click.sf.capbluecross.com/?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe
301 Moved Permanently 0 B URL HTTP/1.1 click.sf.capbluecross.com/?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe HTTP/1.1
Host: click.sf.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://click.sf.capbluecross.com/?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe
Connection: Keep-Alive
Content-Length: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11718
Expires: Sun, 04 Dec 2022 05:14:04 GMT
Date: Sun, 04 Dec 2022 01:58:46 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 403
Cache-Control: max-age=117549
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:46 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 10:37:55 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4086
Expires: Sun, 04 Dec 2022 03:06:52 GMT
Date: Sun, 04 Dec 2022 01:58:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 01:20:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2325
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8KUyLG9FMPItNV1SBfgTAlfTDjMNbLe5+Lk7E2W6J1xo8xaWx6YuXIcchR4uwSRjTLUg3/JwTno=
x-amz-request-id: J12125AVYX5K0SVQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 01:46:47 GMT
age: 719
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 01:58:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a4caad8b7952405a284a074cbb8baa42
29d416ccb53a90d7fa4c1100ee6ecab256da6168
1f7a071d2011ea6dba71b80af2c0936d5cf8e810508b240a229a13d3c5e5b8f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=139081
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:46 GMT
Etag: "638b7b1f-1d7"
Expires: Mon, 05 Dec 2022 16:36:47 GMT
Last-Modified: Sat, 03 Dec 2022 16:36:47 GMT
Server: nginx
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 01:11:19 GMT
cache-control: public,max-age=3600
age: 2847
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
click.sf.capbluecross.com/?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe
302 Found 259 B URL HTTP/1.1 click.sf.capbluecross.com/?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3240b4a9192d62f765bf5ad927a12549
ce0a1f948aa579a7f37bf98b54a515c3e1781935
aef346f405760f96c9cf2c8ba69791ea891ae221a40d9906a0585691a93b93b5
GET /?qs=99878efe9e724c05d4f0b59a73e56778b4b20e98fdd9e13100e9880f403119b0c7d7b9309fe5d00fb6b43823479682ba1d64d3e9142d03935a8376d1c2788efe HTTP/1.1
Host: click.sf.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Date: Sun, 04 Dec 2022 01:58:46 GMT
Connection: close
Content-Length: 259
ocsp.digicert.com/
200 OK 471 B IP
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 396
Cache-Control: max-age=112480
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:47 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:13:27 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 5368a717793cf72a016198d6ae7e3850
e2fe8c941b38e4e4123d0b849abbdb6e1a5e13d3
c9fa674af1c49c418e79b229d0ca55197a50bc077ec7a384bc6d10c730d7c631
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "C9FA674AF1C49C418E79B229D0CA55197A50BC077EC7A384BC6D10C730D7C631"
Last-Modified: Sun, 04 Dec 2022 00:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Sun, 04 Dec 2022 02:58:47 GMT
Date: Sun, 04 Dec 2022 01:58:47 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WsyppB06i6g4TsXYbyI+HA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dnccKDlDgK/T/igCxSxHKtYmSTA=
www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
200 OK 26 kB URL HTTP/1.1 www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5985), with CRLF, LF line terminators
Hash 53b247a69d9d0bccdf9932e5f8064f5c
40f0f4cc493a67dcfe5e448aa6fb88f50ed480db
02313df95501a589e3caa6e0759cc85c02ba9c76d2ae27fea126051b54fbc503
GET /wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022 HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
content-language: en
content-location: https://www.capbluecross.com/wps/portal/cap/home/!ut/p/z1/04_Sj9CPykssy0xPLMnMz0vMAfIjo8zifR09jQwNTQx9_P393Awcg0wNDJ0cjYxNjA31w8EK_CyAso7BBj4Gzu4WBo4BHsFhPt6eBu6BhvpRxOg3wAEcDYjTj0dBFH7jw_WjwErw-YCQGQW5oaERBpmOAFdsU6U!/dz/d5/L2dBISEvZ0FBIS9nQSEh/
content-type: text/html; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:47 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
vary: Cookie,User-Agent
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
pragma: no-cache
Set-Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; Path=/; Secure; HttpOnly
citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b;path=/;secure;httponly
Content-Encoding: gzip
Transfer-Encoding: chunked
se.monetate.net/js/2/a-7be673a7/p/capbluecross.com/entry.js
200 OK 2.9 kB URL HTTP/2 se.monetate.net/js/2/a-7be673a7/p/capbluecross.com/entry.js
IP
File type ASCII text, with very long lines (1809)
Hash f3133f02f49069ea7dad4ea76d85b796
9198154e28d95834c1376dd5a3556d9a7ed7dc5a
819a63484d6219633f77af6c9d1d78ae51fb3e104bbf0c7a43c0b510f26ba7f2
GET /js/2/a-7be673a7/p/capbluecross.com/entry.js HTTP/1.1
Host: se.monetate.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "1eabcc731e44abcc25a20a25336596cc:1668922213.279691"
last-modified: Sun, 20 Nov 2022 05:30:13 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
date: Sun, 04 Dec 2022 01:58:48 GMT
content-length: 2879
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8449ead692252cf15503cbcbbeeff451
91b8c23060022f451ccbad7ce29a08bb65a02830
e478d2f5493794dbb3e66819ddea583d2ad9180fd9d915488642cc7b4e6a9067
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E478D2F5493794DBB3E66819DDEA583D2AD9180FD9D915488642CC7B4E6A9067"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5200
Expires: Sun, 04 Dec 2022 03:25:28 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-TD7RGG
200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TD7RGG
IP
File type ASCII text, with very long lines (47298)
Hash 08814f3a2fb8b4e44c59d8704d9c6b28
6eff2c7d3be5a8a5b1945ef7e33071783eecb088
fa3d65dada9beb05a5e3cf468358b7e7bffcf895ad2fdccab4138e4f5bb3b9e9
GET /gtm.js?id=GTM-TD7RGG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 01:58:48 GMT
expires: Sun, 04 Dec 2022 01:58:48 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80220
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85837b29-ffdd-4915-a6ab-8d0721427d1b.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85837b29-ffdd-4915-a6ab-8d0721427d1b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 591104ff3c76193fe3c24fbbbb332f7d
aa134912d4f5ddfb371c45d9975506246af68400
af0cbb5c37c901019c1e684fe9a019bb7a2fb8359909ab831b7ff86cbc3d0fec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85837b29-ffdd-4915-a6ab-8d0721427d1b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9356
x-amzn-requestid: 13227ea0-07e5-460c-b909-324fd267bb2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_uGThoAMFoug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-6776240c50d737ca55ce3b26;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kKuGnPHBMhIEvx-sTw6nJCiajijgnNmNrW5EEzmNdvVZcDfV_hTJ4A==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 04:17:43 GMT
age: 78065
etag: "aa134912d4f5ddfb371c45d9975506246af68400"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
www.capbluecross.com/wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fcss&lm=1650195228000&entry=wp_toolbar_common__0.0%3Ahead_css&entry=st_compressed_navbar__0.0%3Ahead_css&entry=wp_dialog_css__0.0%3Ahead_css&entry=wp_toolbar_logo__0.0%3Ahead_css&entry=wp_portlet_css__0.0%3Ahead_css&entry=wp_theme_simple__0.0%3Ahead_css&entry=bootstrap__3.3.4%3Ahead_css&entry=wp_toolbar_common_actionbar__0.0%3Ahead_css&entry=wp_simple_contextmenu_css__0.0%3Ahead_css&entry=wp_toolbar_actionbar__0.0%3Ahead_css&entry=st_fixed_navbar__0.0%3Ahead_css&entry=wp_draft_page_ribbon__0.0%3Ahead_css&entry=wp_toolbar_sitepreview__0.0%3Ahead_css&entry=st_notice__0.0%3Ahead_css&entry=wp_toolbar_moremenu__0.0%3Ahead_css&entry=st_layoutGrid__0.0%3Ahead_css&entry=st_search__0.0%3Ahead_css&entry=wp_status_bar__0.0%3Ahead_css&entry=wp_toolbar_projectmenu__0.0%3Ahead_css&entry=wp_bootstrap_ext__1.0.0%3Ahead_css&entry=wp_oob_sample_styles__0.0%3Ahead_css
200 OK 60 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fcss&lm=1650195228000&entry=wp_toolbar_common__0.0%3Ahead_css&entry=st_compressed_navbar__0.0%3Ahead_css&entry=wp_dialog_css__0.0%3Ahead_css&entry=wp_toolbar_logo__0.0%3Ahead_css&entry=wp_portlet_css__0.0%3Ahead_css&entry=wp_theme_simple__0.0%3Ahead_css&entry=bootstrap__3.3.4%3Ahead_css&entry=wp_toolbar_common_actionbar__0.0%3Ahead_css&entry=wp_simple_contextmenu_css__0.0%3Ahead_css&entry=wp_toolbar_actionbar__0.0%3Ahead_css&entry=st_fixed_navbar__0.0%3Ahead_css&entry=wp_draft_page_ribbon__0.0%3Ahead_css&entry=wp_toolbar_sitepreview__0.0%3Ahead_css&entry=st_notice__0.0%3Ahead_css&entry=wp_toolbar_moremenu__0.0%3Ahead_css&entry=st_layoutGrid__0.0%3Ahead_css&entry=st_search__0.0%3Ahead_css&entry=wp_status_bar__0.0%3Ahead_css&entry=wp_toolbar_projectmenu__0.0%3Ahead_css&entry=wp_bootstrap_ext__1.0.0%3Ahead_css&entry=wp_oob_sample_styles__0.0%3Ahead_css
IP
File type ASCII text, with very long lines (45886)
Hash 18ed70f3b87d0239f2658e3a1b0fd05a
20f5c0b4f53027ea073e8af3c0d5316848dc7230
21a23a59cf79f7761bbd1752f08e2383a7a16fe85a5e8fd57c68ee21d9cc6e6d
GET /wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fcss&lm=1650195228000&entry=wp_toolbar_common__0.0%3Ahead_css&entry=st_compressed_navbar__0.0%3Ahead_css&entry=wp_dialog_css__0.0%3Ahead_css&entry=wp_toolbar_logo__0.0%3Ahead_css&entry=wp_portlet_css__0.0%3Ahead_css&entry=wp_theme_simple__0.0%3Ahead_css&entry=bootstrap__3.3.4%3Ahead_css&entry=wp_toolbar_common_actionbar__0.0%3Ahead_css&entry=wp_simple_contextmenu_css__0.0%3Ahead_css&entry=wp_toolbar_actionbar__0.0%3Ahead_css&entry=st_fixed_navbar__0.0%3Ahead_css&entry=wp_draft_page_ribbon__0.0%3Ahead_css&entry=wp_toolbar_sitepreview__0.0%3Ahead_css&entry=st_notice__0.0%3Ahead_css&entry=wp_toolbar_moremenu__0.0%3Ahead_css&entry=st_layoutGrid__0.0%3Ahead_css&entry=st_search__0.0%3Ahead_css&entry=wp_status_bar__0.0%3Ahead_css&entry=wp_toolbar_projectmenu__0.0%3Ahead_css&entry=wp_bootstrap_ext__1.0.0%3Ahead_css&entry=wp_oob_sample_styles__0.0%3Ahead_css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/css&lm=1650195228000&entry=wp_toolbar_common__0.0%3ahead_css&entry=st_compressed_navbar__0.0%3ahead_css&entry=wp_dialog_css__0.0%3ahead_css&entry=wp_toolbar_logo__0.0%3ahead_css&entry=wp_portlet_css__0.0%3ahead_css&entry=wp_theme_simple__0.0%3ahead_css&entry=bootstrap__3.3.4%3ahead_css&entry=wp_toolbar_common_actionbar__0.0%3ahead_css&entry=wp_simple_contextmenu_css__0.0%3ahead_css&entry=wp_toolbar_actionbar__0.0%3ahead_css&entry=st_fixed_navbar__0.0%3ahead_css&entry=wp_draft_page_ribbon__0.0%3ahead_css&entry=wp_toolbar_sitepreview__0.0%3ahead_css&entry=st_notice__0.0%3ahead_css&entry=wp_toolbar_moremenu__0.0%3ahead_css&entry=st_layoutGrid__0.0%3ahead_css&entry=st_search__0.0%3ahead_css&entry=wp_status_bar__0.0%3ahead_css&entry=wp_toolbar_projectmenu__0.0%3ahead_css&entry=wp_bootstrap_ext__1.0.0%3ahead_css&entry=wp_oob_sample_styles__0.0%3ahead_css
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:48 GMT
last-modified: Sun, 17 Apr 2022 11:33:48 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-request-digest: ZgO-9xuraZCW3huEGmTiTw
expires: Mon, 05 Dec 2022 01:58:48 GMT
x-datasource-digest: WTu7ejSaHonkt6Aqxvwz1g
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vNP2rQwmWTntetjJyjonO8N_YOBqvQuZUm42BWX7c1GoX7jASOIpCg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:49:42 GMT
age: 14946
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 15287
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5049
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 01:58:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:42:39 GMT
age: 15369
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:43:43 GMT
age: 65705
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash cce1209fc84311d35081809cfb577625
efdd4b78c2b8ad4bbdd0fa991ba941247da90a75
b3f04d03d4c85f116a4cd0ddacfd375aa262e980709277400622701e1535a5b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4825
Cache-Control: max-age=112241
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:48 GMT
Etag: "638aff70-1d7"
Expires: Mon, 05 Dec 2022 09:09:29 GMT
Last-Modified: Sat, 03 Dec 2022 07:49:04 GMT
Server: ECS (amb/6B9C)
X-Cache: HIT
Content-Length: 471
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/5d157f89-ab3d-46df-85e2-104656565112/jquery.validate.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-5d157f89-ab3d-46df-85e2-104656565112-lLkLx4x
200 OK 23 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/5d157f89-ab3d-46df-85e2-104656565112/jquery.validate.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-5d157f89-ab3d-46df-85e2-104656565112-lLkLx4x
IP
File type Unicode text, UTF-8 text, with very long lines (22932)
Hash 9346ec27896981bc4c0b146cf327727a
21486194baa22eb1155fe98bf7af6314e7773cc7
50e497b00818378dcffe856b994f89947b620c66163768879c9b8a63d583f898
GET /wps/wcm/connect/prod_nws.capblue.com29556/5d157f89-ab3d-46df-85e2-104656565112/jquery.validate.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-5d157f89-ab3d-46df-85e2-104656565112-lLkLx4x HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 23070
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "395064551"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:53:10 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/0ed73531-6875-4e69-b0ad-9b1de436f4bc/jquery.smooth-scroll.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-0ed73531-6875-4e69-b0ad-9b1de436f4bc-lLaqrdL
200 OK 3.7 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/0ed73531-6875-4e69-b0ad-9b1de436f4bc/jquery.smooth-scroll.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-0ed73531-6875-4e69-b0ad-9b1de436f4bc-lLaqrdL
IP
File type ASCII text, with very long lines (3515)
Hash c749818e8c9409c6fb15fe489d84b0d8
98baebbfcb04043c1defc23845c353ba12177f85
7b08635eae74155d8eab28aaf188ed923c456443324a5eadc7e627c31ea2ed87
GET /wps/wcm/connect/prod_nws.capblue.com29556/0ed73531-6875-4e69-b0ad-9b1de436f4bc/jquery.smooth-scroll.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-0ed73531-6875-4e69-b0ad-9b1de436f4bc-lLaqrdL HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 3675
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "395064301"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:53:10 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/583a6818-3750-406c-9b2e-65183a03e4d6/jquery.collapse.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-583a6818-3750-406c-9b2e-65183a03e4d6-lNV9JrO
200 OK 4.6 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/583a6818-3750-406c-9b2e-65183a03e4d6/jquery.collapse.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-583a6818-3750-406c-9b2e-65183a03e4d6-lNV9JrO
IP
File type HTML document, ASCII text
Hash a891c96584e21ee78249010361c049c7
1ecc5c730c0d72719f7b25f34ec69021975d4fc1
8c6b621cbfab4dc28c7bef8c4189d9fcbb5912814f191279a5f802f462e362e8
GET /wps/wcm/connect/prod_nws.capblue.com29556/583a6818-3750-406c-9b2e-65183a03e4d6/jquery.collapse.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-583a6818-3750-406c-9b2e-65183a03e4d6-lNV9JrO HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 4614
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "2032619941"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:50:52 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/c9c8b0a0-5c3a-4e0a-a804-97d698d5c938/jquery.bgswitcher.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-c9c8b0a0-5c3a-4e0a-a804-97d698d5c938-lKCuXkz
200 OK 12 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/c9c8b0a0-5c3a-4e0a-a804-97d698d5c938/jquery.bgswitcher.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-c9c8b0a0-5c3a-4e0a-a804-97d698d5c938-lKCuXkz
IP
Hash 7a3f745bf700d0a97e206d4f7170a28d
7da50e46836d8bf623f0cbf33adf8e243fcbee15
92852c91b0b884881092fc1d1b418d6636b64e42d937ae3227138c0c6d14a808
GET /wps/wcm/connect/prod_nws.capblue.com29556/c9c8b0a0-5c3a-4e0a-a804-97d698d5c938/jquery.bgswitcher.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-c9c8b0a0-5c3a-4e0a-a804-97d698d5c938-lKCuXkz HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 11714
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "395063552"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:53:10 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/b669e6a1-645f-4947-8886-acdec1b33b28/jquery.vide.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-b669e6a1-645f-4947-8886-acdec1b33b28-lLaqhLG
200 OK 4.5 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/b669e6a1-645f-4947-8886-acdec1b33b28/jquery.vide.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-b669e6a1-645f-4947-8886-acdec1b33b28-lLaqhLG
IP
File type ASCII text, with very long lines (4322)
Hash 901e2d8fd2af243d3d8dd68e38fa22da
a1cacad6d220f356b78ee695bc1b5d28aa63cc09
be3950dab42791bb50d60a09c80869ba8c86f7dab74eff23b91a365d0c710831
GET /wps/wcm/connect/prod_nws.capblue.com29556/b669e6a1-645f-4947-8886-acdec1b33b28/jquery.vide.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-b669e6a1-645f-4947-8886-acdec1b33b28-lLaqhLG HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 4489
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "395064136"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:54:14 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/cbc-icons?subtype=css
200 OK 1.4 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/cbc-icons?subtype=css
IP
Hash 4f8014172dc4fd87c83907b427403460
0ca3510fb8dd9f325c7a2357c9f373658358b3fe
1879e2faefcc67a21133c84d78958fe5eff242ea97cdd880e7d86cc54cb59015
GET /wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/cbc-icons?subtype=css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-language: en-US
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "133357076"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/ibm-style-fixes?subtype=css
200 OK 3.7 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/ibm-style-fixes?subtype=css
IP
Hash e41630891111b869cb4241f664879717
ce5785218b645c6f9e6bd2b9b36af824552bc2c4
927a28b7a2df6eaca9734124a25a9a71a6d763da77aa400dce1f99d0b068529a
GET /wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/ibm-style-fixes?subtype=css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-language: en-US
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "-1642859236"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/32406f4d-6569-4020-b72c-25d6d0662989/jquery-ui.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-32406f4d-6569-4020-b72c-25d6d0662989-lLkLFc9
200 OK 254 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/32406f4d-6569-4020-b72c-25d6d0662989/jquery-ui.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-32406f4d-6569-4020-b72c-25d6d0662989-lLkLFc9
IP
File type ASCII text, with very long lines (32074)
Size 254 kB (253669 bytes)
Hash c15b1008dec3c8967ea657a7bb4baaec
78489e580adaef931e6e5b131dab556c397e4a1a
28ce75d953678c4942df47a11707a15e3c756021cf89090e3e6aa7ad6b6971c3
GET /wps/wcm/connect/prod_nws.capblue.com29556/32406f4d-6569-4020-b72c-25d6d0662989/jquery-ui.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-32406f4d-6569-4020-b72c-25d6d0662989-lLkLFc9 HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 253669
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "395065101"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:54:14 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/app?subtype=css
200 OK 3.7 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/app?subtype=css
IP
Hash efe962ea8c62ef26377260a1f9e55c4d
67fd09a9257e2a5833bc46e1245ef6609a3572eb
a74cc29f6a7a96b46279a2545771163b48546d639f6ca59db110097f0a74d676
GET /wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/app?subtype=css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-language: en-US
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "-1228851127"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/jquery-ui?subtype=css
200 OK 8.6 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/jquery-ui?subtype=css
IP
File type ASCII text, with very long lines (30446)
Hash dc4dbd4561baa9c79278175631bea28d
5ea9e83d7ea8370bf11ba324bc631cd7c2c1b0cc
6e4935890a4eba86a2536f1b10cff2c49a91b43e05068c57916e42bcfd9c360f
GET /wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/jquery-ui?subtype=css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-language: en-US
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "1544230622"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/banners?subtype=css
200 OK 417 B URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/banners?subtype=css
IP
Hash 4b840c000db4f09334fb0df3b5ea7d5c
5c725632260a394a9566a90ffc2c79cd6d697696
b4416db52e32497c98fb36c4e9d41fef1f16c523df7ad448ab78330578ef44ba
GET /wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/banners?subtype=css HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
content-language: en-US
content-type: text/css; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "-10786528"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=wp_client_main__0.0%3Ahead_js&entry=wp_client_ext__0.0%3Ahead_js&entry=wp_client_logging__0.0%3Ahead_js&entry=wp_client_tracing__0.0%3Ahead_js&entry=wp_modules__0.0%3Ahead_js&entry=wp_photon_dom__0.0%3Ahead_js&entry=wp_toolbar_common__0.0%3Ahead_js&entry=wp_dialog_util__0.0%3Ahead_js&entry=wp_dialog_draggable__0.0%3Ahead_js&entry=wp_dialog_main__0.0%3Ahead_js&entry=wp_a11y__0.0%3Ahead_js&entry=wp_state_page__0.0%3Ahead_js&entry=wp_client_selector__0.0%3Ahead_js&entry=jquery_cap__0.0%3Ahead_js&entry=bootstrap__3.3.4%3Ahead_js&entry=wp_theme_utils__0.0%3Ahead_js&entry=wp_toolbar_viewframe_validator__0.0%3Ahead_js&entry=st_notice__0.0%3Ahead_js&entry=st_navigation__0.0%3Ahead_js
200 OK 81 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=wp_client_main__0.0%3Ahead_js&entry=wp_client_ext__0.0%3Ahead_js&entry=wp_client_logging__0.0%3Ahead_js&entry=wp_client_tracing__0.0%3Ahead_js&entry=wp_modules__0.0%3Ahead_js&entry=wp_photon_dom__0.0%3Ahead_js&entry=wp_toolbar_common__0.0%3Ahead_js&entry=wp_dialog_util__0.0%3Ahead_js&entry=wp_dialog_draggable__0.0%3Ahead_js&entry=wp_dialog_main__0.0%3Ahead_js&entry=wp_a11y__0.0%3Ahead_js&entry=wp_state_page__0.0%3Ahead_js&entry=wp_client_selector__0.0%3Ahead_js&entry=jquery_cap__0.0%3Ahead_js&entry=bootstrap__3.3.4%3Ahead_js&entry=wp_theme_utils__0.0%3Ahead_js&entry=wp_toolbar_viewframe_validator__0.0%3Ahead_js&entry=st_notice__0.0%3Ahead_js&entry=st_navigation__0.0%3Ahead_js
IP
File type ASCII text, with very long lines (2815)
Hash 63bf5caf9fc3a3d375ece2608b87d193
4e146bd7659c9f138a9c4f8b2906022564f431ea
a4ffbe44ffd02a83d8d092922be584f35a4fa54bc368966f0e6c35e14b6e1583
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=wp_client_main__0.0%3Ahead_js&entry=wp_client_ext__0.0%3Ahead_js&entry=wp_client_logging__0.0%3Ahead_js&entry=wp_client_tracing__0.0%3Ahead_js&entry=wp_modules__0.0%3Ahead_js&entry=wp_photon_dom__0.0%3Ahead_js&entry=wp_toolbar_common__0.0%3Ahead_js&entry=wp_dialog_util__0.0%3Ahead_js&entry=wp_dialog_draggable__0.0%3Ahead_js&entry=wp_dialog_main__0.0%3Ahead_js&entry=wp_a11y__0.0%3Ahead_js&entry=wp_state_page__0.0%3Ahead_js&entry=wp_client_selector__0.0%3Ahead_js&entry=jquery_cap__0.0%3Ahead_js&entry=bootstrap__3.3.4%3Ahead_js&entry=wp_theme_utils__0.0%3Ahead_js&entry=wp_toolbar_viewframe_validator__0.0%3Ahead_js&entry=st_notice__0.0%3Ahead_js&entry=st_navigation__0.0%3Ahead_js HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/mashup:cxml/xZZLj5swEMc_DceER6Kq6q27t0rtZfeOBjNLjAzj2oYkEh--Niak2Y0qklXck1_zn_nhxwx4-PHybS9zJji2Jm-At1G6TRTqKN18j_dSx2aHDf6kshOo42ZqedGwuLZjK8gFHFGtaz0MDRyiDCocvn7ZJslq6DSqKGPUGjyY4Q2ExtXAgO0wyjQjiYPsCsHZapCKamTmvfEKLwHtyk18jBQ6UUhGQVXF2-omzkkTEtMoYLdiTpogmFPsRXyntp67EyITpDuFD0aVOzLU5iU1i2i9uYM9C4PyGiJRgMoZNQ19fPB-9T21N_aPyvWCXIKSg30aeWe4WLS13t5B_qUMw1gqqCooBN4HOsvD0C7O9B9AQxw7pOlxEZ0zdGyuDUKmDRjMpfW9iG80H1-6VUzigDleo7BWpG5K8ifR40Hr3x2qY85AOsA9qBnwGeST6PDVcb7YXePMM1-uxN5B3Kdpkjl0P46ydJ0m62zd8Nbh-2AFkdG2gN0ba9bH_WazddHmmWCBomxHvdv6UpEsad9GWWa_M70EcBneeRqT37ICOk6O5mOZn0dBLuupHPUc928KLHgPgpdw7eJer03TtGO_4uTxH6FN3pI9T7zzyM_pYvIT7xDK2PfPB_voMOuutbVd2g3XWLqx7T4_vV4CQM8rG8H_N3wSYvblQUbzX_Pkf4z7r534A-xqdUo!?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1650195228000&entry=wp_client_main__0.0%3ahead_js&entry=wp_client_ext__0.0%3ahead_js&entry=wp_client_logging__0.0%3ahead_js&entry=wp_client_tracing__0.0%3ahead_js&entry=wp_modules__0.0%3ahead_js&entry=wp_photon_dom__0.0%3ahead_js&entry=wp_toolbar_common__0.0%3ahead_js&entry=wp_dialog_util__0.0%3ahead_js&entry=wp_dialog_draggable__0.0%3ahead_js&entry=wp_dialog_main__0.0%3ahead_js&entry=wp_a11y__0.0%3ahead_js&entry=wp_state_page__0.0%3ahead_js&entry=wp_client_selector__0.0%3ahead_js&entry=jquery_cap__0.0%3ahead_js&entry=bootstrap__3.3.4%3ahead_js&entry=wp_theme_utils__0.0%3ahead_js&entry=wp_toolbar_viewframe_validator__0.0%3ahead_js&entry=st_notice__0.0%3ahead_js&entry=st_navigation__0.0%3ahead_js
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:48 GMT
last-modified: Sun, 17 Apr 2022 11:33:48 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-request-digest: ZgO-9xuraZCW3huEGmTiTw
expires: Mon, 05 Dec 2022 01:58:48 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/2a0657e0-c673-4472-98f2-103ac2d0cc19/mp_linkcode.js?MOD=AJPERES&CONVERT_TO=url&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-2a0657e0-c673-4472-98f2-103ac2d0cc19-m0yRXEo
200 OK 1.9 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/2a0657e0-c673-4472-98f2-103ac2d0cc19/mp_linkcode.js?MOD=AJPERES&CONVERT_TO=url&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-2a0657e0-c673-4472-98f2-103ac2d0cc19-m0yRXEo
IP
File type exported SGML document, ASCII text, with CRLF line terminators
Hash 02f4bbb33735ee9a84cf0dab3d28cf16
924942c4c90a63cf52bb8d22f04861a52d087b18
724d6c75b4b7b300f6a6eb62313bcfa89f5aa8429a44d06ac69c6a0d8f0bc8a4
GET /wps/wcm/connect/prod_nws.capblue.com29556/2a0657e0-c673-4472-98f2-103ac2d0cc19/mp_linkcode.js?MOD=AJPERES&CONVERT_TO=url&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-2a0657e0-c673-4472-98f2-103ac2d0cc19-m0yRXEo HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 1901
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "584598954"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:40:02 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.capbluecross.com/wps/contenthandler/!ut/p/digest!Yll_9VDIyY4R0moAB1Y4sQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1668693549519&entry=wp_portal__0.0%3Aconfig_config_static&entry=wcm_config__0.0%3Aconfig_config_static&entry=wcm_inplaceEdit__0.0%3Aconfig_config_static
302 Found 0 B URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!Yll_9VDIyY4R0moAB1Y4sQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1668693549519&entry=wp_portal__0.0%3Aconfig_config_static&entry=wcm_config__0.0%3Aconfig_config_static&entry=wcm_inplaceEdit__0.0%3Aconfig_config_static
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wps/contenthandler/!ut/p/digest!Yll_9VDIyY4R0moAB1Y4sQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1668693549519&entry=wp_portal__0.0%3Aconfig_config_static&entry=wcm_config__0.0%3Aconfig_config_static&entry=wcm_inplaceEdit__0.0%3Aconfig_config_static HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
accept-ranges: bytes
content-language: en-US
content-length: 0
date: Sun, 04 Dec 2022 01:58:49 GMT
location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!IkCT5J884vB4-07Ys8ArZQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1668693549519&entry=wp_portal__0.0%3aconfig_config_static&entry=wcm_config__0.0%3aconfig_config_static&entry=wcm_inplaceEdit__0.0%3aconfig_config_static
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-request-digest: ZgO-9xuraZCW3huEGmTiTw
x-datasource-digest: IkCT5J884vB4-07Ys8ArZQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/005be5e5-f092-42f0-9d1e-fb0cdfcd5af1/jquery.inputmask.bundle.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-005be5e5-f092-42f0-9d1e-fb0cdfcd5af1-lLkLpId
200 OK 76 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/005be5e5-f092-42f0-9d1e-fb0cdfcd5af1/jquery.inputmask.bundle.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-005be5e5-f092-42f0-9d1e-fb0cdfcd5af1-lLkLpId
IP
File type Unicode text, UTF-8 text, with very long lines (32116)
Hash bf0a6f4c595f7b2b530af0ff2a7ad4e0
ae081042899fa3d963fe5de68d28b97cec086156
1d00a43e3b1c901b663bad31799b39eb483cff9bf4e03bce932128d35ce14a9a
GET /wps/wcm/connect/prod_nws.capblue.com29556/005be5e5-f092-42f0-9d1e-fb0cdfcd5af1/jquery.inputmask.bundle.min.js?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-005be5e5-f092-42f0-9d1e-fb0cdfcd5af1-lLkLpId HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 76009
content-type: application/javascript
date: Sun, 04 Dec 2022 01:58:47 GMT
etag: "395064751"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:51:24 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=st_compressed_navbar__0.0%3Aconfig_js&entry=wp_dialog_main__0.0%3Aconfig_js&entry=st_navigation__0.0%3Aconfig_js&entry=wp_toolbar_utils__0.0%3Aconfig_js&entry=wp_state_page_modes__0.0%3Aconfig_js&entry=wp_simple_contextmenu_ext__0.0%3Aconfig_js&entry=wp_simple_contextmenu_js__0.0%3Aconfig_js&entry=wp_toolbar_actionbar__0.0%3Aconfig_js&entry=wp_toolbar_menuactions__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview_menuactions__0.0%3Aconfig_js&entry=st_svg__0.0%3Aconfig_js&entry=st_search__0.0%3Aconfig_js&entry=st_fixed_navbar__0.0%3Aconfig_js&entry=wp_status_bar__0.0%3Aconfig_js&entry=wp_high_contrast__0.0%3Aconfig_js&entry=wp_toolbar_projectmenu__0.0%3Aconfig_js&entry=wp_toolbar_contextmenu__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview__0.0%3Aconfig_js&entry=wp_skin_region__0.0%3Aconfig_js
200 OK 23 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=st_compressed_navbar__0.0%3Aconfig_js&entry=wp_dialog_main__0.0%3Aconfig_js&entry=st_navigation__0.0%3Aconfig_js&entry=wp_toolbar_utils__0.0%3Aconfig_js&entry=wp_state_page_modes__0.0%3Aconfig_js&entry=wp_simple_contextmenu_ext__0.0%3Aconfig_js&entry=wp_simple_contextmenu_js__0.0%3Aconfig_js&entry=wp_toolbar_actionbar__0.0%3Aconfig_js&entry=wp_toolbar_menuactions__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview_menuactions__0.0%3Aconfig_js&entry=st_svg__0.0%3Aconfig_js&entry=st_search__0.0%3Aconfig_js&entry=st_fixed_navbar__0.0%3Aconfig_js&entry=wp_status_bar__0.0%3Aconfig_js&entry=wp_high_contrast__0.0%3Aconfig_js&entry=wp_toolbar_projectmenu__0.0%3Aconfig_js&entry=wp_toolbar_contextmenu__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview__0.0%3Aconfig_js&entry=wp_skin_region__0.0%3Aconfig_js
IP
File type ASCII text, with very long lines (1035), with CRLF, LF line terminators
Hash 968bf8b74df812e639b7348fd3d3f6a3
caaeff48c48b7558cac34d74cc26578a75cd8b00
d8f6f9181543e24c01029e740c9aaf6a72167b7b80bb71059e06e6a582d8a545
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fjavascript&lm=1650195228000&entry=st_compressed_navbar__0.0%3Aconfig_js&entry=wp_dialog_main__0.0%3Aconfig_js&entry=st_navigation__0.0%3Aconfig_js&entry=wp_toolbar_utils__0.0%3Aconfig_js&entry=wp_state_page_modes__0.0%3Aconfig_js&entry=wp_simple_contextmenu_ext__0.0%3Aconfig_js&entry=wp_simple_contextmenu_js__0.0%3Aconfig_js&entry=wp_toolbar_actionbar__0.0%3Aconfig_js&entry=wp_toolbar_menuactions__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview_menuactions__0.0%3Aconfig_js&entry=st_svg__0.0%3Aconfig_js&entry=st_search__0.0%3Aconfig_js&entry=st_fixed_navbar__0.0%3Aconfig_js&entry=wp_status_bar__0.0%3Aconfig_js&entry=wp_high_contrast__0.0%3Aconfig_js&entry=wp_toolbar_projectmenu__0.0%3Aconfig_js&entry=wp_toolbar_contextmenu__0.0%3Aconfig_js&entry=wp_toolbar_sitepreview__0.0%3Aconfig_js&entry=wp_skin_region__0.0%3Aconfig_js HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/mashup/mashup:cxml/1VdLb9swDP41OaZOsmIYdmtzG7Adlt4FWWEcpbIkSHLiAv7xE235kdZAjSR21pNFiY-PpEVSkP_a_LSOMJVqA9bClkh6jKmZLR8XJ_x8e4pO2kZrqp9FBi97SGHjqOMscrg-P4lStc2E3-xTGTEldzyJPhw8HGwxh_8EyUMm222k_XL9_NJiPGmy5VSohKSUS0TneRt0JZTfwXaNoeKPDjaSoqYISNRZpDSfrWgCxY_vj4vFvMgsmNnKA3SQu2JHhYV5wSjbw2xlmdJQ6CwWnM0LbdQBmHvP3ETSu8QTHx8lrw9hq6uOXXA05gL-NIdnmbyP_SH5c0oJn22SOS7shwxWh-9zGLYxiWfiRNA3MGOm0gO2PkhAtNdNPB6wg_66UgjxtnLTgOWpFkDCaQoyI_47CHJHBoH3a7qXEwd7Ix--FH6sWH15kCM7UF8yyvBihz4w4J42_Ai-ISaJeQ0ZA1RZHlpcOhIIu0N-LeD4s-DWUwA_2V9iuQNf6I8cThd4ESTLWlktJ4u-7232mFzfIL2SujMacIbDETba-KicteTRTX3afVEeqGH7G-Ao9dRQKipW-cS2hni84_kNx9muthpRd---pofMXziZZJb0FfW-joTzS5xxsQXTdKRGw_g15jq0rfTIMPc82Zct2lA7bNqiy-UbQkTJdRCcqF4HPizVg2t0I1HV6YactEV2ZqDLHw5TD4M9XfLizjjN9PrKJTGQhLfj508dz1-xl1fOU39LaiSY_wBGNH7Q?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1650195228000&entry=st_compressed_navbar__0.0%3aconfig_js&entry=wp_dialog_main__0.0%3aconfig_js&entry=st_navigation__0.0%3aconfig_js&entry=wp_toolbar_utils__0.0%3aconfig_js&entry=wp_state_page_modes__0.0%3aconfig_js&entry=wp_simple_contextmenu_ext__0.0%3aconfig_js&entry=wp_simple_contextmenu_js__0.0%3aconfig_js&entry=wp_toolbar_actionbar__0.0%3aconfig_js&entry=wp_toolbar_menuactions__0.0%3aconfig_js&entry=wp_toolbar_sitepreview_menuactions__0.0%3aconfig_js&entry=st_svg__0.0%3aconfig_js&entry=st_search__0.0%3aconfig_js&entry=st_fixed_navbar__0.0%3aconfig_js&entry=wp_status_bar__0.0%3aconfig_js&entry=wp_high_contrast__0.0%3aconfig_js&entry=wp_toolbar_projectmenu__0.0%3aconfig_js&entry=wp_toolbar_contextmenu__0.0%3aconfig_js&entry=wp_toolbar_sitepreview__0.0%3aconfig_js&entry=wp_skin_region__0.0%3aconfig_js
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Sun, 17 Apr 2022 11:33:48 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-request-digest: ZgO-9xuraZCW3huEGmTiTw
expires: Mon, 05 Dec 2022 01:58:49 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/a38ce3bb-c48f-48e7-98b9-b3d785b943b7/capital-blue-cross-logo.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a38ce3bb-c48f-48e7-98b9-b3d785b943b7-nE-fFqV
200 OK 3.2 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/a38ce3bb-c48f-48e7-98b9-b3d785b943b7/capital-blue-cross-logo.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a38ce3bb-c48f-48e7-98b9-b3d785b943b7-nE-fFqV
IP
File type PNG image data, 235 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d45e32df137cfe865e6d6328e392a2f
4838db80aba4e9cf6f449660837bc36c9bd84162
a43150187e8e6a9c971ac00f2e4c7ea210f15c631989e877f4f33fda7f39d6c8
GET /wps/wcm/connect/prod_nws.capblue.com29556/a38ce3bb-c48f-48e7-98b9-b3d785b943b7/capital-blue-cross-logo.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a38ce3bb-c48f-48e7-98b9-b3d785b943b7-nE-fFqV HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 3204
content-type: image/png
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "1044323354"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:27:37 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!IkCT5J884vB4-07Ys8ArZQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1668693549519&entry=wp_portal__0.0%3aconfig_config_static&entry=wcm_config__0.0%3aconfig_config_static&entry=wcm_inplaceEdit__0.0%3aconfig_config_static
200 OK 2.2 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!IkCT5J884vB4-07Ys8ArZQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1668693549519&entry=wp_portal__0.0%3aconfig_config_static&entry=wcm_config__0.0%3aconfig_config_static&entry=wcm_inplaceEdit__0.0%3aconfig_config_static
IP
File type ASCII text, with very long lines (5039), with no line terminators
Hash 12c5b2db32e9e9821003157b15625f6e
6b3722f3f67b8e8222ab3243848b8cd639d5c3e5
b30372ef2ce79486e775cbd1a9bc5389a2c70f05a93638c023c78fd0b4236d31
GET /wps/contenthandler/!ut/p/digest!IkCT5J884vB4-07Ys8ArZQ/mashup/ra:collection?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1668693549519&entry=wp_portal__0.0%3aconfig_config_static&entry=wcm_config__0.0%3aconfig_config_static&entry=wcm_inplaceEdit__0.0%3aconfig_config_static HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Connection: keep-alive
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!IkCT5J884vB4-07Ys8ArZQ/mashup/mashup:cxml/tY69DsIwEIOfJmOiKkIIdYSVl7her20gyUX5UTvcw1MEC-ydbFmfZQceDXKc3NyXCtWh6BXD7SeRVigru2OVtioT-EJaEHAhZQtyIklt8A61BNiUhZnkcj51nZaU-UFY_8vvjTsjeLq2OHrqkYNxQzAr52fygGR2wrj48V894sgLmQRRvQ!!?themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text/javascript&lm=1668693549519&entry=wp_portal__0.0%3aconfig_config_static&entry=wcm_config__0.0%3aconfig_config_static&entry=wcm_inplaceEdit__0.0%3aconfig_config_static
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Thu, 17 Nov 2022 13:59:09 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
x-request-digest: mz0IdTPi3n1D6UUUCkki4A
expires: Mon, 05 Dec 2022 01:58:49 GMT
x-datasource-digest: IkCT5J884vB4-07Ys8ArZQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/9fee2e2b-ca9b-42d8-ae33-b2393484f1b0/cornerstone.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9fee2e2b-ca9b-42d8-ae33-b2393484f1b0-nSC6wsL
200 OK 2.0 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/9fee2e2b-ca9b-42d8-ae33-b2393484f1b0/cornerstone.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9fee2e2b-ca9b-42d8-ae33-b2393484f1b0-nSC6wsL
IP
File type PNG image data, 216 x 204, 8-bit/color RGBA, non-interlaced\012- data
Hash 60eff66f5fd7d710fbb1d80b5b3dd3bd
c570e6465cc644961150e5381f5ae73916da7509
35952cad07ebea0992f285e4a2979c6ffeb02f21cb8bc0d80874aa38871199dc
GET /wps/wcm/connect/prod_nws.capblue.com29556/9fee2e2b-ca9b-42d8-ae33-b2393484f1b0/cornerstone.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9fee2e2b-ca9b-42d8-ae33-b2393484f1b0-nSC6wsL HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 1980
content-type: image/png
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "-1508212713"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:24:13 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 282295
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.swiftypecdn.com/install/v2/st.js
200 OK 112 kB URL HTTP/1.1 s.swiftypecdn.com/install/v2/st.js
IP
File type ASCII text, with very long lines (32746)
Size 112 kB (112283 bytes)
Hash 9b8a5b1ad293d51f0d136ce585c717ff
94490a0f46259812b90148e036cddbe81e2fa221
83de990c7c4292122625e77f645a328ac2eee0c508cc8caec5b92855138b2a1b
GET /install/v2/st.js HTTP/1.1
Host: s.swiftypecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 112283
Content-Type: text/javascript
Cache-Control: max-age=300, public, max-age=300, public
ETag: "637fb88e-1b69b"
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sun, 04 Dec 2022 01:58:49 GMT
Via: 1.1 varnish
Age: 53
X-Served-By: cache-bma1668-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1670119129.363825,VS0,VE1
Vary: Accept-Encoding
fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,500,500i,700,700i
200 OK 17 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,500,500i,700,700i
IP
Hash 83db00ee44379d99c5c5f8727dcf06b6
0408c445a18a978e0e3d58be6579ae4639bace6f
ae8688dcfe644dedafdad8a6bb9ae11aa2f2687dfa5ae57d4a82c15877044b0c
GET /css?family=Roboto:300,300i,400,400i,500,500i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 01:58:49 GMT
date: Sun, 04 Dec 2022 01:58:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 282274
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/e4568757-e489-49f3-9f0b-4bb2f2df6330/woman-with-groceries.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e4568757-e489-49f3-9f0b-4bb2f2df6330-oi.3d-s
200 OK 53 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/e4568757-e489-49f3-9f0b-4bb2f2df6330/woman-with-groceries.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e4568757-e489-49f3-9f0b-4bb2f2df6330-oi.3d-s
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x400, components 3\012- data
Hash de074f0ae36ce431daa14a35c59ff773
9eef210f347ea61571611bbae68fb0fbf0a8274b
d5bebde659f4f685f1cc1291de19ef257e3f7b095957e7ed2bdafe523477af3c
GET /wps/wcm/connect/prod_nws.capblue.com29556/e4568757-e489-49f3-9f0b-4bb2f2df6330/woman-with-groceries.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e4568757-e489-49f3-9f0b-4bb2f2df6330-oi.3d-s HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 53272
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "-1089643123"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:41 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fcss&lm=1650195228000&entry=wp_toolbar_common__0.0%3Ahead_css&entry=st_compressed_navbar__0.0%3Ahead_css&entry=wp_dialog_css__0.0%3Ahead_css&entry=wp_toolbar_logo__0.0%3Ahead_css&entry=wp_portlet_css__0.0%3Ahead_css&entry=wp_theme_simple__0.0%3Ahead_css&entry=bootstrap__3.3.4%3Ahead_css&entry=wp_toolbar_common_actionbar__0.0%3Ahead_css&entry=wp_simple_contextmenu_css__0.0%3Ahead_css&entry=wp_toolbar_actionbar__0.0%3Ahead_css&entry=st_fixed_navbar__0.0%3Ahead_css&entry=wp_draft_page_ribbon__0.0%3Ahead_css&entry=wp_toolbar_sitepreview__0.0%3Ahead_css&entry=st_notice__0.0%3Ahead_css&entry=wp_toolbar_moremenu__0.0%3Ahead_css&entry=st_layoutGrid__0.0%3Ahead_css&entry=st_search__0.0%3Ahead_css&entry=wp_status_bar__0.0%3Ahead_css&entry=wp_toolbar_projectmenu__0.0%3Ahead_css&entry=wp_bootstrap_ext__1.0.0%3Ahead_css&entry=wp_oob_sample_styles__0.0%3Ahead_css
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 77160
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war/wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/fontawesome-webfont.woff2
content-type: application/octet-stream
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Sun, 17 Apr 2022 11:33:44 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cache-control: public, max-age=31556925
x-request-digest: zkNdi4Lg8uAO7mIybp6swg
expires: Mon, 04 Dec 2023 07:47:34 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/e1351360-0e7e-45d3-80d3-e2189d25cfd8/doctor-with-patients-illustration.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e1351360-0e7e-45d3-80d3-e2189d25cfd8-nK8jaoS
200 OK 117 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/e1351360-0e7e-45d3-80d3-e2189d25cfd8/doctor-with-patients-illustration.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e1351360-0e7e-45d3-80d3-e2189d25cfd8-nK8jaoS
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=400, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1500 DIY-Thermocam raw data\012- (Lepton 2.x), scale 0-0, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 2674777890687884984320.000000], baseline, precision 8, 1500x400, components 3\012- data
Size 117 kB (116896 bytes)
Hash 649bdbb166c81ce4317618dc075f3da3
45aca60567e5ee0e7c64657db80a7ec224f96a45
0fb6baddb9b57076a63c72e150cc15825671e3a4e531508b8f6be1ee469071a1
GET /wps/wcm/connect/prod_nws.capblue.com29556/e1351360-0e7e-45d3-80d3-e2189d25cfd8/doctor-with-patients-illustration.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-e1351360-0e7e-45d3-80d3-e2189d25cfd8-nK8jaoS HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 116896
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "-2008208116"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:41 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/glyphicons-halflings-regular.woff2
200 OK 18 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/glyphicons-halflings-regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!WTu7ejSaHonkt6Aqxvwz1g/sp/mashup:ra:collection?soffset=0&eoffset=23&themeID=ZJ_N8141AS0LOP8F0AL83QLQN1GD5&locale=en&mime-type=text%2Fcss&lm=1650195228000&entry=wp_toolbar_common__0.0%3Ahead_css&entry=st_compressed_navbar__0.0%3Ahead_css&entry=wp_dialog_css__0.0%3Ahead_css&entry=wp_toolbar_logo__0.0%3Ahead_css&entry=wp_portlet_css__0.0%3Ahead_css&entry=wp_theme_simple__0.0%3Ahead_css&entry=bootstrap__3.3.4%3Ahead_css&entry=wp_toolbar_common_actionbar__0.0%3Ahead_css&entry=wp_simple_contextmenu_css__0.0%3Ahead_css&entry=wp_toolbar_actionbar__0.0%3Ahead_css&entry=st_fixed_navbar__0.0%3Ahead_css&entry=wp_draft_page_ribbon__0.0%3Ahead_css&entry=wp_toolbar_sitepreview__0.0%3Ahead_css&entry=st_notice__0.0%3Ahead_css&entry=wp_toolbar_moremenu__0.0%3Ahead_css&entry=st_layoutGrid__0.0%3Ahead_css&entry=st_search__0.0%3Ahead_css&entry=wp_status_bar__0.0%3Ahead_css&entry=wp_toolbar_projectmenu__0.0%3Ahead_css&entry=wp_bootstrap_ext__1.0.0%3Ahead_css&entry=wp_oob_sample_styles__0.0%3Ahead_css
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 18028
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war/wps/CapBlueThemeStatic/themes/CapBlueTheme/bootstrap/v334/fonts/glyphicons-halflings-regular.woff2
content-type: application/octet-stream
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Sun, 17 Apr 2022 11:33:44 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cache-control: public, max-age=31556925
x-request-digest: zkNdi4Lg8uAO7mIybp6swg
expires: Mon, 04 Dec 2023 07:47:34 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/f95c621f-731d-4292-ad47-413d0d998c1b/woman-dog-phone.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-f95c621f-731d-4292-ad47-413d0d998c1b-nrjQFv0
200 OK 299 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/f95c621f-731d-4292-ad47-413d0d998c1b/woman-dog-phone.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-f95c621f-731d-4292-ad47-413d0d998c1b-nrjQFv0
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Macintosh), datetime=2020:12:30 16:46:40], baseline, precision 8, 1500x400, components 3\012- data
Size 299 kB (298929 bytes)
Hash b2db87398a55ce9ac2eff5e58a21ec94
7bf5a2afe9d360ff134f9945f1872a3f57d8f72a
3eac19b1f0df934974d8e6e5874628ad6a248ee3236b4b3e294696d812510a7c
GET /wps/wcm/connect/prod_nws.capblue.com29556/f95c621f-731d-4292-ad47-413d0d998c1b/woman-dog-phone.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-f95c621f-731d-4292-ad47-413d0d998c1b-nrjQFv0 HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 298929
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "-741140391"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:42 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
200 OK 6.4 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (956), with CRLF line terminators
Hash 94f0f3244ce291581f7ce1366301d79a
9434379020d182ab2cefb1dc3d0aed3682b78894
4cfa08af72f9daae79156425c8f3df850827ef84c464d178d86069b51f27c8aa
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 6432
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war/wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
content-type: image/svg+xml
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Sun, 17 Apr 2022 11:33:44 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cache-control: public, max-age=31556925
x-request-digest: zkNdi4Lg8uAO7mIybp6swg
expires: Mon, 04 Dec 2023 07:47:34 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
200 OK 6.4 kB URL HTTP/1.1 www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (956), with CRLF line terminators
Hash 94f0f3244ce291581f7ce1366301d79a
9434379020d182ab2cefb1dc3d0aed3682b78894
4cfa08af72f9daae79156425c8f3df850827ef84c464d178d86069b51f27c8aa
GET /wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war//wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 6432
content-location: https://www.capbluecross.com/wps/contenthandler/!ut/p/digest!GCOBHd3EAeeH2G2wGU2CFQ/war/wps/CapBlueThemeStatic/themes/CapBlueTheme/css/images/sprite.svg
content-type: image/svg+xml
date: Sun, 04 Dec 2022 01:58:49 GMT
last-modified: Sun, 17 Apr 2022 11:33:44 GMT
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cache-control: public, max-age=31556925
x-request-digest: zkNdi4Lg8uAO7mIybp6swg
expires: Mon, 04 Dec 2023 07:47:34 GMT
x-datasource-digest: GCOBHd3EAeeH2G2wGU2CFQ
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
nebula-cdn.kampyle.com/wu/267634/onsite/embed.js
200 OK 518 B URL HTTP/2 nebula-cdn.kampyle.com/wu/267634/onsite/embed.js
IP
File type ASCII text, with very long lines (573)
Hash 31b9b7b93e47f5e91d67e0186d8603aa
841ca414164b74a1b4ed407d4f74a698543c8621
5e529ef2be3eadcb80803c50cd72342f39b22498c4a1c49f9182f34289a1ec43
GET /wu/267634/onsite/embed.js HTTP/1.1
Host: nebula-cdn.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +ch83s+nN99nwgT+T00tXnJdVzpOXCRc2lzyuKr5VwVA+T0rU09NFm7YDa2Hv0mpJEq/AoZsFjw=
x-amz-request-id: 3EZQHW9F1YJFBAFE
last-modified: Mon, 14 Nov 2022 07:19:17 GMT
etag: "23ebf3330775e47791ac29052d7da1dd"
x-amz-version-id: pxt0CdxykfaNsgbH_KyP0KQKWb5nXTrH
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
content-encoding: gzip
accept-ranges: bytes
date: Sun, 04 Dec 2022 01:58:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670119130.685937,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 518
X-Firefox-Spdy: h2
capitalbluecross.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
200 OK 1.2 kB URL HTTP/2 capitalbluecross.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
IP
File type ASCII text, with very long lines (1201), with no line terminators
Hash 6e678b91d99c86c141e21d0e21118cf2
b4e9c14d34eaf21ce3d57084661904e7edbf3c97
a9760253facf72e01b82fae7d17326019fbc42d5d071fcbe0620d529b2b97245
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel?href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US HTTP/1.1
Host: capitalbluecross.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 01:58:49 GMT
content-type: text/javascript;charset=UTF-8
content-length: 1201
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa OUR IND COM NAV INT STA"
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
X-Firefox-Spdy: h2
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/ce7568c7-4fb5-4c6a-b005-750355f17083/virtual-care-covid-banner.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-ce7568c7-4fb5-4c6a-b005-750355f17083-n3lb1yK
200 OK 22 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/ce7568c7-4fb5-4c6a-b005-750355f17083/virtual-care-covid-banner.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-ce7568c7-4fb5-4c6a-b005-750355f17083-n3lb1yK
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x400, components 3\012- data
Hash d87666747edd9e22c88abffc9a66725a
4094a7f0c8e989529eb604e25294d4ffa9d7291d
1fbbe398f4b7b7a97d2924a7abfdc4aa5413af9c5d47bd63c832bb06aaba65c8
GET /wps/wcm/connect/prod_nws.capblue.com29556/ce7568c7-4fb5-4c6a-b005-750355f17083/virtual-care-covid-banner.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-ce7568c7-4fb5-4c6a-b005-750355f17083-n3lb1yK HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 22018
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "-718498331"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:48:21 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
capitalbluecross.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
200 OK 9.7 kB URL HTTP/2 capitalbluecross.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (25470)
Hash 924b534e92964cbc3378cb5c09743073
2144d16db7c3c19a6dfc5c894cb86b10883ee31e
f39b6c093664007c9aaddab73f708704a0f0189f327ac24f9fc2c32a75ed6185
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022 HTTP/1.1
Host: capitalbluecross.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 01:58:49 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2762-1664301892000"
last-modified: Tue, 27 Sep 2022 18:04:52 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/a6808bc3-da8c-48bd-868a-dcb0615fd68e/sprite.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a6808bc3-da8c-48bd-868a-dcb0615fd68e-mgYGZeu
200 OK 222 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/a6808bc3-da8c-48bd-868a-dcb0615fd68e/sprite.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a6808bc3-da8c-48bd-868a-dcb0615fd68e-mgYGZeu
IP
File type PNG image data, 1400 x 2400, 8-bit/color RGBA, non-interlaced\012- data
Size 222 kB (221748 bytes)
Hash 05b4f883254b0d55c676c08a776b9f5e
e30c2e1b135548369635db74a13deef9836d088e
eccfc71ffec76794ccc8a7f9519fe5f866bf78b4e2aba73010d8a7561648fba0
GET /wps/wcm/connect/prod_nws.capblue.com29556/a6808bc3-da8c-48bd-868a-dcb0615fd68e/sprite.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-a6808bc3-da8c-48bd-868a-dcb0615fd68e-mgYGZeu HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/cap-technical/script/css/cbc-icons?subtype=css
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 221748
content-type: image/png
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "1017974539"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 02:08:49 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/9a92cefb-5add-4f8f-8e02-51a71a0c726c/mother-and-son-garden.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9a92cefb-5add-4f8f-8e02-51a71a0c726c-mGobTwE
200 OK 88 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/9a92cefb-5add-4f8f-8e02-51a71a0c726c/mother-and-son-garden.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9a92cefb-5add-4f8f-8e02-51a71a0c726c-mGobTwE
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=\302\2512015 Daniel Shanken, All Rights Reserved.], baseline, precision 8, 600x600, components 3\012- data
Hash efd0a9bea69c1d4b64491ff67cabdbe6
aa4f176345e505bd7047748dd4207cb13be3879e
c25bcae8af5294f0e117a685ef6f365d7783b66b27f7212b28203770af2af291
GET /wps/wcm/connect/prod_nws.capblue.com29556/9a92cefb-5add-4f8f-8e02-51a71a0c726c/mother-and-son-garden.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-9a92cefb-5add-4f8f-8e02-51a71a0c726c-mGobTwE HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 87613
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "-1741679334"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:42 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/6d7ea9f9-e60d-4090-9fd4-f991b5a684dc/capital-blue-interior.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-6d7ea9f9-e60d-4090-9fd4-f991b5a684dc-nRTyayN
200 OK 308 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/6d7ea9f9-e60d-4090-9fd4-f991b5a684dc/capital-blue-interior.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-6d7ea9f9-e60d-4090-9fd4-f991b5a684dc-nRTyayN
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=550, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1500], progressive, precision 8, 1500x400, components 3\012- data
Size 308 kB (308191 bytes)
Hash be3988a3eac48c5e841af766de8ae65c
138dbf68bc5298726f6e64929870a32abd2d9f7a
95b5a6f3a7e15923d3866bfb6996ea142a171735a6cc6ac99588687b1afbaa10
GET /wps/wcm/connect/prod_nws.capblue.com29556/6d7ea9f9-e60d-4090-9fd4-f991b5a684dc/capital-blue-interior.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-6d7ea9f9-e60d-4090-9fd4-f991b5a684dc-nRTyayN HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 308191
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "2005476022"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:42 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/3c75d46e-dd45-41c4-91bd-24a50f50a32d/generic-card.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-3c75d46e-dd45-41c4-91bd-24a50f50a32d-nSfPmDT
200 OK 136 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/3c75d46e-dd45-41c4-91bd-24a50f50a32d/generic-card.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-3c75d46e-dd45-41c4-91bd-24a50f50a32d-nSfPmDT
IP
File type PNG image data, 600 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size 136 kB (136407 bytes)
Hash b9071dddd6dd409337b8ed6208fe72c1
67b7cbd18e34d765c3a22fd2e0d7c99aea1c58ba
f593d5df63d2e4884ebee053710a738d6e1741f5c93ee8277b5edc2d0a33214c
GET /wps/wcm/connect/prod_nws.capblue.com29556/3c75d46e-dd45-41c4-91bd-24a50f50a32d/generic-card.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-3c75d46e-dd45-41c4-91bd-24a50f50a32d-nSfPmDT HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 136407
content-type: image/png
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "-1882330547"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:33:25 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/22f4880e-d27f-4e07-9e0b-f15547a1bfcd/family-hiking-in-fall.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-22f4880e-d27f-4e07-9e0b-f15547a1bfcd-ogN8uWA
200 OK 545 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/22f4880e-d27f-4e07-9e0b-f15547a1bfcd/family-hiking-in-fall.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-22f4880e-d27f-4e07-9e0b-f15547a1bfcd-ogN8uWA
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 600x600, components 3\012- data
Size 545 kB (544653 bytes)
Hash 0f696fdfaa7280be2cd18bda937f1e20
7fc73b8193783ff68f7c9296ef32930241e57498
6a24fc3a9933c12d60c87613c6b6c499ec3a28268d074b31a501c24b85fa573c
GET /wps/wcm/connect/prod_nws.capblue.com29556/22f4880e-d27f-4e07-9e0b-f15547a1bfcd/family-hiking-in-fall.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-22f4880e-d27f-4e07-9e0b-f15547a1bfcd-ogN8uWA HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 544653
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "824312722"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:33:25 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
s.swiftypecdn.com/install/v2/config/E1uUsunnBkmG5jXov4Z1.json
200 OK 4.2 kB URL HTTP/1.1 s.swiftypecdn.com/install/v2/config/E1uUsunnBkmG5jXov4Z1.json
IP
File type JSON data\012- , ASCII text, with very long lines (19764), with no line terminators
Hash 1bbc941c8dd0b00bbfdb0a066f5f960b
5dadc30deacd0024a1fb7b9b667246a4db861dc0
197d18eb7af092ce3741d9a886b9bf641b16dfabcf8e670e5ecc25c90b7f6aed
GET /install/v2/config/E1uUsunnBkmG5jXov4Z1.json HTTP/1.1
Host: s.swiftypecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 4244
Content-Type: application/json; charset=utf-8
Status: 200 OK
Access-Control-Allow-Methods: GET, POST
Access-Control-Expose-Headers:
Access-Control-Max-Age: 7200
Access-Control-Allow-Credentials: true
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
X-Swiftype-Backend-Region: dal
X-Swiftype-Backend-Datacenter: dal12
X-Swiftype-Backend-Node: app-website01a.dal12
ETag: W/"6dbdaaa968106038e0601adece5e95a0"
Last-Modified: Fri, 02 Dec 2022 14:48:04 GMT
Cache-Control: max-age=300, public
X-Request-Id: f3f9cf535353e46527d5653d0a5158e0
X-Runtime: 0.121134
X-Rack-Cache: pass
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sun, 04 Dec 2022 01:58:50 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1641-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1670119130.555343,VS0,VE521
Vary: Accept-Encoding, Origin
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3392bff6be3139c1f38bb213a63e7d9f
7e0c5e01cfd005495c0a2b9c26aa0a88177fb539
1d39e67621b94e9522dbe6e656935f9637842ae83d40164d3d43a81536bb7aa7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164825
Date: Sun, 04 Dec 2022 01:58:50 GMT
Etag: "638bd23c-1d7"
Expires: Mon, 05 Dec 2022 23:45:55 GMT
Last-Modified: Sat, 03 Dec 2022 22:48:28 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -XXuagKx66OWQoMP6EnT0hQYbnwiS2YFwQ_et6hG6qtKWZCG2Kw9lQ==
Age: 3447
status.geotrust.com/
200 OK 471 B IP
Hash c17bd6feb456b87ff2322bcf5d29d98f
240ef123008fe6d1d1c0b1184df710aec732c625
f1c25ff469cbbf46c4c2f95ca921e4ea0c4f69ce12ec4a782f79a88b31475fc0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4629
Cache-Control: max-age=171072
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Etag: "638be605-1d7"
Expires: Tue, 06 Dec 2022 01:30:02 GMT
Last-Modified: Sun, 04 Dec 2022 00:12:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
55209.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&title=Capital%20Blue%20Cross&res=1280x1024&accountid=55209&rt=3674&prev=ffad0879-d276-1158-3db0-ed78223392e1&luid=fa3a659a-1d4f-f145-0000-204b1dba4e3d&rnd=97852
200 OK 34 B URL HTTP/2 55209.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&title=Capital%20Blue%20Cross&res=1280x1024&accountid=55209&rt=3674&prev=ffad0879-d276-1158-3db0-ed78223392e1&luid=fa3a659a-1d4f-f145-0000-204b1dba4e3d&rnd=97852
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash a82ba3a9d42148e9cf209df13d8c3f3d
dba80835d31175bdcf0bcad1abafefb06d86e304
1e85ec81b9800b4c443d39caca0d0926089a3ac201120db1ceb45b93789480b8
GET /image.aspx?url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&title=Capital%20Blue%20Cross&res=1280x1024&accountid=55209&rt=3674&prev=ffad0879-d276-1158-3db0-ed78223392e1&luid=fa3a659a-1d4f-f145-0000-204b1dba4e3d&rnd=97852 HTTP/1.1
Host: 55209.global.siteimproveanalytics.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:50 GMT
content-type: image/gif
content-length: 34
set-cookie: AWSALB=UfGI6zDo6SnIIi18zb4enzZi8k6lQQcmRxZ6U5OblyaCDR70PhnSgdvkvZi6Lxb30ZIZdAvFhwCRKuVmmJTui5s8Stq95zrZq1i0paeWXnzZgzu+tXEOCLnCU8ps; Expires=Sun, 11 Dec 2022 01:58:50 GMT; Path=/
AWSALBCORS=UfGI6zDo6SnIIi18zb4enzZi8k6lQQcmRxZ6U5OblyaCDR70PhnSgdvkvZi6Lxb30ZIZdAvFhwCRKuVmmJTui5s8Stq95zrZq1i0paeWXnzZgzu+tXEOCLnCU8ps; Expires=Sun, 11 Dec 2022 01:58:50 GMT; Path=/; SameSite=None; Secure
cache-control: max-age=0
expires: Sun, 04 Dec 2022 01:58:50 UTC
X-Firefox-Spdy: h2
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/47be23a6-c6c7-48f1-8a4f-5e7d91df7f01/family-hiking-fall-homepage.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-47be23a6-c6c7-48f1-8a4f-5e7d91df7f01-ogN8uQM
200 OK 592 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/47be23a6-c6c7-48f1-8a4f-5e7d91df7f01/family-hiking-fall-homepage.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-47be23a6-c6c7-48f1-8a4f-5e7d91df7f01-ogN8uQM
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1500x400, components 3\012- data
Size 592 kB (592406 bytes)
Hash 97f621f49c5fde1ed77a1442d1419101
a0f65b900896d23e44b30bcc0eaf863e97530bae
5fa443c415fcea36b54d4da27416000a5ba8b200844c14e1c369bc4cb8013fdd
GET /wps/wcm/connect/prod_nws.capblue.com29556/47be23a6-c6c7-48f1-8a4f-5e7d91df7f01/family-hiking-fall-homepage.jpg?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-47be23a6-c6c7-48f1-8a4f-5e7d91df7f01-ogN8uQM HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 592406
content-type: image/jpeg
date: Sun, 04 Dec 2022 01:58:48 GMT
etag: "824312004"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 01:55:41 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
s.swiftypecdn.com/assets/new_embed-91517c1e71e10890e4017d4c45b2dcd307c1d94998b851abdeefd8780de40d90.css
200 OK 34 kB URL HTTP/1.1 s.swiftypecdn.com/assets/new_embed-91517c1e71e10890e4017d4c45b2dcd307c1d94998b851abdeefd8780de40d90.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8b29ad54ba5b40e461b72407fc024a12
75ed964e894dfe1947002728d49b2026ba22544f
83398337d6eb3df25459775a3f3788648ded098e27efa00e9997cc8e5b1fcf24
GET /assets/new_embed-91517c1e71e10890e4017d4c45b2dcd307c1d94998b851abdeefd8780de40d90.css HTTP/1.1
Host: s.swiftypecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 33983
Content-Type: text/css
ETag: "62b9d076-84bf"
Content-Encoding: gzip
Expires: Tue, 28 Nov 2023 17:06:06 GMT
Cache-Control: max-age=31536000, public
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Sun, 04 Dec 2022 01:58:50 GMT
Via: 1.1 varnish
Age: 463964
X-Served-By: cache-bma1668-BMA
X-Cache: HIT
X-Cache-Hits: 1850
X-Timer: S1670119130.222870,VS0,VE0
Vary: Accept-Encoding
analytics.convertlanguage.com/el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.capbluecross.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=5eec60094b9c4833b2a4ac6d640784a7&ua=na&et=3&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&
200 OK 35 B URL HTTP/2 analytics.convertlanguage.com/el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.capbluecross.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=5eec60094b9c4833b2a4ac6d640784a7&ua=na&et=3&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /el3.gif?ea=none&er=def&d_lang=&d_country=&d_curr=&hn=www.capbluecross.com&i_lang=en&i_country=&i_curr=&s_bl=en&s_ref=&s_rl=&s_ll=no&s_geo=no&s_nl=en-US&c_lang=&alg_sig=00000&uuid=5eec60094b9c4833b2a4ac6d640784a7&ua=na&et=3&f_lang=&f_country=&f_curr=&hist=&tpl=e_T1L1_v3.13.0.0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022& HTTP/1.1
Host: analytics.convertlanguage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:50 GMT
content-type: image/gif
content-length: 35
server: Apache
last-modified: Tue, 14 May 2019 17:36:29 GMT
etag: "23-588dc79153f13"
accept-ranges: bytes
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=78746
date: Sun, 04 Dec 2022 01:58:50 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 00:41:08 GMT
expires: Sun, 04 Dec 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 4662
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash a42e973406eb862fc1e7298c51d2ed22
677f9fd451c0ec3b2a62bda45ca251d7cade27b9
4f2f25b258684da6e386b4e136423c03d5dc7f7ef6cf0b701db9cffeb949b864
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2800
Cache-Control: max-age=153759
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Etag: "638ba98a-116"
Expires: Mon, 05 Dec 2022 20:41:29 GMT
Last-Modified: Sat, 03 Dec 2022 19:54:50 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP
Hash 2eb785d3fc80e899bf1c630810ef10a7
54b85acf4683eb323f39b1435c6c64952578c2ee
b14e5c4030ebfa20fa04f4f3283b494a4c7034f7409a1789a6493dfcab6a39c5
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4468
Cache-Control: max-age=151869
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 20:09:59 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
edge.fullstory.com/s/fs.js
200 OK 66 kB URL HTTP/2 edge.fullstory.com/s/fs.js
IP
File type ASCII text, with very long lines (65410)
Hash b3cc89ae11072c9ee7b443faa623e0e9
00a8279e679a5fb97dfc16860a1572094ff33f3b
0ac7e1b0178f6929b5aeb30c820f83a0101c6258415b280044955bad3974148c
GET /s/fs.js HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsRD4TzQh3FTYtmy5HVR7PKKkDzZB7qEHw-c5KKs8ZZtDey5jyCVkLdNIjfkMlDOxBOKgzlIscpGdHKVAGqR-kh8A
x-goog-generation: 1667940125290071
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 65803
content-encoding: br
x-goog-hash: crc32c=LkMtdQ==, md5=s8yJrhEHLJ7ntEP6piPg6Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 65803
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 04 Dec 2022 01:50:30 GMT
expires: Sun, 04 Dec 2022 02:50:30 GMT
cache-control: public, max-age=3600,no-transform
age: 500
last-modified: Tue, 08 Nov 2022 20:42:05 GMT
etag: "b3cc89ae11072c9ee7b443faa623e0e9"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/667977034/?random=1670119126484&cv=11&fst=1670119126484&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&auid=536380083.1670119126&rfmt=3&fmt=4
200 OK 914 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/667977034/?random=1670119126484&cv=11&fst=1670119126484&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&auid=536380083.1670119126&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1967), with no line terminators
Hash b4f73e2a7818d67de9c825e49a26d6f7
f7b4ae43c736d4caef30ed402f36f7f2574e072a
7e3007a4c18b88fa923803321ff3283296182e4fdb937c74047e4889d50432c7
GET /pagead/viewthroughconversion/667977034/?random=1670119126484&cv=11&fst=1670119126484&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&auid=536380083.1670119126&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 01:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 914
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 04-Dec-2022 02:13:50 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.capbluecross.com/resources/images/icons/capital-favicon.png
200 OK 1.4 kB URL HTTP/1.1 www.capbluecross.com/resources/images/icons/capital-favicon.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 719fd6faff7ce290754c08f05b78fb22
ef357e67c6ed908507a4fb0950bbb0552005072c
72eb6b3250a87b3be66d8fe172a8a1348a139a3cc6bd64ad79431ec3d19a0b06
GET /resources/images/icons/capital-favicon.png HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986; nmstat=ffad0879-d276-1158-3db0-ed78223392e1; calltrk_referrer=direct; calltrk_landing=https%3A//www.capbluecross.com/wps/portal/cap/home%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 03 Sep 2021 16:46:06 GMT
Accept-Ranges: bytes
ETag: "5497a530e3a0d71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
P3P: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT"
Access-Control-Allow-Origin: *
Date: Sun, 04 Dec 2022 01:58:50 GMT
Content-Length: 1447
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/raRVPOI4L3s
IP
Hash 2eb785d3fc80e899bf1c630810ef10a7
54b85acf4683eb323f39b1435c6c64952578c2ee
b14e5c4030ebfa20fa04f4f3283b494a4c7034f7409a1789a6493dfcab6a39c5
POST /s/gts1d4/raRVPOI4L3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/054b0925-0d0b-4ff1-b66d-b0f860d5f091/apple-touch-icon.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-054b0925-0d0b-4ff1-b66d-b0f860d5f091-mjsrbEn
200 OK 5.8 kB URL HTTP/1.1 www.capbluecross.com/wps/wcm/connect/prod_nws.capblue.com29556/054b0925-0d0b-4ff1-b66d-b0f860d5f091/apple-touch-icon.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-054b0925-0d0b-4ff1-b66d-b0f860d5f091-mjsrbEn
IP
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash ae14319d59775f9c2926263e57e02cf2
472332929bec02dc1fdbdf2e04abc752dcd4524f
4d8409fea900b196decc97f7cdb4cc68f92d15baaff84292465beb5435ef349d
GET /wps/wcm/connect/prod_nws.capblue.com29556/054b0925-0d0b-4ff1-b66d-b0f860d5f091/apple-touch-icon.png?MOD=AJPERES&CACHEID=ROOTWORKSPACE.Z18_4G00HA41L8PI50ALUD09N53000-054b0925-0d0b-4ff1-b66d-b0f860d5f091-mjsrbEn HTTP/1.1
Host: www.capbluecross.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/wps/portal/cap/home?utm_source=SFMC&utm_medium=&utm_campaign=MemberNewsletter&utm_content=NMem_102022
Cookie: JSESSIONID=0000gdePqK6eryxvFo2kHvDwlf-:1eonhuub5; citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; NSC_TBN9_XFCTFBM_QSPE_FYUDCD=ffffffff096e1c8e45525d5f4f58455e445a4a42378b; _gcl_au=1.1.536380083.1670119126; mt.v=2.268763038.1670119126986; nmstat=ffad0879-d276-1158-3db0-ed78223392e1; calltrk_referrer=direct; calltrk_landing=https%3A//www.capbluecross.com/wps/portal/cap/home%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
accept-ranges: bytes
content-language: en-US
content-length: 5831
content-type: image/png
date: Sun, 04 Dec 2022 01:58:49 GMT
etag: "-596823148"
p3p: CP="IDC DSP CURa ADMa DEVa TAIa OUR NOR IND UNI COM NAV INT", CP="NON CUR OTPi OUR NOR UNI"
cached_response: true
cache-control: public,max-age=600,post-check=300,pre-check=600
expires: Sun, 04 Dec 2022 02:02:27 GMT
x-powered-by: Servlet/3.0
strict-transport-security:
Set-Cookie: citrix_bot_id=MDIAAAAAjB3ecQAAAABbWiqa1v6LYwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMqy6RNp9lNNbNBS4UKgTm3hXg9o=; Domain=www.capbluecross.com; Path=/; HttpOnly;
ocsp.digicert.com/
200 OK 471 B IP
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4468
Cache-Control: max-age=151869
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 20:09:59 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 503 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
Hash 3d82d0f203678f7c10a44b160b5959b2
759216bd637bcdb62d3ca09ad5a48fa264a9de47
f9c4bed6672be141791ffba4a04822c144337ab78649f71e680a7fa9d19c51e9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Boz9vWNU4zqLtrVdeKWQGialWv9e8yWV5VPEIyeqD0gDK0qLjGBi+3osqnjCaQA/O5mcqjyalR7XkrDADtD5RA==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Sun, 04 Dec 2022 01:58:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 01:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/667977034/?random=1670119126484&cv=11&fst=1670115600000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&fmt=3&is_vtc=1&random=336945731&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Dec 2022 01:58:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.linkedin.oribi.io/partner/1422170/domain/capbluecross.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1422170/domain/capbluecross.com/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/1422170/domain/capbluecross.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.capbluecross.com/
Origin: https://www.capbluecross.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sat, 03 Dec 2022 04:56:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cvw4TxEwCRg2L63YPGgmn39PMamyEDAOzzgwe4RQjkjTNTbR8LYUnw==
age: 75766
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1422170%26time%3D1670119128169%26url%3Dhttps%253A%252F%252Fwww.capbluecross.com%252Fwps%252Fportal%252Fcap%252Fhome%253Futm_source%253DSFMC%2526utm_medium%253D%2526utm_campaign%253DMemberNewsletter%2526utm_content%253DNMem_102022%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIG1L4A-Jn83AAAAYTa24ZEBcN7t9gHk0ElLY9KSPSELawS7VSYKr9FY5BkdFZ-yufBBfdNHmPeew; Max-Age=2592000; Expires=Tue, 03 Jan 2023 01:58:50 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJ35GR48MjgvQAAAYTa24ZEtwlT8s772NspB85E9HzdhX3DE6KmdXXSfp2sxRSJuG216AKhAdqKiu0QNTM9pA; Max-Age=2592000; Expires=Tue, 03 Jan 2023 01:58:50 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&88996d25-d914-41e8-834b-d541cc0344af"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 04-Dec-2023 01:58:50 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2386:u=1:x=1:i=1670119130:t=1670205530:v=2:sig=AQHYOVlKk3qp2Eg5-3Xe6b9bA6d0Fqu0"; Expires=Mon, 05 Dec 2022 01:58:50 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXu9umEWwfj7dtutHHL5w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 00699EF5B261434087FDF81CD2CE3A1C Ref B: OSL30EDGE0317 Ref C: 2022-12-04T01:58:50Z
date: Sun, 04 Dec 2022 01:58:50 GMT
content-length: 0
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/1422170/domain/capbluecross.com/token
200 OK 66 B URL HTTP/2 cdn.linkedin.oribi.io/partner/1422170/domain/capbluecross.com/token
IP
Hash 964975f2d84792af2e6f7187e5c16e93
f991e2aaab77d7aa2377fe40375fdffa5157e7bb
bd8f39b0b855d2253bb6e0379fd7f77db5b4ef5373b628d846bea95c746fc3d4
GET /partner/1422170/domain/capbluecross.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 04 Dec 2022 01:52:17 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GtbRCwTFJMea6o1OmIWoPFQpLGdcBIr2sgOluHq_C0NLRXyGEH-xFQ==
age: 393
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=437096593111001&ev=PageView&dl=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&rl=&if=false&ts=1670119128443&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1670119128437.900971880&it=1670119128252&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=437096593111001&ev=PageView&dl=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&rl=&if=false&ts=1670119128443&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1670119128437.900971880&it=1670119128252&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=437096593111001&ev=PageView&dl=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&rl=&if=false&ts=1670119128443&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1670119128437.900971880&it=1670119128252&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 04 Dec 2022 01:58:50 GMT
X-Firefox-Spdy: h2
capitalbluecross.mpeasylink.com/mpel/mpel.js
200 OK 1.8 kB URL HTTP/2 capitalbluecross.mpeasylink.com/mpel/mpel.js
IP
Hash 2abe32e1deba0b72ec0d7b45bcad5fb7
58d4e7daa8c1f5bfad0873ed27132b25e01a7ec1
4e76bca7a35995fa1b015470825ef5573692ac371186196b4f0a61fdb8d08555
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel.js HTTP/1.1
Host: capitalbluecross.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 01:58:48 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"5096-1664301894000"
last-modified: Tue, 27 Sep 2022 18:04:54 GMT
cache-control: max-age=86400
expires: Mon, 05 Dec 2022 01:58:48 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1422170%26time%3D1670119128169%26url%3Dhttps%253A%252F%252Fwww.capbluecross.com%252Fwps%252Fportal%252Fcap%252Fhome%253Futm_source%253DSFMC%2526utm_medium%253D%2526utm_campaign%253DMemberNewsletter%2526utm_content%253DNMem_102022%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1422170%26time%3D1670119128169%26url%3Dhttps%253A%252F%252Fwww.capbluecross.com%252Fwps%252Fportal%252Fcap%252Fhome%253Futm_source%253DSFMC%2526utm_medium%253D%2526utm_campaign%253DMemberNewsletter%2526utm_content%253DNMem_102022%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1422170%26time%3D1670119128169%26url%3Dhttps%253A%252F%252Fwww.capbluecross.com%252Fwps%252Fportal%252Fcap%252Fhome%253Futm_source%253DSFMC%2526utm_medium%253D%2526utm_campaign%253DMemberNewsletter%2526utm_content%253DNMem_102022%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.capbluecross.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&6ccd6675-0302-4483-8ab2-4a7a860676d3"; Domain=.linkedin.com; Expires=Mon, 04-Dec-2023 01:58:50 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221204015850c4a66c55-1143-42f2-80ab-9352bc2475dbAQEvsezfKwkAvjppOY1tYwnX6Er7OYZI"; Domain=.www.linkedin.com; Expires=Mon, 04-Dec-2023 01:58:50 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzAxMTkxMzA7MjswMjFSLCUso6YZhU7kMndHmnidE15IK7pRoC2nGCKELeE4XQ==; Domain=.linkedin.com; Expires=Fri, 02 Jun 2023 01:58:50 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2427:u=1:x=1:i=1670119130:t=1670205530:v=2:sig=AQEQoD1wyCm0F1tqFstOsEtqeOwynjUu"; Expires=Mon, 05 Dec 2022 01:58:50 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXu9umHIaE3TF6EjPN+fA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5A34BD38BF784149A1D88F1BC1976F04 Ref B: OSL30EDGE0317 Ref C: 2022-12-04T01:58:50Z
date: Sun, 04 Dec 2022 01:58:50 GMT
content-length: 0
X-Firefox-Spdy: h2
rs.fullstory.com/rec/page
200 OK 1.7 kB URL HTTP/2 rs.fullstory.com/rec/page
IP
File type JSON data\012- , ASCII text, with very long lines (5161)
Hash 832fc24b1eabfca1001b27d6a9509197
6fa6cf3d692ae0fb6ed51b8154745d79e204db4b
c97c446b17ad6fa3b673b3d27b94bbb2f5e323e4e0148ac02b5a72325387fc6e
POST /rec/page HTTP/1.1
Host: rs.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 640
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.capbluecross.com
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sun, 04 Dec 2022 01:58:50 GMT
content-length: 1663
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3d82d0f203678f7c10a44b160b5959b2
759216bd637bcdb62d3ca09ad5a48fa264a9de47
f9c4bed6672be141791ffba4a04822c144337ab78649f71e680a7fa9d19c51e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9C4BED6672BE141791FFBA4A04822C144337AB78649F71E680A7FA9D19C51E9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6587
Expires: Sun, 04 Dec 2022 03:48:38 GMT
Date: Sun, 04 Dec 2022 01:58:51 GMT
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1422170&time=1670119128169&url=https%3A%2F%2Fwww.capbluecross.com%2Fwps%2Fportal%2Fcap%2Fhome%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.capbluecross.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&3074c4ec-665a-4943-847d-83591dea1d5f"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 04-Dec-2023 01:58:51 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2427:u=1:x=1:i=1670119131:t=1670205531:v=2:sig=AQFw6YIUTdh-TeP6rW1krmCCgLV9xQ3Q"; Expires=Mon, 05 Dec 2022 01:58:51 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXu9umJxtaR+HFlQrL70Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 133EA4CD04454BCEA71007F1F18D1F2A Ref B: OSL30EDGE0317 Ref C: 2022-12-04T01:58:50Z
date: Sun, 04 Dec 2022 01:58:50 GMT
content-length: 0
X-Firefox-Spdy: h2
nebula-cdn.kampyle.com/us/wu/267634/onsite/generic1668410356321.js
200 OK 80 kB URL HTTP/2 nebula-cdn.kampyle.com/us/wu/267634/onsite/generic1668410356321.js
IP
File type Unicode text, UTF-8 text, with very long lines (11715)
Hash 233f6d0155b2942f6db25fb1760a6984
8e64e6d97a6bbe59108976534051052f99a782af
e9b816c262d3a9dc6c1fa42a98f996e73d79e02cd431cd49f167ccf66bcdad86
GET /us/wu/267634/onsite/generic1668410356321.js HTTP/1.1
Host: nebula-cdn.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LUmWqEhICJbZ7B124/cvwNUaHF+TALiwuIrm51HTtRHm179WJQm6hHluDLyW6gSIKqT6RyMio+k=
x-amz-request-id: 5CQYMMF70HMFSADQ
last-modified: Mon, 14 Nov 2022 07:19:17 GMT
etag: "dfe47e961a078c0127b4388f08b08f09"
x-amz-version-id: s2GRGd967BRgi51EiBfGnYWl18_VkeS6
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Sun, 04 Dec 2022 01:58:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670119131.137892,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 79737
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 9f0dd32ab6b93c8852071dca0bb89704
316572ea3065db04992a2c8a5ff0dce28881dc1d
2f95d3d307da9d14081c20a1d86cad9e180b8bcf4c65daf4b0119d89177e2a45
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4658
Cache-Control: max-age=125415
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:51 GMT
Etag: "638b3390-1d7"
Expires: Mon, 05 Dec 2022 12:49:06 GMT
Last-Modified: Sat, 03 Dec 2022 11:31:28 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
edge.fullstory.com/s/settings/o-1C4Y96-na1/v1/web
200 OK 1.4 kB URL HTTP/2 edge.fullstory.com/s/settings/o-1C4Y96-na1/v1/web
IP
File type JSON data\012- , ASCII text, with very long lines (4517)
Hash 09a04678722128fd8aaf6ab1e5e1cd1b
4888cefd2cb191353ef621db71bc90f0af3f915d
2e56a057cc19352233d1e265de3676077c6eca03a3a71c03007e2085b1f8ada2
GET /s/settings/o-1C4Y96-na1/v1/web HTTP/1.1
Host: edge.fullstory.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtNBJ2w_MgRrz7dZHNRlFWDQdMh3AHZ3JEJ9MPOILkuSeYPBBXk7gGKdxYtziqrOYjWRtj5mBxT8Xpn1mURkT0sJw
date: Sun, 04 Dec 2022 01:58:51 GMT
cache-control: public,max-age=900,no-transform
expires: Sun, 04 Dec 2022 02:13:51 GMT
last-modified: Sun, 04 Dec 2022 01:50:31 GMT
etag: "09a04678722128fd8aaf6ab1e5e1cd1b"
x-goog-generation: 1670118631039218
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1384
content-type: application/json
content-encoding: gzip
x-goog-hash: crc32c=In3Q1w==, md5=CaBGeHIhKP2Kr2qx5eHNGw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1384
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsps.ssl.com/
200 OK 1.8 kB IP
Hash 71576f3cbc79cd1bb96d4b9795b1ea38
bc90c16f7d79571ab634a32f6ca55ca371a61fb9
fcca43a760d0d8bb334d8c4e3fe8b03e3f029b99ea6386a481add9cc914eedf2
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 01:58:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1810
Connection: keep-alive
Expires: Sat, 10 Dec 2022 16:47:41 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "bc90c16f7d79571ab634a32f6ca55ca371a61fb9"
Last-Modified: Sat, 03 Dec 2022 16:47:42 GMT
X-Proxy-Cache: HIT
udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
200 OK 59 B URL HTTP/2 udc-neb.kampyle.com/v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ab969c512ad71613832d03710eadde2
f64271cfa7e4b386fed80e18a958a90ffd1e3893
cbc1399b82e42018fbc8b8b9277200665d6367c9134ead9308ea5e568b00e459
POST /v1/qceuv8449dzg58ptt1bhda9g8ue19c7s/track HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2032
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.capbluecross.com
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-green-w8mw
x-application-context: application:9090
content-type: text/plain;charset=ISO-8859-1
content-length: 59
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 9e939add6b88a6aa2bb67dfce04c9271
7dc93e0fba8114f0974f54393f2cbbe2537dd84a
b840bb6fb185cd9025f4142e84d025e3da2d085cd5097b4dff6761ba1a2c8e59
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 821
Cache-Control: max-age=135570
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 01:58:51 GMT
Etag: "638b6a38-1d7"
Expires: Mon, 05 Dec 2022 15:38:21 GMT
Last-Modified: Sat, 03 Dec 2022 15:24:40 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 471
siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
200 OK 845 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
IP
File type ASCII text, with very long lines (1754), with no line terminators
Hash 819793cab7f3533d00ea03f45349a715
ee380b7b112a0340496fe380fe4f755ee1a53689
46effd1d7d4c106ea219e1630159e46c6c088e13216d098ffd49d386e806631b
GET /dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/javascript
cf-ray: 7740f07dab00b518-OSL
access-control-allow-origin: *
age: 432732
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"9eb-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2539
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=www.capbluecross.com
200 OK 20 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=www.capbluecross.com
IP
File type ASCII text, with very long lines (62816), with no line terminators
Hash 800243e4b2faf089c26d2859cd402800
ff950fe3bc0b89f3c8dfb52aec3874ca8dea20bf
8284d5aa9f7e1fff2b44a5af7bddc591e191e020fcd0173c9c249a03cacb1b86
GET /dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=www.capbluecross.com HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/javascript
cf-ray: 7740f07b59b0b518-OSL
access-control-allow-origin: *
age: 432782
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f871-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63601
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.monetate.net/trk/4/i/a-7be673a7/p/capbluecross.com/432486844-1?mr=t1500573371&mi=%272.268763038.1670119126986%27&u=%27https://www.capbluecross.com/wps/portal/cap/home%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022%27&e=!(xi)&ii=!(%273,1,3898647,op_impression,,1670119131,0,1670119129%27)&eoq=!t
200 OK 36 B URL HTTP/1.1 f.monetate.net/trk/4/i/a-7be673a7/p/capbluecross.com/432486844-1?mr=t1500573371&mi=%272.268763038.1670119126986%27&u=%27https://www.capbluecross.com/wps/portal/cap/home%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022%27&e=!(xi)&ii=!(%273,1,3898647,op_impression,,1670119131,0,1670119129%27)&eoq=!t
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad6a6cb23b0391c6652e018b9ac3bfc7
d38bd8446c3505f9b4797660388a8d6e8fd3d450
be4f754acf2dd33169add8976c1264f647470efdc993927040e23c4d310a835f
GET /trk/4/i/a-7be673a7/p/capbluecross.com/432486844-1?mr=t1500573371&mi=%272.268763038.1670119126986%27&u=%27https://www.capbluecross.com/wps/portal/cap/home%3Futm_source%3DSFMC%26utm_medium%3D%26utm_campaign%3DMemberNewsletter%26utm_content%3DNMem_102022%27&e=!(xi)&ii=!(%273,1,3898647,op_impression,,1670119131,0,1670119129%27)&eoq=!t HTTP/1.1
Host: f.monetate.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 36
Expires: Sun, 27 Nov 2022 01:58:52 GMT
Vary: Accept-Encoding
Server: Monetate
Cache-Control: no-cache
Date: Sun, 04 Dec 2022 01:58:52 GMT
Content-Type: image/gif
Timing-Allow-Origin: *
co1.qualtrics.com/WRQualtricsSiteIntercept/Graphic.php?IM=IM_eJK0TkseRWzpGXX
200 OK 1.2 kB URL HTTP/2 co1.qualtrics.com/WRQualtricsSiteIntercept/Graphic.php?IM=IM_eJK0TkseRWzpGXX
IP
File type PNG image data, 28 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash c7392b392f84f28abab7b97cc7d5d2a7
96f609dc42958e5f6f0690f3dd1e8bcb6e88f8b7
c5c2e1c40c659ebb0b4472f031cca5165d18802e0d00b76d70e73d3e19c1320e
GET /WRQualtricsSiteIntercept/Graphic.php?IM=IM_eJK0TkseRWzpGXX HTTP/1.1
Host: co1.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *,*
x-request-id: de8ad78d-69b6-418c-b42c-c5ff0be4d83a,419e6889-df81-4f93-b721-9149431c9811
x-transaction-id: 51fb7420-4244-4077-b16e-510eada546ee, 3411f107-79f2-4e87-9aa4-b92b37d94bda
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
permissions-policy: camera=(), geolocation=(), microphone=()
etag: "c7392b392f84f28abab7b97cc7d5d2a7"
x-envoy-upstream-service-time: 49
server: envoy
content-disposition: inline; filename=Feedback2
content-length: 1168
content-type: image/png
x-robots-tag: noindex
cache-control: public, max-age=60
expires: Sun, 04 Dec 2022 01:59:52 GMT
date: Sun, 04 Dec 2022 01:58:52 GMT
content-security-policy-report-only: report-uri https://sjc1.qualtrics.com/csp-report
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50aece01-03ae-4256-8ffa-fceb43e3dd62.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50aece01-03ae-4256-8ffa-fceb43e3dd62.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5047e1b428980b054be8c899ec7bd2a
a55e532bd0251ffc78c052a3f8b649e13feafdb7
c7f42eed10d19a983df419556f821a391ca2ece33a72cdef7a367cd7eab0b96a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50aece01-03ae-4256-8ffa-fceb43e3dd62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11170
x-amzn-requestid: 4925defd-cb3f-4818-a609-c4f2badaf0d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltlsGUVoAMFi9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f1-46cb22af25d527d016096316;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KMhlrg9pjepNii5clmKidbqEqTuUI1gYg8UOC7tVZ-7ZB06481p5ug==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:08:25 GMT
age: 13830
etag: "a55e532bd0251ffc78c052a3f8b649e13feafdb7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
IP
GET /dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/javascript
cf-ray: 7740f07dab01b518-OSL
access-control-allow-origin: *
age: 432732
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"7380-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=29568
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
se.monetate.net/js/3/a-7be673a7/p/capbluecross.com/t1500573371/05802d1463a63d37/custom.js
200 OK 0 B URL HTTP/2 se.monetate.net/js/3/a-7be673a7/p/capbluecross.com/t1500573371/05802d1463a63d37/custom.js
IP
GET /js/3/a-7be673a7/p/capbluecross.com/t1500573371/05802d1463a63d37/custom.js HTTP/1.1
Host: se.monetate.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "01212e1e6c5103595eccbc8afc7918a0:1668922212.449602"
last-modified: Sun, 20 Nov 2022 05:30:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=315360000
date: Sun, 04 Dec 2022 01:58:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ipmeta.io/plugin.js
200 OK 0 B IP
ASN #14061 DIGITALOCEAN-ASN
GET /plugin.js HTTP/1.1
Host: ipmeta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.3
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=14400, public
date: Sun, 04 Dec 2022 01:58:48 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
zn9tasdijn4oxsdnr-capitalbluecross.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_9taSDIjN4OXSDNr&t=1670119128921
200 OK 0 B URL HTTP/2 zn9tasdijn4oxsdnr-capitalbluecross.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_9taSDIjN4OXSDNr&t=1670119128921
IP
GET /WRSiteInterceptEngine/?Q_ZID=ZN_9taSDIjN4OXSDNr&t=1670119128921 HTTP/1.1
Host: zn9tasdijn4oxsdnr-capitalbluecross.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 7740f079f8f7b518-OSL
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-iuQaZddGni4qw51FtSbh6LfGn14"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
cdn.calltrk.com/companies/353233274/edaa31cd4d91d6a7ecd1/12/swap.js
200 OK 0 B URL HTTP/2 cdn.calltrk.com/companies/353233274/edaa31cd4d91d6a7ecd1/12/swap.js
IP
GET /companies/353233274/edaa31cd4d91d6a7ecd1/12/swap.js HTTP/1.1
Host: cdn.calltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sun, 04 Dec 2022 01:58:49 GMT
cache-control: max-age=3600, public
etag: W/"711ec6c8c7d4086c67bef0615308a284"
timing-allow-origin: *
x-request-id: 6e378cf7-a1a8-4623-b839-8686c0f69791
x-runtime: 0.014717
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DmgNaiMgAMuqGPCywT_brNKM3VT8ZAm9YdBW_xaX1GwjWYgUDGXVKA==
X-Firefox-Spdy: h2
browser-update.org/update.min.js
200 OK 0 B URL HTTP/2 browser-update.org/update.min.js
IP
GET /update.min.js HTTP/1.1
Host: browser-update.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:50 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=86400
content-disposition: inline; filename=update.min.js
expires: Sun, 04 Dec 2022 14:57:46 GMT
last-modified: Sat, 03 Dec 2022 14:57:38 GMT
cf-cache-status: HIT
age: 39664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Ux7kd%2FdWp9JpwAwUCE23bZzJI9tBiRuSTAAv4RDSngtAy%2FsVAhcVnDVfY0ACk6fq%2FGkXILSipUPGy5xsW3nBhj0IfDFFzDNHmgIsoT2Xcqg0m7NepL5wo%2BT%2Bf7PUJzkQiXmXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7740f074fb06b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_9taSDIjN4OXSDNr&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_9taSDIjN4OXSDNr&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web
IP
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_9taSDIjN4OXSDNr&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 205
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/json
cf-ray: 7740f07b99ccb518-OSL
access-control-allow-origin: https://www.capbluecross.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 139d6f23db0b3b5a
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross
IP
GET /dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=capitalbluecross HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:51 GMT
content-type: application/javascript
cf-ray: 7740f07d2ab6b518-OSL
access-control-allow-origin: *
age: 432732
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"19b73-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=105331
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_Impress=1&Q_CID=CR_8nUZcDYWDcEeWaN&Q_SIID=SI_1NsQ5V9bbNhmc8R&Q_ASID=AS_53016982&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&r=1670119129880
200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_Impress=1&Q_CID=CR_8nUZcDYWDcEeWaN&Q_SIID=SI_1NsQ5V9bbNhmc8R&Q_ASID=AS_53016982&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&r=1670119129880
IP
POST /WRSiteInterceptEngine/?Q_Impress=1&Q_CID=CR_8nUZcDYWDcEeWaN&Q_SIID=SI_1NsQ5V9bbNhmc8R&Q_ASID=AS_53016982&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&r=1670119129880 HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 91
Origin: https://www.capbluecross.com
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 01:58:52 GMT
content-type: text/plain; charset=UTF-8
cf-ray: 7740f0803c98b518-OSL
access-control-allow-origin: https://www.capbluecross.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
trace-id: 0d3c3ba4b4fb6b6a
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
capitalbluecross.mpeasylink.com/mpel/mpel_ssd.js
200 OK 0 B URL HTTP/2 capitalbluecross.mpeasylink.com/mpel/mpel_ssd.js
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_ssd.js HTTP/1.1
Host: capitalbluecross.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capbluecross.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 01:58:49 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"3276-1664301894000"
last-modified: Tue, 27 Sep 2022 18:04:54 GMT
cache-control: max-age=86400
expires: Mon, 05 Dec 2022 01:58:49 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
13.111.180.216
157.240.240.1
104.17.209.240
23.60.28.244
23.38.201.123
178.62.248.152
3.123.165.229
52.214.104.135