r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Sat, 14 Jan 2023 23:02:12 GMT
Date: Sat, 14 Jan 2023 22:02:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0643dc6b6fed33b3537160b6bb77bcbf
aa43bd1fbb30d2219f3285c1ee4991ffb33562c5
f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16801
Expires: Sun, 15 Jan 2023 02:42:26 GMT
Date: Sat, 14 Jan 2023 22:02:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 21:48:56 GMT
content-type: application/json
age: 809
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bzdyuso.health-carereform.com/rd/u20400WVcsL145634hEsF9935vOP1127zEFE1244
200 OK 235 B URL HTTP/1.1 bzdyuso.health-carereform.com/rd/u20400WVcsL145634hEsF9935vOP1127zEFE1244
IP
File type HTML document, ASCII text
Hash 98c9bcb423acc9b6168657c6ebc350ac
734f738abfc9792d059ec004adbec0daef1356e4
e46f3127e1d2d73084efc503b86c3c5ab7091677b493e10d59f0cf4375b9a1e7
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
NIDS Severity Alert suricata medium ET INFO DYNAMIC_DNS HTTP Request to a *.health-carereform .com Domain
GET /rd/u20400WVcsL145634hEsF9935vOP1127zEFE1244 HTTP/1.1
Host: bzdyuso.health-carereform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Sat, 14 Jan 2023 22:02:25 GMT
Content-Length: 235
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8947
Expires: Sun, 15 Jan 2023 00:31:32 GMT
Date: Sat, 14 Jan 2023 22:02:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1xk2RguTqwwW+ZQSuT1SN9rvemxvJTQbhBVZbzgZms8Zppbb96Ryi4gCXECMUxWstk4aE3OPHR2icBsraHYnLA==
x-amz-request-id: 6WHRVPP0KZ0ST06P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 21:43:53 GMT
age: 1112
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 22:02:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 21:17:25 GMT
age: 2700
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bzdyuso.health-carereform.com/track/u20400WVcsL145634hEsF9935vOP1127zEFE1244
302 Found 58 B URL HTTP/1.1 bzdyuso.health-carereform.com/track/u20400WVcsL145634hEsF9935vOP1127zEFE1244
IP
File type HTML document, ASCII text
Hash 11b04318e8e3c177a24c7358a4f5308d
e6fb553c0d846dd709d9323dd5e6a847c5932319
4a8f5402c717b774dfcd6ee1ccf412e1a6feddf9856850916e5f169ccd6f119a
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
NIDS Severity Alert suricata medium ET INFO DYNAMIC_DNS HTTP Request to a *.health-carereform .com Domain
GET /track/u20400WVcsL145634hEsF9935vOP1127zEFE1244 HTTP/1.1
Host: bzdyuso.health-carereform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bzdyuso.health-carereform.com/rd/u20400WVcsL145634hEsF9935vOP1127zEFE1244
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: https://getneuropure.com/opt-out-np
Date: Sat, 14 Jan 2023 22:02:25 GMT
Content-Length: 58
ocsp.digicert.com/
200 OK 471 B IP
Hash c01ec61f7ca77158f474b3ab519c12fa
fc82ae0fcd73a83a980b75709a08e65239894e4a
f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4682
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:26 GMT
Etag: "63c270a7-1d7"
Last-Modified: Sat, 14 Jan 2023 20:44:24 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/js-cookie/2.2.0/js.cookie.min.js
200 OK 746 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/js-cookie/2.2.0/js.cookie.min.js
IP
File type ASCII text, with very long lines (1689), with no line terminators
Hash c7aa19d4df3072191003257d7afa3476
8b205902361f13e2c86b4ef810ed123322364908
b70572d447d0e34f939d5f6fc58e6df16c1972e48ef6acd419f0ff05bd12fd96
GET /ajax/libs/js-cookie/2.2.0/js.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 746
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec5-699"
last-modified: Mon, 04 May 2020 16:11:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2061571
expires: Thu, 04 Jan 2024 22:02:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KfrDf0elnNN%2B9%2F%2FyMKarIoseDLJNaDTol59F7MTDQ3r93I9n3v3NFFltbCM%2BucLeujAfB6DSXHPz60PvHRhyKOFnVDF1yPXF9FwaZ7XTQq%2FFX63te1x0jCzGYf4DIkW4cNgr8ocl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7899a7ebffd7b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 4000104434e57ae91bbbe22b656d912d
fe8ed3fc71f32fd9d15bd525ac33c6782ba3f213
69f445f4d7fba4627176bc222ae8ec287ab63b911f955f7487be49c8f34642ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4198
Cache-Control: max-age=136579
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:26 GMT
Etag: "63c2888f-118"
Expires: Mon, 16 Jan 2023 11:58:45 GMT
Last-Modified: Sat, 14 Jan 2023 10:48:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
getneuropure.com/assets/pushcrew.js
200 OK 818 B URL HTTP/2 getneuropure.com/assets/pushcrew.js
IP
File type ASCII text, with very long lines (637), with no line terminators
Hash c2d0e0f65c697d0cfb003f0f680648fc
db20a66d2d6d1d07a4e783e853020509f58f605a
7e24a7ad494cdcd48a711afa15ed185d02f73383efd2dbb15b0cd4a055088eb7
GET /assets/pushcrew.js HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: application/x-javascript
cf-ray: 7899a7ebd9dcb51b-OSL
access-control-allow-origin: *
age: 1184
cache-control: public, max-age=1200
etag: W/"63bc4244-27d"
expires: Sat, 14 Jan 2023 22:22:26 GMT
last-modified: Mon, 09 Jan 2023 16:35:16 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.min.js
200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CILpjJ4GEocBCiQzYzE1ZGFhNS04MmE5LTQ2NzEtOGQ0ZS0yODJjOGI1MjZjZmIQ+OiCoKvU+wIaBgjyzIyeBiIMOTEuOTAuNDIuMTU0KOCyAzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkNGQ5MDkzYjUtYjY4ZS00Y2E3LWE0YjQtNGYyOWQ5ZDE5NGQ0GNDsASIYCAISFGNkczI0MC5zazEuaHdjZG4ubmV0.bRwt1NQ+cYJZcEYcMA/QHm/25vZlLNeYWOYLPIB53HM=
x-hw: 1673733746.dop014.sk1.t,1673733746.cds264.sk1.hn,1673733746.cds240.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e804586be26c88b95d554afe0ef24d5c
6f99b1fe2330c4661608f17819a4490a92ca296c
38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-10890968454
200 OK 70 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10890968454
IP
File type ASCII text, with very long lines (3630)
Hash 005ea0d4a5d93ffeae0e00ad19f9fc6e
65360f26ff020da14888c61ac54c1fd9c30fd28c
dc35a5c01850f34c04dbe91fd33f89ed851c0f81889cd28618921e2677a89ad1
GET /gtag/js?id=AW-10890968454 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Jan 2023 22:02:26 GMT
expires: Sat, 14 Jan 2023 22:02:26 GMT
cache-control: private, max-age=900
last-modified: Sat, 14 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69472
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
200 OK 13 kB URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP
File type ASCII text, with very long lines (55782)
Hash 4093dfc3bd4a4944d9904b8b55be3758
bd3b72bafad7a249043104a97fcfa5152b9b6aa6
6726fe40c1abe62f5ac4c33a7109674dd4c0f713c99ef65921f91f1e8d3c75b7
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: text/css
x-amz-id-2: D5Mo7exQT5WqZ1JWwMwvE+13saBvWzx81R04KHDQjke+Km4QbzD5I5t54BEw/JqTRB/hjVxPUSs=
x-amz-request-id: 48X5PPB0148RGJHT
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1587036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nm532h98TiKoh8MblTdrc8VOII8iMr4GUsZNMWA1FTQ3oCXPwo%2BbqWLt3JLD9rqtQ%2BZ6FBYJSoX1Es%2FHgG3LVg9vceOGnKpNi0zA1T8sKWsTG793gQ8pmSGlxwDdMkb2AnvPFLh6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7899a7ec6934750d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
getneuropure.com/opt-out-np-1
200 OK 28 kB URL HTTP/2 getneuropure.com/opt-out-np-1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32622), with CRLF, LF line terminators
Hash ff85e12b4dba0abafacf25ba8f6e4c96
fb6b29cc003b20f39a7e0eaf525d166ba5ed148b
4520d34d5993cbf91c251755818428b2f7d278398f9bab5d36ffe5668a3f04dc
GET /opt-out-np-1 HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bzdyuso.health-carereform.com/
Connection: keep-alive
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: text/html; charset=utf-8
cf-ray: 7899a7e9df96b51b-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Tue, 27 Dec 2022 05:12:41 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 0476d54fe37737f5774fc1cab7806e0f1b85d0d1
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: stale, valid, store
x-request-id: ad687bd7395c1059b3068f31d6013d02
x-runtime: 0.311858
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 87c8a3ea91f7ebb7004e49751388d97e
87d7d590351bb950974dddef62a3c7886392b9f4
5d679f5ab0e6103155ffdacac5b4ed76c7a3e4828ad40354a020e8a4e450f98d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 885
Cache-Control: max-age=112057
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Etag: "63c235b8-118"
Expires: Mon, 16 Jan 2023 05:10:04 GMT
Last-Modified: Sat, 14 Jan 2023 04:55:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aKXDLMPtCN9jm1aEzrLmTA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FsW+RDu51TH0wecwfsSzExwXg0M=
ocsp.digicert.com/
200 OK 471 B IP
Hash 027c4f2866d3b61b4c2a27cbefabb633
3f79d73ac1bb741cef2228484ae0ca5a154f8689
a174ea6dc41eab1be0a86f968c8d362109749cc5e499fac5f291fd567c1077f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6053
Cache-Control: max-age=104268
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Etag: "63c2031a-1d7"
Expires: Mon, 16 Jan 2023 03:00:15 GMT
Last-Modified: Sat, 14 Jan 2023 01:19:22 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
assets.clickfunnels.com/images/grey-geo.png
200 OK 62 kB URL HTTP/2 assets.clickfunnels.com/images/grey-geo.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 44cf780c1aa4d29cee2c5b47fc451c77
26e32c819082778f9986f3002dc90a41824f200f
9a5a0fb29649a77fea6dceb0028d96ca7cd1dbd795bce58d52ee9da25ea645ea
GET /images/grey-geo.png HTTP/1.1
Host: assets.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Cookie: __cf_bm=y0SYW6T50VQjLecZhs6afqoaKAks0E3qdhQJYzs2Uro-1673733746-0-ARsbEVr5+EdZQdRmUXsDkJ+F0MnrxB0E7xX0ZG/yOvhjBx3OalGeBpbsUm7AHMPGCw9P7hg3OwoEDQ/NZMIcSH2Opcx5SJUQjX9GOnIJsZJ+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: image/webp
content-length: 61666
cf-ray: 7899a7eed8d0b515-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 694559
cache-control: public, max-age=2678400
content-disposition: inline; filename="grey-geo.webp"
etag: "63b5de41-fd59"
expires: Tue, 14 Feb 2023 22:02:27 GMT
last-modified: Wed, 04 Jan 2023 20:14:57 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=64857
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 87c8a3ea91f7ebb7004e49751388d97e
87d7d590351bb950974dddef62a3c7886392b9f4
5d679f5ab0e6103155ffdacac5b4ed76c7a3e4828ad40354a020e8a4e450f98d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 885
Cache-Control: max-age=112057
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Etag: "63c235b8-118"
Expires: Mon, 16 Jan 2023 05:10:04 GMT
Last-Modified: Sat, 14 Jan 2023 04:55:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
www.paypal.com/tagmanager/pptm.js?id=5df07869-3aca-48d2-a2ee-8f56d12d068c
200 OK 5.0 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?id=5df07869-3aca-48d2-a2ee-8f56d12d068c
IP
File type ASCII text, with very long lines (14469)
Hash 74101e111785e7e3d066176d40b43309
02da73ac362bb32b373c9269599f1f06be3cb705
4fdb216bce239d8ab2c818ebf803525a350d2d6047218c21bec9d370818000f9
GET /tagmanager/pptm.js?id=5df07869-3aca-48d2-a2ee-8f56d12d068c HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-NcznZDXkOrmKFbkDPRFbqeCwNelB35W6MukChLew3yxKmC4u' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
etag: W/"38b0-MOm3vT0P4B9WHBtTxt4wMBjayLI"
paypal-debug-id: f600040017710
traceparent: 00-0000000000000000000f600040017710-3f5c224c1840c351-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:27 GMT
age: 77244
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220098-HHN, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 8, 1
x-timer: S1673733747.057465,VS0,VE6
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f600040017710-03ea46b07d99aecd-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 5014
X-Firefox-Spdy: h2
classic.clickfunnels.com/images/closemodal.png
200 OK 672 B URL HTTP/2 classic.clickfunnels.com/images/closemodal.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /images/closemodal.png HTTP/1.1
Host: classic.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getneuropure.com/
Connection: keep-alive
Cookie: __cf_bm=y0SYW6T50VQjLecZhs6afqoaKAks0E3qdhQJYzs2Uro-1673733746-0-ARsbEVr5+EdZQdRmUXsDkJ+F0MnrxB0E7xX0ZG/yOvhjBx3OalGeBpbsUm7AHMPGCw9P7hg3OwoEDQ/NZMIcSH2Opcx5SJUQjX9GOnIJsZJ+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: image/webp
content-length: 672
cf-ray: 7899a7f14bb5b515-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 190732
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "63bc4244-314"
expires: Tue, 14 Feb 2023 22:02:27 GMT
last-modified: Mon, 09 Jan 2023 16:35:16 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
server: cloudflare
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/muse.js
200 OK 16 kB URL HTTP/2 www.paypalobjects.com/muse/muse.js
IP
File type ASCII text, with very long lines (55891)
Hash 6aebbe482c72000aea20895991f70478
eff1d3370786f9ee4ea539776bc43ab9bece89ba
2acb950bc7678b9e6c265194821fac386bf555db582ee8c0e2d9e68ff3eaa862
GET /muse/muse.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: application/javascript
etag: W/"6271663d-da91"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 84840867de170
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:27 GMT
x-served-by: cache-sjc10029-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 57228
x-timer: S1673733747.448237,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16464
X-Firefox-Spdy: h2
www.paypalobjects.com/muse/analytics/index.html
200 OK 17 kB URL HTTP/2 www.paypalobjects.com/muse/analytics/index.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55410)
Hash 56fc10c2e8100a7e4418dc987c23d7a5
5c11880437f36368f82da60522bfcb0d57b395cf
326df6156907ef357f13bf48a5a3798dd4e692345d04fb4edad8370058d1198a
GET /muse/analytics/index.html HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-encoding: gzip
content-type: text/html
etag: W/"6271663d-d994"
last-modified: Tue, 03 May 2022 17:28:29 GMT
paypal-debug-id: 50b39f10d2761
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:27 GMT
x-served-by: cache-sjc10077-SJC, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 64122
x-timer: S1673733748.501962,VS0,VE0
vary: Accept-Encoding
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 16791
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10065
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 22:02:27 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10065
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 22:02:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F814c3b17-a3b2-43d8-b4e1-ecffa7e1f5c2.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F814c3b17-a3b2-43d8-b4e1-ecffa7e1f5c2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b27c5238311e30e043c3c15bb9d31767
4f992451e2bfed5d25b013340c0ac1193d571623
072e513547eacfd5c53a943be02e88b84548d7070263144a00573f87b884df9b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F814c3b17-a3b2-43d8-b4e1-ecffa7e1f5c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8738
x-amzn-requestid: 7f3ea5e5-26f1-4d53-87a4-ec4f30472170
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewISDHNiIAMF_QA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c320d9-56e4275f0cea448645beed3f;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:38:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8sgWglzDqGNs_LrMKut5jfeZc8AhZQNRx8bxK0VlrhgzE57HiSuaPg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:38:34 GMT
etag: "4f992451e2bfed5d25b013340c0ac1193d571623"
content-type: image/jpeg
age: 1433
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 2c432ddf3c09643969b5936593a758e9
a778f65d71595297ac10a445249b82bd9bf3dfa8
020992335fc2224fbc13c760c5bef08c6cd02be82be697a444cdc32702d4d71a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3747
Cache-Control: max-age=140115
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Etag: "63c29823-138"
Expires: Mon, 16 Jan 2023 12:57:42 GMT
Last-Modified: Sat, 14 Jan 2023 11:55:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 312
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d9e1892-8447-4b38-8159-788f12972e14.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d9e1892-8447-4b38-8159-788f12972e14.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 096abd54e33fab6c9d82dcdaa03ef251
cafdf00d2857947583b8cc8d1b32b6f821b06937
faf0a2e1ac24ca758389d1d5b55bd7ddb85fb46c5f0080f339a0d83ea7c7e0ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d9e1892-8447-4b38-8159-788f12972e14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: cc7cf404-2905-4fc2-8c11-3fdbaa0e9cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewIRbFKcoAMFm_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c320d5-35a1c8bb4fffa7b955f7ebce;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dEgWMbKjEGCnqRkHBJ4oLw3YvjVZ_g5T4sc5Oi_Vp1F8Fc0ZkCyETQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:38:29 GMT
etag: "cafdf00d2857947583b8cc8d1b32b6f821b06937"
content-type: image/jpeg
age: 1438
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63e6563cf37af474836f8d5d65cd2d0b
c2ad9366f32832bf2799f265683476713059e786
2d393d9ca4a3f4687b918bc2de654453a4fd3a5030da7322db97718905e1fbf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4f9b18a-acad-4584-bb09-000347f67b75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7079
x-amzn-requestid: f8028d2a-bd1f-4b69-bec7-9c513d3b88b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etJfhESAIAMFRZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ef96-1c775bca6c8d1177720a5c0b;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 23:56:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZfTjVcVgHDg2EvAm7SHdkcWMq-r3nQYl0pUHmnN9QlxKNXePy20BUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 05:35:28 GMT
age: 59219
etag: "c2ad9366f32832bf2799f265683476713059e786"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 05:58:29 GMT
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
age: 57838
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fa787b7-5a13-46f4-a39a-67e066ad269e.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fa787b7-5a13-46f4-a39a-67e066ad269e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6a540f8fcb678253586f37929feae01
dd42bc0ba674caeb39de3983b4c6f042e6ade5ff
dab64cb69db90762f2b1e10bff05fe32ccc54a5b7e75801247ae41c173c00630
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1fa787b7-5a13-46f4-a39a-67e066ad269e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 90eb0826-d4c1-40a8-b501-325e07c538c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: essVEHbzIAMFd4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1c0ed-2da2b2463c3fb6fb225c9834;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 20:37:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FVTrOdPVYbFtdluF7aBgPL3p6kJQvVmpCmhU04Di9JmLfzMvZJjZuw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 07:18:51 GMT
age: 53016
etag: "dd42bc0ba674caeb39de3983b4c6f042e6ade5ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6eabf5f-7d91-476e-9896-3162652163aa.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6eabf5f-7d91-476e-9896-3162652163aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9365e4ddb0fa0d3f6dbdec98433e02a9
a9e0dc338dabcdebb33b35a162b0fb6950b31ddb
cbe4cdf59e5a2f7433485637c88c3fba9c022de1c7559e42ceb9a2c8a872fd21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6eabf5f-7d91-476e-9896-3162652163aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5463
x-amzn-requestid: 5e0c891d-c5f0-48a9-8f69-6ca2290039b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ejsaSEHpoAMFW6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be2774-55e5f2937d688fb00a12d61b;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:05:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hMGNws-VTpFytokBm9SsX2uLGQAuLFxVR9JhHeDAbxoX__Ubsw9Sxw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 06:29:55 GMT
age: 55952
etag: "a9e0dc338dabcdebb33b35a162b0fb6950b31ddb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1&page=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&fltp=analytics&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&flag_consume=yes&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747554&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ru=http%3A%2F%2Fbzdyuso.health-carereform.com%2F
200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1&page=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&fltp=analytics&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&flag_consume=yes&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747554&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ru=http%3A%2F%2Fbzdyuso.health-carereform.com%2F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1&page=muse%3Athird-party%3Aanalytics%3A%3A8QDXYAD82LT2Y-1%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&fltp=analytics&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&flag_consume=yes&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747554&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ru=http%3A%2F%2Fbzdyuso.health-carereform.com%2F HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 14 Jan 2023 22:02:27 GMT
expires: Sat, 14 Jan 2023 22:02:27 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 31a2db7b00d20
pragma: no-cache
server: ECAcc (frc/4CAE)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1768428147%26vteXpYrS%3D1673735547%26vr%3Db24e33241850aa5e1d70cc0dffffffff%26vt%3Db24e33241850aa5e1d70cc0dfffffffe; Expires=Wed, 14 Jan 2026 22:02:27 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Db24e33241850aa5e1d70cc0dffffffff%26vt%3Db24e33241850aa5e1d70cc0dfffffffe; Expires=Wed, 14 Jan 2026 22:02:27 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000031a2db7b00d20-836b7cf0aee2a5bf-01
content-length: 42
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfoFlowStarted&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747756&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfoFlowStarted&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747756&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfoFlowStarted%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfoFlowStarted&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1673733747756&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 14 Jan 2023 22:02:27 GMT
expires: Sat, 14 Jan 2023 22:02:27 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 92f4692737737
pragma: no-cache
server: ECAcc (frc/4C9C)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1768428147%26vteXpYrS%3D1673735547%26vr%3Db24e33d21850aa5e07559888ffffffff%26vt%3Db24e33d21850aa5e07559888fffffffe; Expires=Wed, 14 Jan 2026 22:02:27 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Db24e33d21850aa5e07559888ffffffff%26vt%3Db24e33d21850aa5e07559888fffffffe; Expires=Wed, 14 Jan 2026 22:02:27 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-000000000000000000092f4692737737-8356b9575e8f2fce-01
content-length: 42
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::PageviewsCreatedSummary&nonce=1e971819-e3f4-413c-9931-d245e5fcf939&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::PageviewsCreatedSummary&nonce=1e971819-e3f4-413c-9931-d245e5fcf939&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::PageviewsCreatedSummary&nonce=1e971819-e3f4-413c-9931-d245e5fcf939&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: text/html
cf-ray: 7899a7f08a99b515-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: fd3cdc548f85248c6538891ab68492a4
x-runtime: 0.037165
set-cookie: __cf_bm=wx_THHV.D69HvMtasfBDg2yb8r5jwiWdFA_MooglOZ8-1673733747-0-AXIFqtG65sIoyG2rUL0eE0ADBHTHjh0slKL1qwJrspoegvkmAU72Eg2ZXubaB8ipyyS+9MMDO11OEgsHeAbldO2bYeEEIPwbEF33QhyCxHTB; path=/; expires=Sat, 14-Jan-23 22:32:27 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
200 OK 5.5 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (17064), with no line terminators
Hash a846d48b346dbb36790da05d37c5c664
8459c596050371032448288b832e153e5a6f3adc
ce818f7c86f8500603081fc67ab8e47bf4f2d7b4512ff2950ee14a53bee09a02
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "2b39cf4b5b36810a615ee712f89afb45:1673520765.626306"
Last-Modified: Thu, 12 Jan 2023 07:20:52 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sat, 14 Jan 2023 22:22:27 GMT
Date: Sat, 14 Jan 2023 22:02:27 GMT
Content-Length: 5512
Connection: keep-alive
www.paypal.com/targeting/graphql
204 No Content 0 B URL HTTP/2 www.paypal.com/targeting/graphql
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.paypalobjects.com/
Origin: https://www.paypalobjects.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
paypal-debug-id: f960060ed6c2e
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Sun, 15 Jan 2023 06:48:23 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sun, 14 Jan 2024 22:02:27 GMT; Secure
x-pp-s=eyJ0IjoiMTY3MzczMzc0Nzc1MSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
nsid=s%3AUsGIH-LvhjXe_7MlLH_iZWifK8RX-2dx.dBUsxOZr4TX5hZf4hSCMeCDIJJffB4SMKJBw3Bnm2l4; Path=/; HttpOnly; Secure
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Sat, 14 Jan 2023 22:32:27 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1768428147%26vteXpYrS%3D1673735547%26vr%3Db24e34121850a1d618d6f129ffdaa32f%26vt%3Db24e34121850a1d618d6f129ffdaa32e%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Tue, 13 Jan 2026 22:02:27 GMT; HttpOnly; Secure
ts_c=vr%3Db24e34121850a1d618d6f129ffdaa32f%26vt%3Db24e34121850a1d618d6f129ffdaa32e; Path=/; Domain=paypal.com; Expires=Tue, 13 Jan 2026 22:02:27 GMT; Secure
traceparent: 00-0000000000000000000f960060ed6c2e-e00ff968dc7596b5-01
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Sat, 14 Jan 2023 22:02:27 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220034-HHN, cache-bma1646-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1673733748.643135,VS0,VE204
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/607546/vitalityfavicon-16x16.png
200 OK 1.3 kB URL HTTP/2 d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/607546/vitalityfavicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash e867d01d8377be8ed1ba153f68b720d5
7dd5a7e15a5d2a3448f00fbfd2a515930835136b
d8f7b8ea5272be06d9485db56e6c8fa02179529d80c71b99783ebf731c376004
GET /uploads/digital_asset/file/607546/vitalityfavicon-16x16.png HTTP/1.1
Host: d2saw6je89goi1.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1257
date: Tue, 13 Dec 2022 06:02:12 GMT
last-modified: Sat, 19 Oct 2019 10:14:07 GMT
etag: "e867d01d8377be8ed1ba153f68b720d5"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XGEvc1us9by8u1wuJPIZfMfyPrN2UBhwAS1WF1vpkBrDWSkx31_EbA==
age: 2822416
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2f8ae4ab9ee17e2598e9299bdc0f44c0
ab4c7d1750edf513359218ab6d0b81cdd4dcb90c
75e680ab62ee77f0811fdb770d1c913dd41a911e7efb4ca99bc4cfe7fcb432c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e6c8f8a0e3ef850c66d344a842dfa3c3
c8475fa1d4d3d8ca3394272ade4c97c6bab3a286
58226f2841670d93086aa4dc60373f7770bfbcc11760cacd7691299b6c403efa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=33C116F79D57633C2A13046E9CA2621D; domain=.bing.com; expires=Thu, 08-Feb-2024 22:02:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0F36E2B2610C401987E1EC91F3DBBAF8 Ref B: OSL30EDGE0109 Ref C: 2023-01-14T22:02:27Z
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10890968454/?random=1673733748041&cv=11&fst=1673733748041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 921 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10890968454/?random=1673733748041&cv=11&fst=1673733748041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2007), with no line terminators
Hash ca028fb3e9ba62569155141ebc31f7eb
6e4a719991e7d2006141d6fc8e16dbf702dc4dbd
9cd30db933719de0cebfdb9866c519a37d4e0a6ccf6402c6926aaf8c44970c1b
GET /pagead/viewthroughconversion/10890968454/?random=1673733748041&cv=11&fst=1673733748041&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 921
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 14-Jan-2023 22:17:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10890968454/?random=1673733747097&cv=11&fst=1673733747097&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 921 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10890968454/?random=1673733747097&cv=11&fst=1673733747097&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2009), with no line terminators
Hash 9361a490ba66512659403d494a610c06
c926d4eb0631b02e074bdd2f45997b2214e5624d
3c415747f1febfbebb75ac7f2aff0432ba65af2ffacd70e7fdb79d614f734400
GET /pagead/viewthroughconversion/10890968454/?random=1673733747097&cv=11&fst=1673733747097&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&auid=355072432.1673733747&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 921
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 14-Jan-2023 22:17:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1&z=414893313
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1&z=414893313
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1&z=414893313 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-551J33Q7R1>m=2oe1a1&_p=901749828&_gaz=1&cid=875140746.1673733747&ul=en-us&sr=1280x1024&_s=1&sid=1673733747&sct=1&seg=0&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&dr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&dt=Kachin%20Diabetes%20Opt-Out%20Page&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-551J33Q7R1>m=2oe1a1&_p=901749828&_gaz=1&cid=875140746.1673733747&ul=en-us&sr=1280x1024&_s=1&sid=1673733747&sct=1&seg=0&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&dr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&dt=Kachin%20Diabetes%20Opt-Out%20Page&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-551J33Q7R1>m=2oe1a1&_p=901749828&_gaz=1&cid=875140746.1673733747&ul=en-us&sr=1280x1024&_s=1&sid=1673733747&sct=1&seg=0&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&dr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&dt=Kachin%20Diabetes%20Opt-Out%20Page&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getneuropure.com
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-551J33Q7R1&cid=875140746.1673733747>m=2oe1a1&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getneuropure.com
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2f8ae4ab9ee17e2598e9299bdc0f44c0
ab4c7d1750edf513359218ab6d0b81cdd4dcb90c
75e680ab62ee77f0811fdb770d1c913dd41a911e7efb4ca99bc4cfe7fcb432c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e6c8f8a0e3ef850c66d344a842dfa3c3
c8475fa1d4d3d8ca3394272ade4c97c6bab3a286
58226f2841670d93086aa4dc60373f7770bfbcc11760cacd7691299b6c403efa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=134632104&Ver=2&mid=47d93c42-970d-48c1-90e4-f0aa3d24b1cb&sid=228ccc70945711ed901609aa0f9b878b&vid=228ce7a0945711ed9043a3aa687a9a4f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Kachin%20Diabetes%20Opt-Out%20Page&kw=nodo,%20landing%20page,%20editor&p=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&r=http%3A%2F%2Fbzdyuso.health-carereform.com%2F<=1987&evt=pageLoad&sv=1&rn=334263
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=134632104&Ver=2&mid=47d93c42-970d-48c1-90e4-f0aa3d24b1cb&sid=228ccc70945711ed901609aa0f9b878b&vid=228ce7a0945711ed9043a3aa687a9a4f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Kachin%20Diabetes%20Opt-Out%20Page&kw=nodo,%20landing%20page,%20editor&p=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&r=http%3A%2F%2Fbzdyuso.health-carereform.com%2F<=1987&evt=pageLoad&sv=1&rn=334263
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=134632104&Ver=2&mid=47d93c42-970d-48c1-90e4-f0aa3d24b1cb&sid=228ccc70945711ed901609aa0f9b878b&vid=228ce7a0945711ed9043a3aa687a9a4f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Kachin%20Diabetes%20Opt-Out%20Page&kw=nodo,%20landing%20page,%20editor&p=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&r=http%3A%2F%2Fbzdyuso.health-carereform.com%2F<=1987&evt=pageLoad&sv=1&rn=334263 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=28ABBF25E1FA68352B9FADBCE00F693D; domain=.bing.com; expires=Thu, 08-Feb-2024 22:02:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BCEA645F668C4CF18907D9A167C01EC4 Ref B: OSL30EDGE0109 Ref C: 2023-01-14T22:02:27Z
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4dc72ba06ace9ad5795c9de974b66afa
d56fbd77e052b69ce1eaf5e43d24596d162c45fa
f8986ca3bd2b5c850b42dc287b7ea42b02eb8dee4943344ade7a03946d6f7325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4dc72ba06ace9ad5795c9de974b66afa
d56fbd77e052b69ce1eaf5e43d24596d162c45fa
f8986ca3bd2b5c850b42dc287b7ea42b02eb8dee4943344ade7a03946d6f7325
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10890968454/?random=1673733748041&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=826797662&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10890968454/?random=1673733747097&cv=11&fst=1673733600000&bg=ffffff&guid=ON&async=1>m=2oa1a1&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&ref=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&tiba=Kachin%20Diabetes%20Opt-Out%20Page&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1685105279&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 14 Jan 2023 22:02:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/134632104.js
200 OK 1.4 kB URL HTTP/2 bat.bing.com/p/action/134632104.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 69466033d833589eb623d74bb9da3179
0f6135f7d1ba9d7cbada03b3deafaf6caf63b8d7
6a5bebc1d16be5ef0e7c880bd2109627009bdbb8c09492d6190f659dc1a52543
GET /p/action/134632104.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 1447
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=1F30F4A8DF9C6B4B2606E631DE696A66; domain=.bing.com; expires=Thu, 08-Feb-2024 22:02:27 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CC3D5ABB9748445493E0DEA1B3C8BACC Ref B: OSL30EDGE0109 Ref C: 2023-01-14T22:02:27Z
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ac0e204e812ce8905ac046581ff4e95
c0322d4ecff9356cca1a8e55d62e8d2f9540eca7
de65a926e0a1ce8b9724754564cef8e4bbe7709cef911e5dbd30db03211e6673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 313 B IP
Hash 41208d9b89809f0a47d27e1bd4f6b25f
99a683ded7d02d876442066e5d10698c4342612e
654da389b47900d9f1a0cbed47971a234bc4ce23304393c97cddb0d867dd8cf3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2799
Cache-Control: max-age=145236
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:28 GMT
Etag: "63c2afd9-139"
Expires: Mon, 16 Jan 2023 14:23:04 GMT
Last-Modified: Sat, 14 Jan 2023 13:36:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=hhWayF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRlhEcG9YJTJGcXNDTkZuRDhSRGNuWnps; expires=Thu, 08 Feb 2024 22:02:28 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 324668
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 24ed8ab8a755ada6ed8c1c4f6106f027
1309cf9a8f179ea07cd275cc820664a77c103e15
0443130210f06576a9ce08b80ab9e43257d742890ca8b8915a69a36bdc169e0b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2163
Cache-Control: max-age=111534
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:28 GMT
Etag: "63c22eaf-139"
Expires: Mon, 16 Jan 2023 05:01:22 GMT
Last-Modified: Sat, 14 Jan 2023 04:25:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
tr.outbrain.com/cachedClickId?marketerId=undefined
200 OK 35 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=undefined
IP
File type ASCII text, with no line terminators
Hash 75c843c7b717e7b722777907475c67a3
983d1c9a05b315288039b9d4694ce3b402259240
1d348f9f803c95305f63def9d75fd50e79e54a375e1a4a888edbbea366845580
GET /cachedClickId?marketerId=undefined HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:02:28 GMT
Content-Type: application/javascript
Content-Length: 35
X-TraceId: 74d5faf6e0b538ebee3f271aa4b47bd8
tr.outbrain.com/unifiedPixel?marketerId=00004e54d8d3829abd2f80200cca2553b5,00c0aca893dc335e41ac9e74b613e9884b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&optOut=false&bust=0731056962540544&referrer=http%3A%2F%2Fbzdyuso.health-carereform.com%2F
200 OK 53 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00004e54d8d3829abd2f80200cca2553b5,00c0aca893dc335e41ac9e74b613e9884b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&optOut=false&bust=0731056962540544&referrer=http%3A%2F%2Fbzdyuso.health-carereform.com%2F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 414bd2a5161db03fdd910327b42c6daa
65d4cf50496813c5f1a34eddd5c50dc67d44ff47
b51f3497b0a65f1e1e87e75f5e7e823d871c23bcf76a5ee4101783c8f939e553
GET /unifiedPixel?marketerId=00004e54d8d3829abd2f80200cca2553b5,00c0aca893dc335e41ac9e74b613e9884b&obApiVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&optOut=false&bust=0731056962540544&referrer=http%3A%2F%2Fbzdyuso.health-carereform.com%2F HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:02:28 GMT
Content-Type: image/gif;
Content-Length: 53
Cache-Control: no-cache
X-TraceId: e0de7099d902770e2ae612ceb499fe4f
js-agent.newrelic.com/552.2d6a2503-1220.js
200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/552.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (21423)
Hash 097ef34c5f5d635a147bca3721bd605b
3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2
3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
GET /552.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: j+ws9dkIM4h+vTUPASZooAxBAQFaXWhONglROo/3xtmHWh9hoOBQdoLqpKfya5d1PQc6MXVhzn8=
x-amz-request-id: 33WBYEVGYWS4Q8Y4
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:28 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 372
x-timer: S1673733748.389323,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2
rp.liadm.com/j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg
302 Found 0 B URL HTTP/2 rp.liadm.com/j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 14 Jan 2023 22:02:28 GMT
content-length: 0
trace-id: 28ec4926b1e9e9af
vary: Origin
location: /j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg&n3pc=true
set-cookie: lidid=e474451b-effb-4f4b-a647-142db45b4ac6; Max-Age=63072000; Expires=Mon, 13 Jan 2025 22:02:28 GMT; SameSite=None; Path=/; Domain=.liadm.com; Secure; HTTPOnly
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://getneuropure.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
getneuropure.com/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 getneuropure.com/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 20866
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3; _gcl_au=1.1.355072432.1673733747; _ga_551J33Q7R1=GS1.1.1673733747.1.0.1673733747.60.0.0; _ga=GA1.1.875140746.1673733747; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTAxNDM2MDY=:visited=true; cf:visitor_id=e531f8e0-2216-43cd-b4b6-aa05191956f2; addevent_track_cookie=fa8ba09f-6362-4d29-d81a-e34880c77a5f; _li_dcdm_c=.getneuropure.com; _lc2_fpi=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9; _uetsid=228ccc70945711ed901609aa0f9b878b; _uetvid=228ce7a0945711ed9043a3aa687a9a4f; _clck=fzkdq6|1|f89|0; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 14 Jan 2023 22:02:28 GMT
access-control-allow-origin: https://getneuropure.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7899a7f81951b51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
getneuropure.com/images/background.png?_unique=0.9687053871078399&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//getneuropure.com/opt-out-np-1&_referrer=ttp%3A//bzdyuso.health-carereform.com/&_title=Kachin%20Diabetes%20Opt-Out%20Page&_key=8kicdisg&_page_key=ix9x1gefh3ogclk9&_fid=11311728&_fspos=27&_fvrs=9&_funnel_stat=0&_location=https://getneuropure.com/opt-out-np-1&_referrer=http://bzdyuso.health-carereform.com/
200 OK 3.5 kB URL HTTP/2 getneuropure.com/images/background.png?_unique=0.9687053871078399&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//getneuropure.com/opt-out-np-1&_referrer=ttp%3A//bzdyuso.health-carereform.com/&_title=Kachin%20Diabetes%20Opt-Out%20Page&_key=8kicdisg&_page_key=ix9x1gefh3ogclk9&_fid=11311728&_fspos=27&_fvrs=9&_funnel_stat=0&_location=https://getneuropure.com/opt-out-np-1&_referrer=http://bzdyuso.health-carereform.com/
IP
File type ASCII text, with no line terminators
Hash 2deb3ec654904a110e2971b9d04b9851
2a92092789a7505e2b778fe4ed119cc5884b9522
d1904e99d7c9889c47db1efcd509a454c02c2d941e8020a2dc4fb5ddfa12ad87
GET /images/background.png?_unique=0.9687053871078399&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//getneuropure.com/opt-out-np-1&_referrer=ttp%3A//bzdyuso.health-carereform.com/&_title=Kachin%20Diabetes%20Opt-Out%20Page&_key=8kicdisg&_page_key=ix9x1gefh3ogclk9&_fid=11311728&_fspos=27&_fvrs=9&_funnel_stat=0&_location=https://getneuropure.com/opt-out-np-1&_referrer=http://bzdyuso.health-carereform.com/ HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3; _gcl_au=1.1.355072432.1673733747; _ga_551J33Q7R1=GS1.1.1673733747.1.0.1673733747.60.0.0; _ga=GA1.1.875140746.1673733747; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTAxNDM2MDY=:visited=true; cf:visitor_id=e531f8e0-2216-43cd-b4b6-aa05191956f2; addevent_track_cookie=fa8ba09f-6362-4d29-d81a-e34880c77a5f; _li_dcdm_c=.getneuropure.com; _lc2_fpi=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9; _uetsid=228ccc70945711ed901609aa0f9b878b; _uetvid=228ce7a0945711ed9043a3aa687a9a4f; _clck=fzkdq6|1|f89|0; outbrain_cid_fetch=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:28 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 7899a7f73828b51b-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 9ea63375d6b5a4457ab8435f7e2417b5
x-runtime: 0.024635
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
js-agent.newrelic.com/368.2d6a2503-1220.js
200 OK 1.4 kB URL HTTP/2 js-agent.newrelic.com/368.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (3382)
Hash fa50a55750d1d0978fca32be5dbc3988
a7f447621d48b3ecf7fc0192b515d506d3d1ad18
c621038fb07e536af8a1ec6d260853dfe69055dc2fb526700919c53b3b7e5f20
GET /368.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: qKUQ20x7cUwDiXkyGzEE0QLCztJ3rIOyPqEkhC3qVlFk+l2zvs9Vd1Ibg0oo2VVGiZ60lT07inw=
x-amz-request-id: 33W2D99RXMHR1XW9
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "16b4f3676c3859e1378a2ccdebbad675"
x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:28 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 355
x-timer: S1673733749.532616,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1443
X-Firefox-Spdy: h2
js-agent.newrelic.com/768.2d6a2503-1220.js
200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/768.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (5523)
Hash 98a96a3306b7723c0b8c4bff074cdd9f
e9070da7daa34fa2d8ac2e4ec00e3c499ea37516
a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7
GET /768.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LKNOIS6KmUy5huHEMF/CcFDhdHu/sYHjfkVSDv/Qd6ObG2fqz1GfTEdKLjkviCgj2G0S+/ErDcY=
x-amz-request-id: 33W599GS0X3J6D98
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "d6cc8b42eda6fd7734014b03b87b5787"
x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:28 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 354
x-timer: S1673733749.532747,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
js-agent.newrelic.com/775.2d6a2503-1220.js
200 OK 632 B URL HTTP/2 js-agent.newrelic.com/775.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (1169)
Hash 661520fd0dfebb919d68a69b60ca426f
b85ef80a0e0d95bf4904f9ce4fad56c49ae035be
ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7
GET /775.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: I1vsI/pE/c3hEsq91esc6lPX2zw/LBwa6Rk8BDDvsaxpa1r+yHM2bEzBqRAknYtryW1lHxmEih0=
x-amz-request-id: 33WD7C1PEQBHPBA5
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "1dfdb74c0491489bf04c6deadb56add2"
x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 22:02:28 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 351
x-timer: S1673733749.532994,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 632
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/134632104
200 OK 852 B URL HTTP/2 www.clarity.ms/tag/uet/134632104
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (852), with no line terminators
Hash eb3f49c821d25a82bf776235f91a0a6d
245660ce779b38fe0e9cc35d535555cd8313dd78
cec56b63f494dc44cb6d76800bd427cdc8d7dbf40eed07335c9a99d07eb9c388
GET /tag/uet/134632104 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=7090ad6c485245dea93e27c9fd3b65d3.20230114.20240114; expires=Sun, 14 Jan 2024 22:02:28 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0dCbDYwAAAAAIR07+8VB3Q4foVQ5v6fKuQ1BIMzBFREdFMDQxNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
rp.liadm.com/j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg&n3pc=true
200 OK 13 B URL HTTP/2 rp.liadm.com/j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg&n3pc=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 97efe0b7ee61e154d57e80758bb797d8
810b4e115fe9f5ae697666febf2a9abf0b21c9ec
efabba3678b85fcab831b778ea2ddaad1e2a1e952584d3566bc39b7ccb3429d9
GET /j?dtstmp=1673733748173&aid=a-07go&se=e30&duid=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9&tna=v2.5.5&pu=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1&wpn=lc-bundle&refr=http%3A%2F%2Fbzdyuso.health-carereform.com%2F&c=PHRpdGxlPkthY2hpbiBEaWFiZXRlcyBPcHQtT3V0IFBhZ2U8L3RpdGxlPjxtZXRhIGNsYXNzPSJtZXRhVGFnVG9wIiBuYW1lPSJkZXNjcmlwdGlvbiIgY29udGVudD0iS2FjaGluIERpYWJldGVzIE9wdC1PdXQgUGFnZSI-PGxpbmsgcmVsPSJjYW5vbmljYWwiIGhyZWY9Imh0dHBzOi8vZ2V0bmV1cm9wdXJlLmNvbS9vcHQtb3V0LW5wLTEiPg&n3pc=true HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Referer: https://getneuropure.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:28 GMT
content-type: application/json
content-length: 13
trace-id: 1aad70610013fbb0
vary: Origin
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-pixel-event-id: ee7f57f3-3a66-4aab-88f7-c02deb1e5cf5
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://getneuropure.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&RedC=c.clarity.ms&MXFR=1AEE3E4A3F2861723A052CD33B286FE0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=1AEE3E4A3F2861723A052CD33B286FE0; domain=.clarity.ms; expires=Thu, 08-Feb-2024 22:02:28 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sat, 14 Jan 2023 22:02:28 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a610c6e51ee961edf7c34eb0f33a549e
1982532c1f2df05c5a46183ea80ea722005cabe0
5c9e7fcfc6df3915157d836bda023d9831b8b49d8cc360627e571e0ad9afbc8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4243
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 22:02:28 GMT
Last-Modified: Sat, 14 Jan 2023 20:51:45 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfo&cust=NNGPG92BUZ372&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1673733748785&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfo&cust=NNGPG92BUZ372&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1673733748785&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1&page=muse%3Aoffer%3A%3A%3A8QDXYAD82LT2Y-1%3A%3AvisitorInfo%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&item=5df07869-3aca-48d2-a2ee-8f56d12d068c&es=visitorInfo&cust=NNGPG92BUZ372&mrid=8QDXYAD82LT2Y&code=HAWK_TAGMANAGER&partner_name=HAWK_TAGMANAGER&pt=Kachin%20Diabetes%20Opt-Out%20Page&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&unsc=8&identifier_used=DFP&e=im&t=1673733748785&g=0&completeurl=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Cookie: tsrce=targetingnodeweb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 14 Jan 2023 22:02:28 GMT
expires: Sat, 14 Jan 2023 22:02:28 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: a595d7b0e4afd
pragma: no-cache
server: ECAcc (frc/4D0A)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1768428148%26vteXpYrS%3D1673735548%26vr%3Db24e37d31850a5b209f563e5ffffffff%26vt%3Db24e37d31850a5b209f563e5fffffffe; Expires=Wed, 14 Jan 2026 22:02:28 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Db24e37d31850a5b209f563e5ffffffff%26vt%3Db24e37d31850a5b209f563e5fffffffe; Expires=Wed, 14 Jan 2026 22:02:28 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000a595d7b0e4afd-fd35f9efca32905e-01
content-length: 42
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&RedC=c.clarity.ms&MXFR=1AEE3E4A3F2861723A052CD33B286FE0
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&RedC=c.clarity.ms&MXFR=1AEE3E4A3F2861723A052CD33B286FE0
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&RedC=c.clarity.ms&MXFR=1AEE3E4A3F2861723A052CD33B286FE0 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getneuropure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&MUID=05F05DE8A2FC6D0F10154F71A3096CFF
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=05F05DE8A2FC6D0F10154F71A3096CFF; domain=c.bing.com; expires=Thu, 08-Feb-2024 22:02:28 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 007781D5AD3B4D12A9C67E97D705A7C4 Ref B: OSL30EDGE0109 Ref C: 2023-01-14T22:02:28Z
date: Sat, 14 Jan 2023 22:02:28 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&MUID=05F05DE8A2FC6D0F10154F71A3096CFF
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&MUID=05F05DE8A2FC6D0F10154F71A3096CFF
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=23360DD3A29F4E759E715CC9A99BDF3B&MUID=05F05DE8A2FC6D0F10154F71A3096CFF HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getneuropure.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 05 Jan 2023 17:40:42 GMT
accept-ranges: bytes
etag: "d59a6ed52c21d91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sat, 14-Jan-2023 22:12:28 GMT; path=/; SameSite=None; Secure;
date: Sat, 14 Jan 2023 22:02:28 GMT
content-length: 42
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1220.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=3234&ck=0&s=ab5d354c9ed4eec6&ref=https://getneuropure.com/opt-out-np-1&ap=320&be=1115&fe=1841&dc=794&perf=%7B%22timing%22:%7B%22of%22:1673733745555,%22n%22:0,%22f%22:842,%22dn%22:842,%22dne%22:842,%22c%22:842,%22s%22:842,%22ce%22:842,%22rq%22:844,%22rp%22:1079,%22rpe%22:1080,%22dl%22:1090,%22di%22:1855,%22ds%22:1908,%22de%22:1987,%22dc%22:2955,%22l%22:2955,%22le%22:3086%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1881&jsonp=NREUM.setToken
200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1220.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=3234&ck=0&s=ab5d354c9ed4eec6&ref=https://getneuropure.com/opt-out-np-1&ap=320&be=1115&fe=1841&dc=794&perf=%7B%22timing%22:%7B%22of%22:1673733745555,%22n%22:0,%22f%22:842,%22dn%22:842,%22dne%22:842,%22c%22:842,%22s%22:842,%22ce%22:842,%22rq%22:844,%22rp%22:1079,%22rpe%22:1080,%22dl%22:1090,%22di%22:1855,%22ds%22:1908,%22de%22:1987,%22dc%22:2955,%22l%22:2955,%22le%22:3086%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1881&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1220.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=3234&ck=0&s=ab5d354c9ed4eec6&ref=https://getneuropure.com/opt-out-np-1&ap=320&be=1115&fe=1841&dc=794&perf=%7B%22timing%22:%7B%22of%22:1673733745555,%22n%22:0,%22f%22:842,%22dn%22:842,%22dne%22:842,%22c%22:842,%22s%22:842,%22ce%22:842,%22rq%22:844,%22rp%22:1079,%22rpe%22:1080,%22dl%22:1090,%22di%22:1855,%22ds%22:1908,%22de%22:1987,%22dc%22:2955,%22l%22:2955,%22le%22:3086%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1881&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 22:02:28 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7899a7f998a4b529-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 28883
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://getneuropure.com
access-control-allow-credentials: true
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
getneuropure.com/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 getneuropure.com/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 644
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3; _gcl_au=1.1.355072432.1673733747; _ga_551J33Q7R1=GS1.1.1673733747.1.0.1673733754.53.0.0; _ga=GA1.1.875140746.1673733747; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTAxNDM2MDY=:visited=true; cf:visitor_id=e531f8e0-2216-43cd-b4b6-aa05191956f2; addevent_track_cookie=fa8ba09f-6362-4d29-d81a-e34880c77a5f; _li_dcdm_c=.getneuropure.com; _lc2_fpi=9cffd4819687--01gps4wd8vjbjgrcxrx9sszfk9; _uetsid=228ccc70945711ed901609aa0f9b878b; _uetvid=228ce7a0945711ed9043a3aa687a9a4f; _clck=fzkdq6|1|f89|0; outbrain_cid_fetch=true; _clsk=shwtyi|1673733748899|1|1|b.clarity.ms/collect; is_eu=false; ix9x1gefh3ogclk9=true; 11311728_viewed_27=9; cto_bundle=B0FbZl9weFE4cVZEMVBQVXEyM3J3Q1kydVJ0VkxKNmRQbiUyQlZUY09VUzlNZG5CWTVYSTVmZFZ4bkJ6VTVJMFo2VGZobVRkUGZXU285dFVadDZud1NIJTJCdzBSR2tINXBpa3phTmQxc3ZEVHlrdlpNZndFaUdQcFV3TmJ5V1FmUEthdiUyQjJYRFluUXhOVGpMS2RrZ0FSRXJGaldEUVElM0QlM0Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 14 Jan 2023 22:02:33 GMT
access-control-allow-origin: https://getneuropure.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7899a819cefcb51b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=getneuropure.com&sn=FirefoxSyncframe&so=0&topUrl=getneuropure.com&info=Abyyll80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRjlYMUJVNTluT1UydEJXWVZiaUM5OQ&idsd=567194643,1127229295&cw=1&lsw=1
200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=getneuropure.com&sn=FirefoxSyncframe&so=0&topUrl=getneuropure.com&info=Abyyll80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRjlYMUJVNTluT1UydEJXWVZiaUM5OQ&idsd=567194643,1127229295&cw=1&lsw=1
IP
GET /sid/json?origin=onetag&domain=getneuropure.com&sn=FirefoxSyncframe&so=0&topUrl=getneuropure.com&info=Abyyll80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRjlYMUJVNTluT1UydEJXWVZiaUM5OQ&idsd=567194643,1127229295&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=getneuropure.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1400222
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.paypal.com/targeting/graphql
200 OK 0 B URL HTTP/2 www.paypal.com/targeting/graphql
IP
POST /targeting/graphql HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypalobjects.com/
Content-Type: application/json
Origin: https://www.paypalobjects.com
Content-Length: 318
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.paypalobjects.com
access-control-expose-headers: Paypal-Debug-Id
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; img-src 'self' https:; script-src 'nonce-tq5DW4oLo72s2tED/hceV28og50/HC5yxa9ybHe8JuJzvK8r' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' ; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com;
content-type: application/json; charset=utf-8
etag: W/W/"1be-Xbbxgbd0mMyeHtrwIkCJw3qAfDU"
paypal-debug-id: f960060ac5725
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Sun, 15 Jan 2023 06:48:24 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sun, 14 Jan 2024 22:02:28 GMT; Secure
x-pp-s=eyJ0IjoiMTY3MzczMzc0ODE1NiIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=targetingnodeweb; Domain=.paypal.com; Path=/; Expires=Tue, 17 Jan 2023 22:02:28 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3AiYCglZS-pKfnsvTh5TlgcKXTJSI-OA_B.%2F9ILnAQgXR%2Bha2Pm3kY2nPIq5GLdOPaVhamhMaQOgfo; Path=/; HttpOnly; Secure
l7_az=dcg13.slc; Path=/; Domain=paypal.com; Expires=Sat, 14 Jan 2023 22:32:28 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1768428147%26vteXpYrS%3D1673735547%26vr%3Db24e34f51850a1f1a72828f4ffdb2518%26vt%3Db24e34f51850a1f1a72828f4ffdb2517%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Tue, 13 Jan 2026 22:02:28 GMT; HttpOnly; Secure
ts_c=vr%3Db24e34f51850a1f1a72828f4ffdb2518%26vt%3Db24e34f51850a1f1a72828f4ffdb2517; Path=/; Domain=paypal.com; Expires=Tue, 13 Jan 2026 22:02:28 GMT; Secure
traceparent: 00-0000000000000000000f960060ac5725-6f66284cafafea13-01
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Sat, 14 Jan 2023 22:02:28 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220099-HHN, cache-bma1647-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1673733748.867404,VS0,VE389
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
www.clarity.ms/tag/8kie2pvajy?ref=gtm2
200 OK 0 B URL HTTP/2 www.clarity.ms/tag/8kie2pvajy?ref=gtm2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/8kie2pvajy?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=119f6f3f8e4843ef91cb58ff3da736cd.20230114.20240114; expires=Sun, 14 Jan 2024 22:02:27 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-cache: CONFIG_NOCACHE
x-azure-ref: 0cybDYwAAAACyNLOQTfKuQbid/SJ4WiQBQ1BIMzBFREdFMDQxNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
getneuropure.com/assets/lander.css
200 OK 0 B URL HTTP/2 getneuropure.com/assets/lander.css
IP
GET /assets/lander.css HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: text/css
cf-ray: 7899a7ebb9c0b51b-OSL
access-control-allow-origin: *
age: 815
cache-control: public, max-age=1200
etag: W/"63bc4244-6a514"
expires: Sat, 14 Jan 2023 22:22:26 GMT
last-modified: Mon, 09 Jan 2023 16:35:16 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=getneuropure.com&origin=onetag
200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=getneuropure.com&origin=onetag
IP
GET /syncframe?topUrl=getneuropure.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=34c402fa-5ea8-464d-8e63-1d06c063dfc5; expires=Thu, 08 Feb 2024 22:02:27 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 566889
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 100249
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=hhWayF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRlhEcG9YJTJGcXNDTkZuRDhSRGNuWnps
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Abyyll80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFWTWE1WWZzYW81UkdmMVJZdlJKZyUyRjlYMUJVNTluT1UydEJXWVZiaUM5OQ; expires=Thu, 08 Feb 2024 22:02:28 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 367067
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
getneuropure.com/opt-out-np
302 Found 0 B URL HTTP/2 getneuropure.com/opt-out-np
IP
GET /opt-out-np HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bzdyuso.health-carereform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: text/html; charset=utf-8
location: https://getneuropure.com/opt-out-np-1
cf-ray: 7899a7e84db7b51b-OSL
access-control-allow-origin: *
cache-control: no-cache
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: EXPIRED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 302 Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 6f569e78f7ce8806409215f9fc95e4ac
x-runtime: 0.094486
set-cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3; path=/; expires=Sat, 14-Jan-23 22:32:26 GMT; domain=.getneuropure.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
getneuropure.com/assets/lander.js
200 OK 0 B URL HTTP/2 getneuropure.com/assets/lander.js
IP
GET /assets/lander.js HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: application/x-javascript
cf-ray: 7899a7ebd9d9b51b-OSL
access-control-allow-origin: *
age: 815
cache-control: public, max-age=1200
etag: W/"63bc4289-2391a3"
expires: Sat, 14 Jan 2023 22:22:26 GMT
last-modified: Mon, 09 Jan 2023 16:36:25 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7899a7ec2e8ffab8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.clickfunnels.com/mailcheck.min.js
200 OK 0 B URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: application/x-javascript
cf-ray: 7899a7ec3dc7b515-OSL
access-control-allow-origin: *
age: 5954
etag: W/"63bc4244-a8d"
last-modified: Mon, 09 Jan 2023 16:35:16 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=y0SYW6T50VQjLecZhs6afqoaKAks0E3qdhQJYzs2Uro-1673733746-0-ARsbEVr5+EdZQdRmUXsDkJ+F0MnrxB0E7xX0ZG/yOvhjBx3OalGeBpbsUm7AHMPGCw9P7hg3OwoEDQ/NZMIcSH2Opcx5SJUQjX9GOnIJsZJ+; path=/; expires=Sat, 14-Jan-23 22:32:26 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniquePageviewsCreatedSummary&nonce=6ecad960-c0c2-419c-969c-987e9d1d76cb&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniquePageviewsCreatedSummary&nonce=6ecad960-c0c2-419c-969c-987e9d1d76cb&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
IP
GET /userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniquePageviewsCreatedSummary&nonce=6ecad960-c0c2-419c-969c-987e9d1d76cb&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: text/html
cf-ray: 7899a7f09a9eb515-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: d453aa9a63c8928c284705421c70037a
x-runtime: 0.037083
set-cookie: __cf_bm=geMJPWUARF0ytG3.pRoN31EIXQ_fqckLgWufyaDj388-1673733747-0-AXG+StRXbDxfrK7x/aT/yorrhdSpNyBvps7EAXvK1iIeCuibWF9XhQOaJsHC0AVuRQWdcK/k34cWKAVcSqY778fg1iDKE/US2HQRP8L5oepn; path=/; expires=Sat, 14-Jan-23 22:32:27 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/images/closemodal.png
301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/images/closemodal.png
IP
GET /images/closemodal.png HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 14 Jan 2023 22:02:27 GMT
location: https://classic.clickfunnels.com/images/closemodal.png
cache-control: max-age=3600
expires: Sat, 14 Jan 2023 23:02:27 GMT
set-cookie: __cf_bm=0iBVgh0CnRKB4GQq0t8croC4MQqR4v3bbz48jbyuf.I-1673733747-0-AeBh4r9l7SOfc083sL2coFG990bSS0Su5y12t2dWXqEfkLFOFYCBnnyJ3lZwLZlUptNd4kYgM86yr6DA62iMZRE=; path=/; expires=Sat, 14-Jan-23 22:32:27 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7899a7eef8040b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
getneuropure.com/vendor.js
200 OK 0 B URL HTTP/2 getneuropure.com/vendor.js
IP
GET /vendor.js HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3; _gcl_au=1.1.355072432.1673733747
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: application/javascript
cf-ray: 7899a7f02eddb51b-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 6844caa3611f29b67c2e11e92c19926c
x-runtime: 0.030459
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniqueVisitorsCreatedSummary&nonce=ddd5b590-a22f-474a-9155-51efc7282f27&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniqueVisitorsCreatedSummary&nonce=ddd5b590-a22f-474a-9155-51efc7282f27&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1
IP
GET /userevents/?funnel_id=bHhEWVB4Nm5JUGJiYjR6bzlEYnRmdz09LS1PMUhGYmdHMElrNHc0a1hodVVxSkJBPT0%3D--846254693e0c5c626f70360fdf846f5ad8a4b839&page_id=d2h2SExkcTdpbG1xaHpTV1FUZzl1Zz09LS1aYU00d1FYMTRrZnVlMWtpZWZWQS9nPT0%3D--0c1a9f3cf5e4cc8c9b82430899b43ab0f96f5ddb&funnel_step_id=cmRNOE1McHNURVFzQXMzWjVuNysyUT09LS0wRXZLYWRSd1N2Y2FyYm91TzVleUhnPT0%3D--0cfe3ba528cf3af16772ff1eb55b5708458d019a&user_id=em5wYk43NnhRYTlvZkU0MXdvTFlFQT09LS1ra1NCaHpJZDZhckRsMzdISHpGVGlBPT0%3D--b3cd29e912b259523a5f8796de5bc202917beaa0&account_id=RlNGbnhVeXpuamhUMDRtZi9YQmp2UT09LS1iZU92cXQ3WDhqeUpLMjRkbGE1WHZnPT0%3D--b08ce0dd10c1ff17d5e611f33cd46c5168fe09e9&page_code=NTAxNDM2MDY%3D&mode_id=1&time_zone=Eastern%20Time%20(US%20%26%20Canada)&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1152&type=Userevents::UniqueVisitorsCreatedSummary&nonce=ddd5b590-a22f-474a-9155-51efc7282f27&url=https%3A%2F%2Fgetneuropure.com%2Fopt-out-np-1 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getneuropure.com
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 14 Jan 2023 22:02:27 GMT
content-type: text/html
cf-ray: 7899a7f09aa2b515-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 3a1862351f255442bb6a10a4ae0f8899
x-runtime: 0.033626
set-cookie: __cf_bm=BaW8mzNxQ..9_ORbNSCs8WYhUneearbTcGcvb3BuQMw-1673733747-0-AXM5GneMA2b2hYq+tE2ZtZfXSPyc9eUhlRKfyPRrAD8/xzldiyZWtJq5h8pSHkrdZVfhYFtZOdZvOme1bUD5Y6vXWi3bQ1xik3RuYWcmRgD7; path=/; expires=Sat, 14-Jan-23 22:32:27 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.7.1/clarity.js
200 OK 0 B URL HTTP/2 www.clarity.ms/eus2/s/0.7.1/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d9162aa06b059e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0TgbCYwAAAAA20j9a1t17QpEp+WYUv8vxQU1TMDRFREdFMTgxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0dCbDYwAAAABzo3IzLIt3Q5IcJeW+ej43Q1BIMzBFREdFMDQxNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sat, 14 Jan 2023 22:02:27 GMT
X-Firefox-Spdy: h2
getneuropure.com/assets/userevents/application.js
200 OK 0 B URL HTTP/2 getneuropure.com/assets/userevents/application.js
IP
GET /assets/userevents/application.js HTTP/1.1
Host: getneuropure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getneuropure.com/opt-out-np-1
Cookie: __cf_bm=Nk3M9rILUoQg3S44Kn_uUKMJmI1EGPS1PYagS1uxUO0-1673733746-0-AaJxiWq8SinLTp7NsMPmhPqVsBy6gb1lNORrU/MfTgYa8olfvmJeuJPOu5FDBjK4EuZC6/5HXW57FoG5BPeQo1RW3pT+q5NmjI9puAQX1PP3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 14 Jan 2023 22:02:26 GMT
content-type: application/x-javascript
cf-ray: 7899a7ebc9cfb51b-OSL
access-control-allow-origin: *
age: 843
cache-control: public, max-age=1200
etag: W/"63bc4244-147c"
expires: Sat, 14 Jan 2023 22:22:26 GMT
last-modified: Mon, 09 Jan 2023 16:35:16 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
162.253.215.194
95.101.11.115
104.16.13.194
178.250.2.146
93.184.220.29