee3c775db4055999cf274
e26f180aef6eb47ef7db2687abac2f7ee702ea40b9f5c2b207e8c953576705da

HTTP Headers

GET /6.aeb838c70da8b9d17dd4.chunk.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"3bef-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:09 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/13.3a510fb9e264068e536d.chunk.js

54.159.116.102

200 OK

46 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/13.3a510fb9e264068e536d.chunk.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65536), with no line terminators
Size
46 kB (45717 bytes)
Hash
e3f929650199358bbc048fed6f8366d8
ee3124e531ca13f1ce952268132cf9c8dc7ec603
f2480ed1763b6da9042acc1dccd9f560d119d82363b6161b9d87612cf7e8fc12

HTTP Headers

GET /13.3a510fb9e264068e536d.chunk.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"273f1-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:09 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/14.a522f73bc5266e66b131.chunk.js

54.159.116.102

200 OK

33 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/14.a522f73bc5266e66b131.chunk.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (32754 bytes)
Hash
374bfd1ac70c0d4d8c7f0ca1ceb04cb6
a40bad1051b065afff5db3226ad59c6e7e21a50c
e8f81a2e9fc1ec522e584189825ccd983120b94aa2e1c650dd67132e902173de

HTTP Headers

GET /14.a522f73bc5266e66b131.chunk.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"1aa93-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:09 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=56afa4adb8

104.18.23.52

200 OK

2.6 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=56afa4adb8
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (27832)
Size
2.6 kB (2603 bytes)
Hash
eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=56afa4adb8 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:09 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea48c2d7cb524-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=56afa4adb8

104.18.23.52

200 OK

4.2 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=56afa4adb8
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (26366)
Size
4.2 kB (4194 bytes)
Hash
7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=56afa4adb8 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:09 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea48c2d7bb524-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=56afa4adb8

104.18.23.52

200 OK

54 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=56afa4adb8
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65397)
Size
54 kB (54194 bytes)
Hash
dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8

HTTP Headers

GET /releases/v5.15.4/css/pro.min.css?token=56afa4adb8 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:09 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea48c2d77b524-OSL
X-Firefox-Spdy: h2

web-healthcare-dev-carerev.herokuapp.com/17.9c9381828e4b6c46009e.chunk.js

54.159.116.102

200 OK

22 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/17.9c9381828e4b6c46009e.chunk.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (22478 bytes)
Hash
6caef2caa1f466a04f83024b9982a94e
5841c529199269eabf9b16ddf4ef1766728e3e97
8b9d4c8c4ff616e483fda9ed2c54d7ee7c54e1c70fbac34e960bc5455eb1d91e

HTTP Headers

GET /17.9c9381828e4b6c46009e.chunk.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"174a9-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:09 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/28.2cdb35bd3449d0094c94.chunk.js

54.159.116.102

200 OK

18 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/28.2cdb35bd3449d0094c94.chunk.js
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (59519), with no line terminators
Size
18 kB (17767 bytes)
Hash
1dcbd18adab258a8daa4854b352ffa66
27665bc85888e992af887a93d61c8d8da15a67ef
abb404af4bf578d94369f9fc3e4f4d0094685ba2481faf1629365f29fcb43372

HTTP Headers

GET /28.2cdb35bd3449d0094c94.chunk.js HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"e87f-1850c4b61e8"
Content-Type: application/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 17 Jan 2023 11:10:09 GMT
Transfer-Encoding: chunked
Via: 1.1 vegur

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
daf1107bcf1b931922c15bbfbee5ce9f
06c687b86621de3f92cd0f104b118f8d19447af6
1a2b1ad958b673a36f3acfe659e2aa2f02a7823102673e1f9ae6a8b49bfd2232

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A2B1AD958B673A36F3ACFE659E2AA2F02A7823102673E1F9AE6A8B49BFD2232"
Last-Modified: Mon, 16 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 17 Jan 2023 17:10:09 GMT
Date: Tue, 17 Jan 2023 11:10:09 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
da62ef403fb24c0172c9056e74d8e726
72df0e2a9a988345880ce05c89159a9a49159c30
82683e89e946143c3a40e4945362635ff310d479e9a479bb71bd05e4704cbbfc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1343
Cache-Control: max-age=161329
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:09 GMT
Etag: "63c65003-1d7"
Expires: Thu, 19 Jan 2023 07:58:58 GMT
Last-Modified: Tue, 17 Jan 2023 07:36:35 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb0aa778e0330ce9b6d5fd6b1552f093
7a8984045ec36dba8de3e09b0679efd529a15137
94c2c787dbdbf5974b065548bca8d623f8cd3b914644586f5b74ddd28f657acd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 11:10:09 GMT
Last-Modified: Tue, 17 Jan 2023 09:40:32 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QAUZLJAgy8quMxbKU9DZyiEM0iT1-uRPn8j7tzA8OUPzI9Andh2YBA==
Age: 5377

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb0aa778e0330ce9b6d5fd6b1552f093
7a8984045ec36dba8de3e09b0679efd529a15137
94c2c787dbdbf5974b065548bca8d623f8cd3b914644586f5b74ddd28f657acd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 11:10:09 GMT
Last-Modified: Tue, 17 Jan 2023 10:51:24 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cj4uGtG_wvyaToi1r7zLZ5578nZNM5gCU9D_ZYugjgfqdHMVvdaZQg==
Age: 1125

use.typekit.net/af/57baab/00000000000000003b9b2a5f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.186

200 OK

23 kB

URL HTTP/2
use.typekit.net/af/57baab/00000000000000003b9b2a5f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 22764, version 1.0\012- data
Size
23 kB (22764 bytes)
Hash
91cddfd435a081042949f97886ceef81
9497206598c14cad54c5bd987b98b6a98befec0c
30d9dbff0e9047c5beed08252d06694bc1faf0a97c8ee139df70875d454ee446

HTTP Headers

GET /af/57baab/00000000000000003b9b2a5f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 22764
etag: "2fa2c57a9e70f5c253f6d83ef3b61f4ba2455fb3"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 17 Jan 2023 11:10:09 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb0aa778e0330ce9b6d5fd6b1552f093
7a8984045ec36dba8de3e09b0679efd529a15137
94c2c787dbdbf5974b065548bca8d623f8cd3b914644586f5b74ddd28f657acd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139660
Date: Tue, 17 Jan 2023 11:10:09 GMT
Etag: "63c5fbb7-1d7"
Expires: Thu, 19 Jan 2023 01:57:49 GMT
Last-Modified: Tue, 17 Jan 2023 01:36:55 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QSc6NSdlIQlUoAXeJn43slb0aGv5eRfdlo2fIZscQcL_AVYyEcQPsw==
Age: 1254

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb0aa778e0330ce9b6d5fd6b1552f093
7a8984045ec36dba8de3e09b0679efd529a15137
94c2c787dbdbf5974b065548bca8d623f8cd3b914644586f5b74ddd28f657acd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144898
Date: Tue, 17 Jan 2023 11:10:09 GMT
Etag: "63c5fbb7-1d7"
Expires: Thu, 19 Jan 2023 03:25:07 GMT
Last-Modified: Tue, 17 Jan 2023 01:36:55 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: y4e2HDeQDFzcmB1GjTyVSNLXo0lWMVjyli2nSYAH8ZBMeMIjUn2KJQ==
Age: 6492

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb0aa778e0330ce9b6d5fd6b1552f093
7a8984045ec36dba8de3e09b0679efd529a15137
94c2c787dbdbf5974b065548bca8d623f8cd3b914644586f5b74ddd28f657acd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 11:10:09 GMT
Last-Modified: Tue, 17 Jan 2023 10:29:16 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CCHIVgeHaCCWLkZ-ADCcYNtshc1aSNWAoq3wBOmNfAryqbADU1zkFA==
Age: 2454

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6b70b334388cc7c3c2afbf53572e9dca
c4c5b6f3cf3dc8b3cbadcb45fd578ecfcb406eb1
d231560628e5028fb74b132e6de1562cecbc1fc4ab4fc96c8fce638beb8ddbc0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

web-healthcare-dev-carerev.herokuapp.com/public/fonts/poppins-v19-latin-regular.woff2

54.159.116.102

200 OK

7.9 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/public/fonts/poppins-v19-latin-regular.woff2
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /public/fonts/poppins-v19-latin-regular.woff2 HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 09 Dec 2022 16:18:03 GMT
Etag: W/"1ecc-184f7adf278"
Content-Type: font/woff2
Content-Length: 7884
Date: Tue, 17 Jan 2023 11:10:10 GMT
Via: 1.1 vegur

api-healthcare-dev-carerev.herokuapp.com/api/v1/support_emails/new

23.22.130.173

200 OK

20 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/support_emails/new
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type
data
Size
20 B (20 bytes)
Hash
37f457f528ccae8b684c9f52b76a5f25
3eaeb6def194a2b6012e5b08ed148b722292db07
5782c06672157cca97607f44370c94c72d3c303527119c29a884109130bd250f

HTTP Headers

OPTIONS /api/v1/support_emails/new HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:09 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Via: 1.1 vegur

api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f

23.22.130.173

200 OK

20 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type
data
Size
20 B (20 bytes)
Hash
37f457f528ccae8b684c9f52b76a5f25
3eaeb6def194a2b6012e5b08ed148b722292db07
5782c06672157cca97607f44370c94c72d3c303527119c29a884109130bd250f

HTTP Headers

OPTIONS /api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: PATCH
Access-Control-Request-Headers: care-rev-device-identifier,content-type
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:09 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: care-rev-device-identifier,content-type
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/public/fonts/poppins-v19-latin-300.woff2

54.159.116.102

200 OK

7.8 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/public/fonts/poppins-v19-latin-300.woff2
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /public/fonts/poppins-v19-latin-300.woff2 HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 09 Dec 2022 16:18:03 GMT
Etag: W/"1ea0-184f7adf278"
Content-Type: font/woff2
Content-Length: 7840
Date: Tue, 17 Jan 2023 11:10:10 GMT
Via: 1.1 vegur

api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8

23.22.130.173

200 OK

20 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type
data
Size
20 B (20 bytes)
Hash
37f457f528ccae8b684c9f52b76a5f25
3eaeb6def194a2b6012e5b08ed148b722292db07
5782c06672157cca97607f44370c94c72d3c303527119c29a884109130bd250f

HTTP Headers

OPTIONS /api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8 HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: PATCH
Access-Control-Request-Headers: care-rev-device-identifier,content-type
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:09 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: care-rev-device-identifier,content-type
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Via: 1.1 vegur

www.google.com/recaptcha/api.js?onload=onloadcallback&render=explicit

142.250.74.132

200 OK

579 B

URL HTTP/2
www.google.com/recaptcha/api.js?onload=onloadcallback&render=explicit
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (909), with no line terminators
Size
579 B (579 bytes)
Hash
d373973d72948a181a66d04437715152
bf1ef3ee9cd496575df60480b51c17d9aeea1ce2
b0e9c53a691fdb532106361fbf9d21ccd4e7e465dc10ef48c68003717c429c21

HTTP Headers

GET /recaptcha/api.js?onload=onloadcallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 17 Jan 2023 11:10:10 GMT
date: Tue, 17 Jan 2023 11:10:10 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 579
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

web-healthcare-dev-carerev.herokuapp.com/d0cda391f134347c9b44a184f850c4ff.jpg

54.159.116.102

200 OK

121 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/d0cda391f134347c9b44a184f850c4ff.jpg
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 733x900, components 3\012- data
Size
121 kB (120577 bytes)
Hash
d0cda391f134347c9b44a184f850c4ff
def307a4b17e4b93abb5b3cd08d456763c7ba7ce
60b1be2725172963b21506af23fa02836eb7f25f1f77a859ec206987d28b2072

HTTP Headers

GET /d0cda391f134347c9b44a184f850c4ff.jpg HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"1d701-1850c4b61e8"
Content-Type: image/jpeg
Content-Length: 120577
Date: Tue, 17 Jan 2023 11:10:10 GMT
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/public/fonts/nunito-sans-v6-latin-300.woff2

54.159.116.102

200 OK

17 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/public/fonts/nunito-sans-v6-latin-300.woff2
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Web Open Font Format (Version 2), TrueType, length 16652, version 1.0\012- data
Size
17 kB (16652 bytes)
Hash
f16977f35222a4cce7d6f4336732a67a
f819399e708fbf5cae51d8e72e1baf37e66f3621
dd0d7b0bd9b543ac1655f000d5db598194d9a6c0c79815600b59ee49a81e8c62

HTTP Headers

GET /public/fonts/nunito-sans-v6-latin-300.woff2 HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 09 Dec 2022 16:18:03 GMT
Etag: W/"410c-184f7adf278"
Content-Type: font/woff2
Content-Length: 16652
Date: Tue, 17 Jan 2023 11:10:10 GMT
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/public/fonts/nunito-sans-v6-latin-700.woff2

54.159.116.102

200 OK

17 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/public/fonts/nunito-sans-v6-latin-700.woff2
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
Web Open Font Format (Version 2), TrueType, length 17008, version 1.0\012- data
Size
17 kB (17008 bytes)
Hash
d0b6d0f05c00552a21519d6bdb3e5ed7
88f4dc3c65fd919c575032a781580c63e66e94c2
90767fabd53fe6949c8e19f3ab9d3da69cfc52c7bbfafe42739ed14c2e837920

HTTP Headers

GET /public/fonts/nunito-sans-v6-latin-700.woff2 HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Fri, 09 Dec 2022 16:18:03 GMT
Etag: W/"4270-184f7adf278"
Content-Type: font/woff2
Content-Length: 17008
Date: Tue, 17 Jan 2023 11:10:10 GMT
Via: 1.1 vegur

wss.int.carerev.com/socket/websocket?vsn=2.0.0

3.215.1.79

101 Switching Protocols

0 B

URL HTTP/1.1
wss.int.carerev.com/socket/websocket?vsn=2.0.0
IP
3.215.1.79:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket/websocket?vsn=2.0.0 HTTP/1.1
Host: wss.int.carerev.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7Mjo87xrsxTpz5XM0BtLxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
date: Tue, 17 Jan 2023 11:10:09 GMT
sec-websocket-accept: zr/UNJNQk/z23LZcIYIyVFrC+Jw=
server: istio-envoy
upgrade: websocket
connection: upgrade

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6a0c99efce2ba7294ef4b88e9810c411
90e325963c1355d4c2ab6500689850a2df4c419f
957f138460650b9cecf197fb62ec2b92fae42eb5d9d431a348f8f518470612c8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

session-replay.browser-intake-datadoghq.com/api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=c2678983-9eb7-457b-a8eb-a107fdc6de24

3.233.155.124

202 Accepted

53 B

URL HTTP/2
session-replay.browser-intake-datadoghq.com/api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=c2678983-9eb7-457b-a8eb-a107fdc6de24
IP
3.233.155.124:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
7c080cf2e4864ba8540033cd8ac322a3
1fdc6edd3c79751bb3b864525431204a35fc95ed
b47f8c6b448d0d855a23ef11fdd4ced85e7818c1e64533a1530a12b37d0db633

HTTP Headers

POST /api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=c2678983-9eb7-457b-a8eb-a107fdc6de24 HTTP/1.1
Host: session-replay.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------40751014406862494982097002653
Content-Length: 87652
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.7.0.woff2

104.18.23.52

200 OK

8.8 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.7.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 8768, version 331.-31196\012- data
Size
8.8 kB (8768 bytes)
Hash
b08396947ae3fa0e41ed81baff01001f
2bc94ea333d40434f5b373aa438a5655ee5bbe55
70a3c9d597085022d81c642d3cf740f76b8c500e7328bc8071a63b5b93e2e73d

HTTP Headers

GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.7.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: font/woff2
content-length: 8768
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae363-2240"
last-modified: Wed, 04 Aug 2021 18:58:43 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea4912c20b524-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.11.1.woff2

104.18.23.52

200 OK

8.5 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.11.1.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 8516, version 331.-31196\012- data
Size
8.5 kB (8516 bytes)
Hash
3d774405204afc5433bfae1b7e7ecf6d
567fab912c0a591f215c020e0bdeb32930b60fea
12f1a71885bf9077aca3c849b84b51fe92f36154e21a16659ceb1fbba35cae8b

HTTP Headers

GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.11.1.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: font/woff2
content-length: 8516
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae362-2144"
last-modified: Wed, 04 Aug 2021 18:58:42 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea4912c25b524-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2

104.18.23.52

200 OK

20 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Size
20 kB (19784 bytes)
Hash
c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c

HTTP Headers

GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea4912c28b524-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2

104.18.23.52

200 OK

23 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 23316, version 331.-31196\012- data
Size
23 kB (23316 bytes)
Hash
e0e8f01313f5061924cb318b031d706e
8ddfde7f46123a327ec627acf520741b1f016eb9
78f2234a60cbe6920db07df9663c0b035d9a602d8f7b82e174fc9e0f5bf89ad0

HTTP Headers

GET /releases/v5.15.4/webfonts/pro-fa-regular-400-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: font/woff2
content-length: 23316
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35c-5b14"
last-modified: Wed, 04 Aug 2021 18:58:36 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 78aea4910c02b524-OSL
X-Firefox-Spdy: h2

session-replay.browser-intake-datadoghq.com/api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Abeacon%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=9df7cc1f-9f47-4690-89e9-6df920810160

3.233.155.124

202 Accepted

53 B

URL HTTP/2
session-replay.browser-intake-datadoghq.com/api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Abeacon%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=9df7cc1f-9f47-4690-89e9-6df920810160
IP
3.233.155.124:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
b3d88307f8d056e7d355ef2ba81aff96
4545a70072d2488ec257d3408282b84986c35cb1
49c21d93634f2fb7520c90d3fce8606a587320704ac829c6c33872c8e045f295

HTTP Headers

POST /api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Abeacon%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=9df7cc1f-9f47-4690-89e9-6df920810160 HTTP/1.1
Host: session-replay.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------208174655817319768283147960692
Content-Length: 6905
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

3.233.155.124

202 Accepted

53 B

URL HTTP/2
session-replay.browser-intake-datadoghq.com/api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=37f1cb6a-055c-49b1-851b-5f03a6ea5d9a
IP
3.233.155.124:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
74d6d9a28428eda6d3a447940ef1558c
005ea55462f166ab7dace307dcf2e925f962edce
356b49cb7ec99a98ee379f323103525eb856de1bf06ab624e1e15345f54bd2ae

HTTP Headers

POST /api/v2/replay?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=37f1cb6a-055c-49b1-851b-5f03a6ea5d9a HTTP/1.1
Host: session-replay.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------27901765942220989799374186267
Content-Length: 160073
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=1ae1c512-fb7a-47b1-8bb6-8a94fe7b6331&batch_time=1673953810111

3.233.153.140

202 Accepted

53 B

URL HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=1ae1c512-fb7a-47b1-8bb6-8a94fe7b6331&batch_time=1673953810111
IP
3.233.153.140:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
a108cb3bc598e8fd3325733108870eb4
f7f58560867185de18e4b9994b1af8edc949fcbf
f5c43dd2e2be3d6b4f2a9c5bd6320ae03e98c42a93b473fd554074adb6a9ad89

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=1ae1c512-fb7a-47b1-8bb6-8a94fe7b6331&batch_time=1673953810111 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15784
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Tue, 17 Jan 2023 11:10:10 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

web-healthcare-dev-carerev.herokuapp.com/favicon-16x16.png

54.159.116.102

200 OK

532 B

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/favicon-16x16.png
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
532 B (532 bytes)
Hash
77af0ce94e27e5bb984c820cf08bb81d
93697f921ca949eae292267527e35458c551532a
debe8bc67b8ba2a4e2be6988120b9817f5d0bdd822d9ce9733abfb178f2f5563

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:25 GMT
Etag: W/"214-1850c4b61e8"
Content-Type: image/png
Content-Length: 532
Date: Tue, 17 Jan 2023 11:10:11 GMT
Via: 1.1 vegur

web-healthcare-dev-carerev.herokuapp.com/favicon-96x96.png

54.159.116.102

200 OK

3.3 kB

URL HTTP/1.1
web-healthcare-dev-carerev.herokuapp.com/favicon-96x96.png
IP
54.159.116.102:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3270 bytes)
Hash
ed807a8ff1e053e3b12b4c13d6de27bb
267d6ddbb659442873fc63f53570542101042535
37b15d8d14535e14d6be4e3ff82942fe6a41d3c3e7e662411ce91e0cd03a4866

HTTP Headers

GET /favicon-96x96.png HTTP/1.1
Host: web-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _dd_s=rum=1&id=d822970e-6931-497d-a13a-7c268c646a7c&created=1673953809187&expire=1673954709192&logs=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Content-Security-Policy: connect-src 'self' https://api-healthcare-dev-carerev.herokuapp.com wss://wss.int.carerev.com https://tools-healthcare-dev-carerev.herokuapp.com https://*.browser-intake-datadoghq.com https://*.launchdarkly.com https://*.herokuapp.com https://*.fontawesome.com https://*.rollbar.com https://*.amplitude.com https://*.amazonaws.com https://api.stripe.com https://*.carerev.com https://*.carerev.cloud https://stats.g.doubleclick.net https://*.fullstory.com https://api.amplitude.com https://api.sprig.com https://cdn.sprig.com https://heapanalytics.com https://maps.googleapis.com https://www.google-analytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net wss://api.appcues.net wss://fast.appcues.com;default-src 'self';font-src 'self' https://use.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://fonts.gstatic.com https://heapanalytics.com;frame-src https://api-healthcare-dev-carerev.herokuapp.com https://www.facebook.com https://*.hellosign.com https://*.stripe.com https://*.carerev.com https://*.carerev.cloud https://*.amazonaws.com https://jsv3.recruitics.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://fast.appcues.com;img-src 'self' blob: data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.amazonaws.com https://maps.gstatic.com https://maps.googleapis.com https://*.webflow.com https://*.linkedin.com https://linkmaker.itunes.apple.com https://px.ads.linkedin.com https://*.facebook.com https://p.adsymptotic.com https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.carerev.com https://*.carerev.cloud https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://analytics.twitter.com https://t.co res.cloudinary.com twemoji.maxcdn.com;object-src 'self' data: https://api-healthcare-dev-carerev.herokuapp.com https://carerevolutions-assets.s3.us-west-1.amazonaws.com/ https://carerevolutions-uploads-dev.s3.amazonaws.com https://*.herokuapp.com https://*.amazonaws.com https://*.carerev.com https://*.carerev.cloud;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.fontawesome.com https://*.licdn.com https://*.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.googletagmanager.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.rollbar.com https://fullstory.com https://*.fullstory.com https://*.facebook.net https://*.stripe.com https://jsv3.recruitics.com https://api.sprig.com https://cdn.sprig.com https://cdn.heapanalytics.com https://heapanalytics.com https://tags.srv.stackadapt.com https://srv.stackadapt.com https://east.srv.stackadapt.com https://uw.srv.stackadapt.com https://eu.srv.stackadapt.com https://static.ads-twitter.com https://fast.appcues.com https://api.appcues.net sha256-l4RwyGMvg2rKCM4lDT6L/cSOnPT+bozqHFV0ej+f+hs=;style-src 'self' 'unsafe-inline' https://*.typekit.net https://maxcdn.bootstrapcdn.com https://*.fontawesome.com https://*.googleapis.com https://*.google.com https://*.gstatic.com https://heapanalytics.com https://tags.srv.stackadapt.com https://fast.appcues.com https://api.appcues.net https://fonts.googleapis.com https://fonts.google.com;upgrade-insecure-requests;block-all-mixed-content;base-uri 'self';frame-ancestors 'self';script-src-attr 'none'
X-Dns-Prefetch-Control: off
Expect-Ct: max-age=0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31556952; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-Xss-Protection: 0
Permissions-Policy: interest-cohort=()
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 13 Dec 2022 16:22:24 GMT
Etag: W/"cc6-1850c4b5e00"
Content-Type: image/png
Content-Length: 3270
Date: Tue, 17 Jan 2023 11:10:11 GMT
Via: 1.1 vegur

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js

142.250.74.35

200 OK

163 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (534)
Size
163 kB (162972 bytes)
Hash
76ec8636078661afbc2c6fdd811b0b76
035c5fe2d57e0363a7abaedc294ef890a6e2a081
194068b0223ebb32c7e7026851a4c1eb6b70c988b269c7fa10f4dd3362bd650a

HTTP Headers

GET /recaptcha/releases/u35fw2Dx4G0WsO6SztVYg4cV/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 15:07:39 GMT
expires: Tue, 16 Jan 2024 15:07:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Jan 2023 00:08:35 GMT
content-type: text/javascript
age: 72152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8b4c80fca9a7bc1b84369cdb60024668
91427b4fd16fa613fb83f053b271f00396b36e90
07bb6c4b267a5f46a15cca9ad9644ca38af67daa1448ad67f583f58e3c8dfcc1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:10:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 21:48:03 GMT
expires: Fri, 12 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 393728
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

api-healthcare-dev-carerev.herokuapp.com/api/v1/support_emails/new

23.22.130.173

200 OK

248 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/support_emails/new
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (338), with no line terminators
Size
248 B (248 bytes)
Hash
f4e52791fcc3e4fc22d4372df7c858f5
b0d2b886eb21fc2195dcd56f8517199b11d3a8bb
f792d51a0143276fe8aa6009f5111cdc0f8eae3fb8fb39fbb978c663d3407051

HTTP Headers

GET /api/v1/support_emails/new HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:12 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Permissions-Policy: interest-cohort=()
Content-Type: application/json; charset=utf-8
Etag: W/"a8734612dec8b0e2fd7dc7d24ded7a67"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: e9c712a1-2d86-4334-97cd-a83f9653c089
X-Runtime: 2.521673
Strict-Transport-Security: max-age=31556952; preload
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src 'none'
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Via: 1.1 vegur

api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f

23.22.130.173

204 No Content

0 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

PATCH /api/v1/devices/3bad9948-3b94-46be-a5de-def5df0ff23f HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
care-rev-device-identifier: 3bad9948-3b94-46be-a5de-def5df0ff23f
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Content-Length: 210
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Permissions-Policy: interest-cohort=()
Cache-Control: no-cache
X-Request-Id: eb1d02ea-a68a-4142-ba37-8b3828c44e46
X-Runtime: 3.284111
Strict-Transport-Security: max-age=31556952; preload
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src 'none'
Vary: Origin
Via: 1.1 vegur

api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8

23.22.130.173

204 No Content

0 B

URL HTTP/1.1
api-healthcare-dev-carerev.herokuapp.com/api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8
IP
23.22.130.173:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

PATCH /api/v1/devices/f3c99b98-9b15-45ff-8c2c-3d37dfc699a8 HTTP/1.1
Host: api-healthcare-dev-carerev.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
care-rev-device-identifier: f3c99b98-9b15-45ff-8c2c-3d37dfc699a8
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Content-Length: 210
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: Cowboy
Date: Tue, 17 Jan 2023 11:10:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://web-healthcare-dev-carerev.herokuapp.com
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 3600
Access-Control-Allow-Credentials: true
Permissions-Policy: interest-cohort=()
Cache-Control: no-cache
X-Request-Id: 9fe9c737-6a77-4e5b-b308-5edd970a130f
X-Runtime: 3.272954
Strict-Transport-Security: max-age=31556952; preload
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src 'none'
Vary: Origin
Via: 1.1 vegur

rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=5f90442a-fc45-4880-b72b-4e860c89828c&batch_time=1673953813535

3.233.153.140

202 Accepted

53 B

URL HTTP/2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=5f90442a-fc45-4880-b72b-4e860c89828c&batch_time=1673953813535
IP
3.233.153.140:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
152ba8298ecac262e0758a3b8f1eddd6
1e18e78d010020f718e8b0347b5b037af75e1ffa
c88eb1a7a53e3942479e1be72e8ad9f90f8504e2d79c70f4412f9241c48c7fed

HTTP Headers

POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.26.0%2Capi%3Axhr%2Cenv%3Adev%2Cservice%3Aweb_app&dd-api-key=pub50b0f8cd7dd551a088ff1ee6e5ea3201&dd-evp-origin-version=4.26.0&dd-evp-origin=browser&dd-request-id=5f90442a-fc45-4880-b72b-4e860c89828c&batch_time=1673953813535 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15588
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Tue, 17 Jan 2023 11:10:13 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
83c616f47971475fca547a8b8133be0c
e65f95c661af949ee6e7842868dfa884b1086241
87abfb95422961a243d9adb6546f6c9ea107b31e68a222f233ef0d59e77fb744

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123640
Date: Tue, 17 Jan 2023 11:10:15 GMT
Etag: "63c5aba8-1d7"
Expires: Wed, 18 Jan 2023 21:30:55 GMT
Last-Modified: Mon, 16 Jan 2023 19:55:20 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MYqbG99Y34isQnwUi_ONELbLBuMHrxGI8cd1qXZ5Kyl_PYv5yOifvQ==
Age: 5735

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
83c616f47971475fca547a8b8133be0c
e65f95c661af949ee6e7842868dfa884b1086241
87abfb95422961a243d9adb6546f6c9ea107b31e68a222f233ef0d59e77fb744

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 11:10:15 GMT
Last-Modified: Tue, 17 Jan 2023 10:53:15 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Jhk5Eg9S9_1GZNPBEmCnhd-8PxMROU4ta_HtbJ-ReWx-5z0tNjYcxQ==
Age: 1020

shortener.int.carerev.cloud/8Grk6

3.232.178.228

302 Found

0 B

URL HTTP/2
shortener.int.carerev.cloud/8Grk6
IP
3.232.178.228:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

Detections

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to Suspicious *.cloud Domain

HTTP Headers

GET /8Grk6 HTTP/1.1
Host: shortener.int.carerev.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
permissions-policy: interest-cohort=()
content-type: text/html; charset=utf-8
location: https://web-healthcare-dev-carerev.herokuapp.com/professional/shift/f33e37fa-945a-4e04-a370-b7e065eac57b
cache-control: no-cache
x-request-id: 6a3a248c-ea87-9598-8620-0ed231c9150a
x-runtime: 0.010468
strict-transport-security: max-age=2592000; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'none'
x-envoy-upstream-service-time: 16
date: Tue, 17 Jan 2023 11:10:06 GMT
server: istio-envoy
X-Firefox-Spdy: h2

kit.fontawesome.com/56afa4adb8.js

104.18.23.52

200 OK

0 B

URL HTTP/2
kit.fontawesome.com/56afa4adb8.js
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /56afa4adb8.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-healthcare-dev-carerev.herokuapp.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 17 Jan 2023 11:10:08 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzsUHpMeX6qPnaJmd3WB
cf-cache-status: MISS
server: cloudflare
cf-ray: 78aea48309e8b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML