r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3955
Expires: Thu, 02 Feb 2023 21:10:05 GMT
Date: Thu, 02 Feb 2023 20:04:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Fri, 03 Feb 2023 00:44:23 GMT
Date: Thu, 02 Feb 2023 20:04:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19836
Expires: Fri, 03 Feb 2023 01:34:46 GMT
Date: Thu, 02 Feb 2023 20:04:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 19:36:07 GMT
content-type: application/json
age: 1683
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ty8MdKSplhtRYu6uAqRfnV3Ykx4wr6sDkmO0aMWnFkd6hmzM7Vxqo44giBggCu+Gr8e/lDPJPkw=
x-amz-request-id: FB64932EXQX2Y30J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 19:52:06 GMT
age: 725
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.cureus.com/users/26093-brent-thoma
172.67.8.5301 Moved Permanently 0 B URL HTTP/1.1 www.cureus.com/users/26093-brent-thoma
IP 172.67.8.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /users/26093-brent-thoma HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 20:04:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.cureus.com/users/26093-brent-thoma
Vary: Origin,Accept-Encoding
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793588cf5a9ffac0-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:04:11 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 19:07:19 GMT
age: 3412
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4995
Expires: Thu, 02 Feb 2023 21:27:26 GMT
Date: Thu, 02 Feb 2023 20:04:11 GMT
Connection: keep-alive
push.services.mozilla.com/
54.185.236.64101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.185.236.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ARWVuNXEYLK9FNMBch9Wsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D1iW51Pg6Nk+Qgh359nXukUL570=
assets.cureus.com/uploads/figure/file/539301/content_card_eaac03b0a1ce11edaa536b3497cad4fc-Figure-1.png
172.67.8.5200 OK 67 kB URL HTTP/2 assets.cureus.com/uploads/figure/file/539301/content_card_eaac03b0a1ce11edaa536b3497cad4fc-Figure-1.png
IP 172.67.8.5:0
File type PNG image data, 432 x 258, 8-bit/color RGB, non-interlaced\012- data
Hash 8200bd2210cd8d5093a3fcd8a0a9ea47
9d6a3f62975144ce4ead54ea15f3f782d18b1a34
63cd508c3bad0a981f19a88e183e6a521f3773f2a1578c5cba75e18bc6b665a3
GET /uploads/figure/file/539301/content_card_eaac03b0a1ce11edaa536b3497cad4fc-Figure-1.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 67349
age: 22095
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=70647
etag: "b72b359a42d8414803d41162ca8fc4d3"
last-modified: Wed, 01 Feb 2023 01:23:16 GMT
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-id: eH8xmWxNft6Cm3TKARh3Pg8XdgzjEGoMwdD0Y1vHYO_tGoYUU3ChBg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d82cb2b529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/figure/file/512033/content_card_56203860997c11ed93c18f932beed8ba-Figure-1.png
172.67.8.5200 OK 22 kB URL HTTP/2 assets.cureus.com/uploads/figure/file/512033/content_card_56203860997c11ed93c18f932beed8ba-Figure-1.png
IP 172.67.8.5:0
File type PNG image data, 211 x 258, 8-bit/color RGB, non-interlaced\012- data
Hash 56441d669ecc95569599c47bf3505629
1e8dc6e11a05417b0287556fb45ef5379de17db9
8c57062281bdb55ffd9031fbc6bad797fca23721f4ef1c1b35feecb6f5980b03
GET /uploads/figure/file/512033/content_card_56203860997c11ed93c18f932beed8ba-Figure-1.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 21881
age: 22095
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25808
etag: "c10fe972fa7743a38f1c83f75a6b2f55"
last-modified: Sat, 21 Jan 2023 11:12:36 GMT
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-id: 2nDbdyYcLa6SdL8zuT4QXQYt7Y5yymipVPmiPsxpbJc0PaAZea_b-A==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d82cb7b529-OSL
X-Firefox-Spdy: h2
servedbydoceree.doceree.com/script/render-header.js
54.230.111.54200 OK 4.0 kB URL HTTP/2 servedbydoceree.doceree.com/script/render-header.js
IP 54.230.111.54:0
Hash 48c83dbaf56cb6cc9b7a854fc02f5c78
ea977ab0e57bab7a4139218d044ba13a4234e762
ecf4fe8111571dbc2e91ffbc15b61cee8f438e28128d6655711d150edf44be45
GET /script/render-header.js HTTP/1.1
Host: servedbydoceree.doceree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 3981
last-modified: Thu, 30 Dec 2021 07:54:13 GMT
x-amz-version-id: uL4UcUJEoNxrd5ERNYqZtlEV5U5qTx5y
accept-ranges: bytes
server: AmazonS3
date: Thu, 02 Feb 2023 07:48:03 GMT
etag: "48c83dbaf56cb6cc9b7a854fc02f5c78"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uBONpB6eWB7lny9ILHG4xjEcukhdEQQ-VHQBO-_q9UotV3bbV3_J5g==
age: 44170
X-Firefox-Spdy: h2
assets.cureus.com/packs/media/images/close_x-d4cc40a348b79c3ba8ee78bbb6f90b1e.png
172.67.8.5200 OK 151 B URL HTTP/2 assets.cureus.com/packs/media/images/close_x-d4cc40a348b79c3ba8ee78bbb6f90b1e.png
IP 172.67.8.5:0
File type PNG image data, 15 x 15, 8-bit gray+alpha, non-interlaced\012- data
Hash ee5735ee7a4488fe7377e3978b1e39bc
f58676b4110c247b89b852b13c9b6e573d6a1e68
886e435a0919c550d9c18e60f50f4ab3aaecb1c3c6de6dc35846c7b4692fae67
GET /packs/media/images/close_x-d4cc40a348b79c3ba8ee78bbb6f90b1e.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 151
cf-bgj: imgq:100,h2pri
cf-polished: origSize=280
etag: "63d93b1e-118"
last-modified: Tue, 31 Jan 2023 16:00:30 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oyKDNRuRb6GY7XiHuKz7jEUWUvtaqQQAWNcTpxbNred3t0Vg8FVEnA==
age: 3474
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 793588d84cdeb529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/packs/media/images/megamenu_about2x-9cde6bea1e9406bf32ff5c1ae8745ae8.png
172.67.8.5200 OK 53 kB URL HTTP/2 assets.cureus.com/packs/media/images/megamenu_about2x-9cde6bea1e9406bf32ff5c1ae8745ae8.png
IP 172.67.8.5:0
File type JPEG image data, progressive, precision 8, 352x420, components 3\012- data
Hash 9a19d9e457e120ef49721a9a8804fd5c
f8ffd44f6550fac65794cb41a3b08a17c2c935fa
647ad95b4944d70ac8bfadd7c737b005937141a66f718e11d8d0866d0ea5076b
GET /packs/media/images/megamenu_about2x-9cde6bea1e9406bf32ff5c1ae8745ae8.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 53096
age: 3474
cf-bgj: imgq:100,h2pri
cf-polished: origSize=55069
etag: "63d93d09-d71d"
last-modified: Tue, 31 Jan 2023 16:08:41 GMT
vary: Accept-Encoding
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-id: uhs-JtTFOPGef0kOFcR1RvG2MxOGSFCPAJzK-3slH817n-rPivuS3Q==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 793588d83ccbb529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/figure/file/532534/content_card_971c22908df911eda167551a313eb045-Figure1.png
172.67.8.5200 OK 188 kB URL HTTP/2 assets.cureus.com/uploads/figure/file/532534/content_card_971c22908df911eda167551a313eb045-Figure1.png
IP 172.67.8.5:0
File type PNG image data, 451 x 258, 8-bit/color RGB, non-interlaced\012- data
Size 188 kB (188057 bytes)
Hash 9602394cd8a2fda641285ebfbb234d1a
a51b1a8dd2a862daa839cd60a6bda4ebc3099601
61a0413ec43a0c75af3376bb2e29e7c2ef765dc09d098ee3da5110e673b3371b
GET /uploads/figure/file/532534/content_card_971c22908df911eda167551a313eb045-Figure1.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 188057
age: 183965
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=189310
etag: "0d73f5c37657d82e7f058507bb3a4fa5"
last-modified: Fri, 06 Jan 2023 19:38:34 GMT
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-id: SgL-8HumwFH6rp7X6msuxu8tsEITqCONq0eZSKhVUGcmOYi_O4hmFg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d82cb8b529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/25977/profile_1490471139-DSC_8282.jpg
172.67.8.5200 OK 37 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/25977/profile_1490471139-DSC_8282.jpg
IP 172.67.8.5:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13], baseline, precision 8, 150x150, components 3\012- data
Hash 402fb5efc213b4a3833b4e2f39455dc1
ef15bebee170d6f70d56fd9ff1537fdce9bed821
ffb81061af7a4a43fe7d27ff6830494e16de65d72c341e53ead7f85862554656
GET /uploads/user_profile/avatar/25977/profile_1490471139-DSC_8282.jpg HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/jpeg
content-length: 36962
last-modified: Sat, 25 Mar 2017 20:02:50 GMT
etag: "402fb5efc213b4a3833b4e2f39455dc1"
cache-control: max-age=315576000
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZzxEy4tc1LVPTROL3wnRyfxaICLJIeVjqGeYh8uEcUTMZ8K2Xuixrw==
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d84cddb529-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ziffstatic.com/zdconsentlite.js
23.36.77.224200 OK 565 B URL HTTP/2 cdn.ziffstatic.com/zdconsentlite.js
IP 23.36.77.224:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (501)
Hash cd31e7984a47f9a90306a874c5b0ef7a
aee11507f196c8ee22ba20bd67f09540335366a7
aac44b8ccc885079352a3c9373e047d1332652e365d649e59dc31f72b0061653
GET /zdconsentlite.js HTTP/1.1
Host: cdn.ziffstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
expires: Fri, 03 Feb 2023 20:04:12 GMT
date: Thu, 02 Feb 2023 20:04:12 GMT
content-length: 565
X-Firefox-Spdy: h2
clf1.medpagetoday.com/assets/scripts/js/hcp/uc.js
23.36.77.224200 OK 3.1 kB URL HTTP/2 clf1.medpagetoday.com/assets/scripts/js/hcp/uc.js
IP 23.36.77.224:0
ASN #20940 Akamai International B.V.
File type C source, ASCII text, with very long lines (9048), with no line terminators
Hash 0bd5ca6707381f069f10d46c1383b32e
e70e068921ca48bf4d6a490b2c4fb107182ba5f9
1616deee549c1d42f38be92c65b57ba51ee29ae259f98b6dc0b08570c5e17a4f
GET /assets/scripts/js/hcp/uc.js HTTP/1.1
Host: clf1.medpagetoday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Cw67nMORiY2u0cK8uXmdvj693UVCqocIZwKKTDDTn6aEam68+AUeJybVQoSTxhi2oHWNaDU6JMk=
x-amz-request-id: 20RSSWGSEP4C9E08
x-amz-replication-status: COMPLETED
last-modified: Thu, 19 Jan 2023 18:02:14 GMT
x-amz-version-id: gmFAZP_051AsihaK1lbM766Wv1PwrDoC
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Thu, 09 Feb 2023 20:04:12 GMT
date: Thu, 02 Feb 2023 20:04:12 GMT
content-length: 3076
X-Firefox-Spdy: h2
assets.cureus.com/packs/application-bf62a41d-1.css
172.67.8.5200 OK 39 kB URL HTTP/2 assets.cureus.com/packs/application-bf62a41d-1.css
IP 172.67.8.5:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 42a6c800b3e36bdda6e744a63df120e7
fe5e3da7173a42ff780acd13239466c932de1b85
ce6828c8f8a3133f6da5bd57d8347570ef12206f3b1d32381c5e1775df3a7674
GET /packs/application-bf62a41d-1.css HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: text/css
age: 3474
cf-bgj: minify
cf-polished: origSize=183169
etag: W/"63dbd45a-2cb81"
last-modified: Thu, 02 Feb 2023 15:18:50 GMT
vary: Accept-Encoding
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-id: ynaEsqDYlRsrlEhKluSj9Dhwfn_m04pv3RB9-4Q4n19cj35r49kw2g==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81caab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.cureus.com/cureus-sn-new.png
172.67.8.5200 OK 7.0 kB URL HTTP/2 public.cureus.com/cureus-sn-new.png
IP 172.67.8.5:0
File type PNG image data, 1128 x 112, 8-bit colormap, non-interlaced\012- data
Hash 4654a32ead6a69362c83df59b06ff606
18978630fe6060fb9fb5858d35b211625639a8aa
d7df23b90826783703507ce9219d88b065fe9a84e584ac98d2aca1e0cd032da9
GET /cureus-sn-new.png HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 7019
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15968
etag: "5d8512da7164acead0f56b564651b204"
last-modified: Tue, 06 Dec 2022 11:03:31 GMT
x-amz-id-2: Y7E23mV0MmujQ6y2QEtqg+C1KsfnBgR19cUIZ0NsOktho1cvX33KbzrcJUtGLisDVCWuMX47d+w=
x-amz-request-id: MHP5MJ4J8HZ5RP4N
x-amz-version-id: null
cf-cache-status: HIT
age: 3474
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d92e49b529-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5L5TP48
142.250.74.40200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5L5TP48
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash 9dc5e14f2bd2d0d7c30305f3157aea6c
33e6d0f085cac7e4b243d501d152fa96436fe1f5
2855bc43000dd53cf758573b8059eb559ced19b9b46831e637ce3dda97447e26
GET /gtm.js?id=GTM-5L5TP48 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:04:12 GMT
expires: Thu, 02 Feb 2023 20:04:12 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 19:29:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38037
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-40378117-1
142.250.74.40200 OK 60 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-40378117-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (3991)
Hash d29760652942dd2419a085a67f8a7a48
0c9cc6414fc1848f6b1738dcc218749e4a8f7b22
fde50c5692b49b6147bf22631ebf0a439f93f360ec68558dbb5d47df79e93707
GET /gtag/js?id=UA-40378117-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:04:12 GMT
expires: Thu, 02 Feb 2023 20:04:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 60259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 439a764d58ec41baaa6898dd2d0d4adc
c087906efd0e4aea18c81b6cf981c065b115c91a
68e4d3b3b9a47d2df9cdb7645aa5571ca986a0a1e6f4f15c4ebae2c2e09e1720
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:12 GMT
Etag: "63db55d2-1d7"
Server: ECS (dcb/7F5C)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: acd5bbRJ96z40Vxnr-KkHXmK1_9WRWXH3RvILCtlGOj8LQvb4gR2VA==
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 3a6dbf1da21fa0b98225e1ec77fdb29f
72f5ec211e0f627164d6ea2a4312ddacd4996d27
46b08f37d69390bfb6dd4d0b7d08dd93ec870e6457c2020b927d7050c4082576
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:12 GMT
Last-Modified: Thu, 02 Feb 2023 18:53:15 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: P0kjjY0vJjD3mVYuIA1pE1LNMPHazsU3YPf_yyqwpY44SIOZp8m4uw==
Age: 4257
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 439a764d58ec41baaa6898dd2d0d4adc
c087906efd0e4aea18c81b6cf981c065b115c91a
68e4d3b3b9a47d2df9cdb7645aa5571ca986a0a1e6f4f15c4ebae2c2e09e1720
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129729
Date: Thu, 02 Feb 2023 20:04:12 GMT
Etag: "63db55d2-1d7"
Expires: Sat, 04 Feb 2023 08:06:21 GMT
Last-Modified: Thu, 02 Feb 2023 06:18:58 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7jA1zXwfphDWjmrB9NFdW8iOuViAGpJbCleO5bhw3TIagKiIfdDOBQ==
Age: 6443
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1194b30faa1e40ce0f3930f4e99d3a63
197db6c4c0ecfa02d6105774cf54f9cca3f41a2a
dd5259bddf77ace926b40c464b5b0c2d3051b6c40ff7dbbb27ceb95e71bc92a2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119545
Date: Thu, 02 Feb 2023 20:04:12 GMT
Etag: "63db3b22-1d7"
Expires: Sat, 04 Feb 2023 05:16:37 GMT
Last-Modified: Thu, 02 Feb 2023 04:25:06 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5SJ08zShy--v9gcHtj4yr8TsYLhdxjRIYgv-mUyYd4no52b1Un8jhQ==
Age: 3091
bidder.doceree.com/v1/doceree-init
15.188.142.51200 OK 2 B URL HTTP/1.1 bidder.doceree.com/v1/doceree-init
IP 15.188.142.51:0
File type ASCII text, with no line terminators
Hash 9d4568c009d203ab10e33ea9953a0264
dd29ecf524b030a65261e3059c48ab9e1ecb2585
12ae32cb1ec02d01eda3581b127c1fee3b0dc53572ed6baf239721a03d82e126
OPTIONS /v1/doceree-init HTTP/1.1
Host: bidder.doceree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Cache-Control, Pragma, Origin, Authorization, Content-Type, X-Requested-With,Accept
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin: https://www.cureus.com
Cache-Control: no-cache
Content-Type: text/plain; charset=utf-8
Date: Thu, 02 Feb 2023 20:04:12 GMT
Vary: Accept-Encoding
Content-Length: 2
Connection: keep-alive
bidder.doceree.com/v1/doceree-init
15.188.142.51200 OK 70 B URL HTTP/1.1 bidder.doceree.com/v1/doceree-init
IP 15.188.142.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1923b897fab704ea56083fecd6c16b4d
ecf1d3b8702001e2d6228f93f494000bfb738d8f
395d7ad1bd78f43e1fa01249a37f28d917003fed77c34acc8c325024416f08ff
GET /v1/doceree-init HTTP/1.1
Host: bidder.doceree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-type: application/json; charset=utf-8
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://www.cureus.com
Content-Type: application/json
Date: Thu, 02 Feb 2023 20:04:12 GMT
Set-Cookie: _docereeInit=eyJwbGF0Zm9ybVVpZCI6Ijc5ZTE3MTQzLTA1NmItNGJhMS05N2JhLWQxYTE2NjEwM2M3YyIsInZlcnNpb24iOiIwLjEifQ==; Path=/; Domain=doceree.com; Max-Age=31536000; Secure; SameSite=None
Vary: Accept-Encoding
Content-Length: 70
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 209f141a2ec90a71cf3cc824888fe4f1
9188df120c78e3a5c2bf37bf5fb9a446a6a57260
dc9e6179f2ec4884963f31e09ee50ddc778e1b648c16492dc072c2227e2877a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1734
Cache-Control: max-age=126122
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:12 GMT
Etag: "63db5a20-118"
Expires: Sat, 04 Feb 2023 07:06:14 GMT
Last-Modified: Thu, 02 Feb 2023 06:37:20 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
public.cureus.com/mpt-logo.png
172.67.8.5200 OK 8.0 kB URL HTTP/2 public.cureus.com/mpt-logo.png
IP 172.67.8.5:0
File type PNG image data, 260 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a74cf5eeee2751a1fddf21720453bed
3d2f6ff6cd24b5d401fed3457e8aacd312ba805d
b1059f8824d7a89f083cc036026875f2a9b7704fb6249141d75101ec9aaf9dd7
GET /mpt-logo.png HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/png
content-length: 7966
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10362
etag: "d628491a6949066db9a6b58c12e5bffc"
last-modified: Tue, 20 Oct 2020 20:14:31 GMT
x-amz-id-2: DVyPxwZGYB9T8+r8LeF2dk5ig1Dmjc96CjhP87mE/Q3akYWZNGAZNasJJjjeQSbuTro2vA5nAXA=
x-amz-request-id: 5BWKV69MXSQXKDHA
x-amz-version-id: null
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d92e47b529-OSL
X-Firefox-Spdy: h2
public.cureus.com/orcid_16x16.gif
172.67.8.5200 OK 1.2 kB URL HTTP/2 public.cureus.com/orcid_16x16.gif
IP 172.67.8.5:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash d95a6a4b37b60cea1fa8bab7432f9163
14b009c81e87cdfa60f2bfc3e7552d77bed7f6ee
ba20c9e31b58b9069a074fabb4ed785b1c66e73b4b5f8f83a53d116250f78f70
GET /orcid_16x16.gif HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: image/gif
content-length: 1221
x-amz-id-2: kBr/a3DRYmvGLaYwhi4urLdDz+SGh+eRJ9mi2SEyEHuUcvopG78k65vsU9nVtmD0t3HbC9YqFSY=
x-amz-request-id: YR11WGYVG064QH25
last-modified: Tue, 20 Oct 2020 20:14:31 GMT
etag: "d95a6a4b37b60cea1fa8bab7432f9163"
x-amz-version-id: null
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d92e48b529-OSL
X-Firefox-Spdy: h2
www.medtargetsystem.com/javascript/beacon.js?1675368279676
34.230.237.180200 OK 56 kB URL HTTP/2 www.medtargetsystem.com/javascript/beacon.js?1675368279676
IP 34.230.237.180:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 4544e9689bbaf0d5d2b244a010195563
eb093b5439131ff2faaee769c2fc57264a93607d
f6ba7fc5edd853ddb1bb0de82005b704e5a60d2191205337b1ef9899c9f6da83
GET /javascript/beacon.js?1675368279676 HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
content-length: 56049
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Thu, 17 Nov 2022 16:22:29 GMT
etag: "37f44-5edacfed3bb40-gzip"
accept-ranges: bytes
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18137
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18137
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18137
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18137
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18137
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
assets.cureus.com/packs/application-bf62a41d-4.css
172.67.8.5200 OK 42 kB URL HTTP/2 assets.cureus.com/packs/application-bf62a41d-4.css
IP 172.67.8.5:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 268992b10900989e68d3284b91552189
9d222293e109692bd821929e7e0830be01f2121b
b717e4e152674aedd72651c486e3cfc9f01e7f92e85032b920be140a0fe63669
GET /packs/application-bf62a41d-4.css HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: text/css
age: 3474
cf-bgj: minify
cf-polished: origSize=259811
etag: W/"63dbd63e-3f6e3"
last-modified: Thu, 02 Feb 2023 15:26:54 GMT
vary: Accept-Encoding
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-id: dA1evYzxU6mRgfd4edEmNrHaVCwobik9VWG16VPDXMeCyWIIM-yYAA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81ca7b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 77942
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 78726
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 45336
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 78318
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 79516
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
public.cureus.com/fonts/proximanova-regular-webfont.woff
172.67.8.5200 OK 24 kB URL HTTP/2 public.cureus.com/fonts/proximanova-regular-webfont.woff
IP 172.67.8.5:0
File type Web Open Font Format, TrueType, length 23956, version 1.0\012- data
Hash 1c42248bb3d3d1c0779d9b8bd80d0685
aff6d3b672f1252f0a2e18c070ba511bfe779358
70679318d3c92207c1a39df26be0f2f3403f1f432869632c5a99d00ffb05d7f5
GET /fonts/proximanova-regular-webfont.woff HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://assets.cureus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: binary/octet-stream
content-length: 23956
x-amz-id-2: KmW/KAcFSJQ0Cm5I5BypHAgui0E8LdBNKVkJw/zsBvDx1ck+Fy7O/tKFlxMz9H/edB2iYvWc25k=
x-amz-request-id: 5NHSK060ZW6MR06V
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 20 Oct 2020 22:31:22 GMT
etag: "1c42248bb3d3d1c0779d9b8bd80d0685"
x-amz-version-id: null
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 793588db69b4b529-OSL
X-Firefox-Spdy: h2
www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
34.230.237.180200 OK 311 B URL HTTP/2 www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
IP 34.230.237.180:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (457), with no line terminators
Hash f81bf2e9662407e6585dd90f65d7b597
c359017c0cdffe719388ffbc67e422b43e0f0ef7
20ae439c876991c7f267201090be961c5bf304652af3b02003024b3b3c7fafd1
GET /beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1 HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/html; charset=UTF-8
content-length: 311
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto,Accept-Encoding
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb; path=/; domain=www.medtargetsystem.com; HttpOnly; SameSite=None; Secure
s-dmd-id-x=read; path=/; domain=www.medtargetsystem.com; SameSite=None; Secure
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
content-encoding: gzip
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/157577/2378//pwt.js
2.18.172.200200 OK 77 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/157577/2378//pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7a2adda7125d7a51fe8d28683a84910
6978851206abcd5d2557c8ccccdb518034db53c2
f0c5ab3d98382d370b1327ac7c09e87850106805193516c25411dfdd0c9903f9
GET /AdServer/js/pwt/157577/2378//pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:50:05 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 77322
cache-control: max-age=89524
expires: Fri, 03 Feb 2023 20:56:17 GMT
date: Thu, 02 Feb 2023 20:04:13 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
geo.medpagetoday.com/info.js
23.36.77.224200 OK 80 B URL HTTP/2 geo.medpagetoday.com/info.js
IP 23.36.77.224:0
ASN #20940 Akamai International B.V.
Hash 4f34ace47cba46f7023d220f8e916918
2f0a6567ad13281eb41b19db1b947acca8903e2c
213a8e5fbed2716dbc4bd25acda3b91431afadc9843e2d87e61232b65e57c52d
GET /info.js HTTP/1.1
Host: geo.medpagetoday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 80
expires: Thu, 02 Feb 2023 20:04:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 20:04:13 GMT
set-cookie: geoCC=NO; expires=Fri, 03-Feb-2023 20:04:13 GMT; path=/; domain=.medpagetoday.com
geoEU=0; expires=Fri, 03-Feb-2023 20:04:13 GMT; path=/; domain=.medpagetoday.com
_USERCOUNTRY6=NO; expires=Thu, 09-Feb-2023 20:04:13 GMT; path=/; domain=.medpagetoday.com
content-type: application/javascript
X-Firefox-Spdy: h2
public.cureus.com/fonts/proximanova-bold-webfont.woff
172.67.8.5200 OK 24 kB URL HTTP/2 public.cureus.com/fonts/proximanova-bold-webfont.woff
IP 172.67.8.5:0
File type Web Open Font Format, TrueType, length 24176, version 1.0\012- data
Hash e100657613ed00d9d41b0dd6ec7a79a8
fd018372468861b940db8c5300151e620053d0d9
ff9a7338b6d3ed7251cc2610ca4d8d0fc434a3ef1b74a7fafa1001e56482a4e1
GET /fonts/proximanova-bold-webfont.woff HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://assets.cureus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: binary/octet-stream
content-length: 24176
x-amz-id-2: zb9l+TY30xT2NqHyKx+mqcZYNaOiQv/BPoRz/+RYSXs4mEyFFu+PVFiqzh31uMzTC+BhAt/71n0=
x-amz-request-id: 34X2J5WMN6ZX744G
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 20 Oct 2020 22:31:22 GMT
etag: "e100657613ed00d9d41b0dd6ec7a79a8"
x-amz-version-id: null
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 793588dc4b39b529-OSL
X-Firefox-Spdy: h2
www.medtargetsystem.com/analytics/collect.gif?e=1&aid=&vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&sid=041cf61c-46b9-4557-ba14-e8467294d22f&vh=1&vt=1675368280&pt=1675368280&u=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&r=&t=Cureus&p=2519.00&pm=&ab=&ak=226-9834-9D483CFC
34.230.237.180204 No Content 0 B URL HTTP/2 www.medtargetsystem.com/analytics/collect.gif?e=1&aid=&vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&sid=041cf61c-46b9-4557-ba14-e8467294d22f&vh=1&vt=1675368280&pt=1675368280&u=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&r=&t=Cureus&p=2519.00&pm=&ab=&ak=226-9834-9D483CFC
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /analytics/collect.gif?e=1&aid=&vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&sid=041cf61c-46b9-4557-ba14-e8467294d22f&vh=1&vt=1675368280&pt=1675368280&u=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&r=&t=Cureus&p=2519.00&pm=&ab=&ak=226-9834-9D483CFC HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb; s-dmd-id-x=read
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 20:04:13 GMT
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
access-control-allow-origin: *
cache-control: max-age=0, no-cache, no-store
expires: 0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
X-Firefox-Spdy: h2
powerad.ai/detect-aau?ch=2
18.211.141.243200 OK 2 B URL HTTP/2 powerad.ai/detect-aau?ch=2
IP 18.211.141.243:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /detect-aau?ch=2 HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
vary: Accept-Encoding
X-Firefox-Spdy: h2
powerad.ai/detect-aau?ch=1
18.211.141.243200 OK 2 B URL HTTP/2 powerad.ai/detect-aau?ch=1
IP 18.211.141.243:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /detect-aau?ch=1 HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.medtargetsystem.com/js/build/iframe/signal.js?30&partners=deepIntent.1.1|lasso.2.2|
34.230.237.180200 OK 29 kB URL HTTP/2 www.medtargetsystem.com/js/build/iframe/signal.js?30&partners=deepIntent.1.1|lasso.2.2|
IP 34.230.237.180:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash ebb71493149a8a70bf7cb8502cb43fd3
2433753aeeb4d79baeb1b08d11593084178624b8
112505efa74ae32d0b403cdb567e4a1925cbf36a62c687cc830e09e96f73a242
GET /js/build/iframe/signal.js?30&partners=deepIntent.1.1|lasso.2.2| HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb; s-dmd-id-x=read
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: application/javascript
content-length: 29417
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Thu, 17 Nov 2022 16:20:52 GMT
etag: "1a0d7-5edacf90ba100-gzip"
accept-ranges: bytes
content-encoding: gzip
X-Firefox-Spdy: h2
www.medtargetsystem.com/js/build/iframe/fp.js?30
34.230.237.180200 OK 20 kB URL HTTP/2 www.medtargetsystem.com/js/build/iframe/fp.js?30
IP 34.230.237.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 428ce6bcb64dd7a4a9bfbf5ae4f4faf5
9890046428157264cf60b9da56d8d1cc66a976d7
ae50b3fe8e4a92890b65b697f1a10b3e41a8b68a47933412602ee92e6af5d64d
GET /js/build/iframe/fp.js?30 HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb; s-dmd-id-x=read
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: application/javascript
content-length: 20393
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Thu, 17 Nov 2022 16:24:47 GMT
etag: "15d65-5edad070d71c0-gzip"
accept-ranges: bytes
content-encoding: gzip
X-Firefox-Spdy: h2
www.cureus.com/users/26093-brent-thoma/similar_profiles
172.67.8.5200 OK 970 B URL HTTP/2 www.cureus.com/users/26093-brent-thoma/similar_profiles
IP 172.67.8.5:0
File type HTML document, ASCII text
Hash 46389c29aaac8d880123bcddd9e39062
2de0f5e0106c1ba2df69507fb7fb84393d8c331e
b67ecc9c30a8a53d3d3ab359d52ea986c79409c433e3a28d94de60902c78e245
GET /users/26093-brent-thoma/similar_profiles HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
X-CSRF-Token: PSBn1ZtBO8JqtKzB+dMKXYcjGjHjBtjntkbBxGfXL1ETQMQYB5sJwjJjLFIzjdtuNPEFidnLUGDALOqeU2+ATg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _sess=041cf61c-46b9-4557-ba14-e8467294d22f.bf03d243-2e1c-40f8-920d-6c3969f62e79.1675368280.1; dmd-vid=bf03d243-2e1c-40f8-920d-6c3969f62e79; dmd-sid=041cf61c-46b9-4557-ba14-e8467294d22f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store
content-security-policy:
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=2; path=/; secure
referrer=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma; path=/; expires=Thu, 02 Feb 2023 20:34:13 GMT; secure
_cureus_session=Tis1RDFXd2ovVWh6WUhOM1lLUUhiTndIcENDaWkzZW5SbXhiL0V6cVZkd1p2R3R0cEF6SGxIUEF4dDAvQnRSMHhZNzYvM1Y3eUJFK1htbXlFc05weFhZWnZXRGlZUTF2RnhVdDRBU0VRa2FxeDMzWUtXQVBWdCtUTzBaTVc4ZUVKR0U3Tmh1THpoQ2JBaU5TZWxQVDhtOW5rLy94SllMVEszUXdOTXM2Mlg4elQrVHJZaDlPOHlhVGhZd3hLWnp0VDRMUmJoQzZUQm02Q1krSGYxRkhBWUt5VGFvVFdyOFZOVmI2QzlmM2MvRGFDb3dGbHF2dld4c1BML1BKTXF4RkVHcTJEQjhYYTVrSnhMTURBeS9nL0E9PS0tcVBMbVNocExOd2lXOFd3dzBvTzdnUT09--567302ffce95061e7a47ece3496af5faf255b96d; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 22016093-7cf9-46ad-b566-0dbdaae4f16d
x-runtime: 0.097097
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588de7f10b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash a687203fe71ef6861a04616846b98b68
304f9b3331e1ce8791a17a42fb7af66b09bf5461
ca93c3b3cb38f55344c6ce15da6e4dc78e406bd1ed591b97931ee7472b39bd2b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 20:04:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 15036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 22:28:55 GMT
Expires: Thu, 02 Feb 2023 22:28:55 GMT
ETag: "304f9b3331e1ce8791a17a42fb7af66b09bf5461"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
assets.cureus.com/uploads/user_profile/avatar/129650/profile_1592521641-WhatsApp_Image_2018-12-30_at_3.02.38_AM.png
172.67.8.5200 OK 44 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/129650/profile_1592521641-WhatsApp_Image_2018-12-30_at_3.02.38_AM.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 503eee3e9e651e7001721a6335735f27
33615df7a79775989105ae7088560c8193e7881f
27c8f425f15c32d39bad3a9ed20e549045c535c151de8faf49b45ca2b5f232e2
GET /uploads/user_profile/avatar/129650/profile_1592521641-WhatsApp_Image_2018-12-30_at_3.02.38_AM.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: image/png
content-length: 43775
age: 427177
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=62794
etag: "f7e1c9519e93f4a451d37313b3a468c6"
last-modified: Thu, 06 Jan 2022 20:24:25 GMT
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-id: baV2oIkbY1qvxNbxpGfkFjGEMroBYkicUEKSB7CFxV5Upz8Zj4uPPg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e0aa82b529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/532/profile_JRA_Headshot.jpg
172.67.8.5200 OK 6.4 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/532/profile_JRA_Headshot.jpg
IP 172.67.8.5:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, orientation=upper-left], progressive, precision 8, 150x150, components 3\012- data
Hash 887560879d5aa40e24e5eabf8c472c6e
d5b0739f9bc4f9c06c6c3f77e96c5524c1c2d045
7ae4295bee664b3da2d4b80ffc4d0c301c3d597ad26b8765ff1a072fcbe16365
GET /uploads/user_profile/avatar/532/profile_JRA_Headshot.jpg HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: image/jpeg
content-length: 6439
age: 427177
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23076
etag: "b55f88798696805bce5beb959569645d"
last-modified: Tue, 02 Sep 2014 15:42:45 GMT
via: 1.1 4bdc4e02725e6de1af31e5bb25800f68.cloudfront.net (CloudFront)
x-amz-cf-id: _EEGEByXImVyQGSHrp0PBfjjt_KrnGK4javibCACm9oZP3qoaPkKkA==
x-amz-cf-pop: ARN54-C1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e0aa8cb529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/19600/profile_1440605244-photo.png
172.67.8.5200 OK 33 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/19600/profile_1440605244-photo.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 869763b90dd8e6925e4e87c2017c6c3a
a53ae3ea77c1c0985bd099998dfae94fa817be8d
d6acc80d2bf482f7d5921db3255dbc6618cf5209a6a47dc43eaaf0b2bfa0264a
GET /uploads/user_profile/avatar/19600/profile_1440605244-photo.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: image/png
content-length: 33330
age: 427177
cache-control: max-age=315576000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=34109
etag: "b0e9cbe99f19a83ae705188fa4b2a16e"
last-modified: Wed, 26 Aug 2015 16:14:09 GMT
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-id: H_JmgPHUQ_7IsQHtJz-rZvUx9JCAK6xl6U74BRvndIm8XWZoc44c7A==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e0aa89b529-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/163860/profile_1605522775-arctic.png
172.67.8.5200 OK 51 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/163860/profile_1605522775-arctic.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 544ab4b744b6126bddd5a9018e44db58
e0e2ef2eb3bc1fb4806234c27568a9e749e70889
f76532f193135881c01e741780b980dc8cd0cff3b594a3cb80a2569cb68704e9
GET /uploads/user_profile/avatar/163860/profile_1605522775-arctic.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: image/png
content-length: 51297
cf-bgj: imgq:100,h2pri
cf-polished: origSize=51820
etag: "f9591855f6aef26dafd49cde3d674e73"
last-modified: Mon, 16 Nov 2020 10:35:51 GMT
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-id: dzjAxI4uAb9-oKER1xyU434Gk2bBgOPynzzrfONyzB6jysNsSgRPhQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e0aa7ab529-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6df4b5c91288cba3329ce52d922ba687
4c5d459da3ce1c13cd6feadb17318babb9857908
f8da4748a32d8a3919e1aa96ffd93ce1c69ababa8338b8767a6212f0ea049607
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8DA4748A32D8A3919E1AA96FFD93CE1C69ABABA8338B8767A6212F0EA049607"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11727
Expires: Thu, 02 Feb 2023 23:19:40 GMT
Date: Thu, 02 Feb 2023 20:04:13 GMT
Connection: keep-alive
assets.cureus.com/uploads/user_profile/avatar/19262/profile_1532405095-foto.png
172.67.8.5200 OK 33 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/19262/profile_1532405095-foto.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 1f1c40e08a4d8d0f36616582b09ba47b
e74f264c5dce61a3821a9de853d04035572b199f
fc27db2f2f87413adfec98cedee622be46406bd9e2810312f0a739cd73665203
GET /uploads/user_profile/avatar/19262/profile_1532405095-foto.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: image/png
content-length: 32923
cf-bgj: imgq:100,h2pri
cf-polished: origSize=33579
etag: "ef2864fc07b7c0fb982efc7f4ab4b023"
last-modified: Tue, 24 Jul 2018 04:05:50 GMT
via: 1.1 e6df4fdec76c527da827cfa84260c772.cloudfront.net (CloudFront)
x-amz-cf-id: TG8zpu_BxnUBC_z1IndIdXZMO4tjpeWHDDcK855GVVxNcK-ByLvM6w==
x-amz-cf-pop: ARN54-C1
x-cache: Hit from cloudfront
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e0aa91b529-OSL
X-Firefox-Spdy: h2
p.cpx.to/p/12967/px.js
52.17.91.39200 OK 2.0 kB IP 52.17.91.39:0
File type ASCII text, with very long lines (1990), with no line terminators
Hash 5dbddde1d9530a933894a8cefd6890d2
2539ba49075ba661adeaecb49aa4b88f75ce4959
f266acb707c5b2704c3b6e18e0888d7995bad0ba0ffec4a125146f7e3d058583
GET /p/12967/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: max-age=2419200, public
content-type: application/javascript; charset=UTF-8
date: Thu, 02 Feb 2023 20:04:13 GMT
Content-Length: 1990
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-4RFYJBBNXE>m=2oe210&_p=1730777162&cid=1071826051.1675368281&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368280&sct=1&seg=0&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&dt=Cureus&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-4RFYJBBNXE>m=2oe210&_p=1730777162&cid=1071826051.1675368281&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368280&sct=1&seg=0&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&dt=Cureus&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-4RFYJBBNXE>m=2oe210&_p=1730777162&cid=1071826051.1675368281&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675368280&sct=1&seg=0&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&dt=Cureus&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.cureus.com
date: Thu, 02 Feb 2023 20:04:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b2b402b25f2d6eb094b9edbc42bdacf7
ee9b014fbd53633ed18445dffdb3d49f3221aad5
75e9d879c3bb757c9397e89fbcfda73eeeb9b22a775ce517bbc0f86b0a1db457
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155774
Date: Thu, 02 Feb 2023 20:04:13 GMT
Etag: "63dbbf5d-1d7"
Expires: Sat, 04 Feb 2023 15:20:27 GMT
Last-Modified: Thu, 02 Feb 2023 13:49:17 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JPPPzq2kboGNPVYPS5_7y6wEJDGjT0BfuwAM1EVOTN1a0_JAlYkH1Q==
Age: 5470
sommelier.zdbb.net/api/muid?verbose=True
3.209.8.114503 Service Unavailable 162 B URL HTTP/2 sommelier.zdbb.net/api/muid?verbose=True
IP 3.209.8.114:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 81df4d3863debf3eceb5cf84251fd472
4ba7843a4cc062123f5f4caacbb9a3fa7d381eac
258c66556e2e065b0d04f6ae39a98fcf182e3e584cd0b7bdb20d0a395796347b
GET /api/muid?verbose=True HTTP/1.1
Host: sommelier.zdbb.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: awselb/2.0
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/html
content-length: 162
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9b065dd10769b4123608f9a5e4605f6a
99ed1febf2e2e6e51fe64dc9ff0e84bb494a2369
78b576dd0b15b786715efdd4a5d204643f51e27e72593679775be417a3ccfa53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 19:14:54 GMT
Expires: Thu, 09 Feb 2023 19:14:53 GMT
Etag: "99ed1febf2e2e6e51fe64dc9ff0e84bb494a2369"
Cache-Control: max-age=601238,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793588e37d461c0e-OSL
s.cpx.to/fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
52.50.35.7200 OK 677 B URL HTTP/1.1 s.cpx.to/fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
IP 52.50.35.7:0
File type ASCII text, with very long lines (677), with no line terminators
Hash d91ca96d6a25a9310ad15115e20572ba
1a7aac5443b4b98d61a9d31af808c2ecadd918bf
f0f3f2b801aaaa0df1029ca1aa117d2e10ecd011104f6680ec8cd06a5d6fb2c6
GET /fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:14 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 677
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0
pragma: no-cache
p3p: CP="NOI DEV ADM"
expires: Mon, 30 Jan 2023 11:25:31 UTC
set-cookie: cpSess=b5ad17b67e521f5; Expires=Fri, 02 Feb 2024 20:04:14 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
reporting.powerad.ai/
54.234.151.247200 OK 2 B IP 54.234.151.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST / HTTP/1.1
Host: reporting.powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 157
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
www.medtargetsystem.com/_itu.png
34.230.237.180200 OK 89 B URL HTTP/2 www.medtargetsystem.com/_itu.png
IP 34.230.237.180:0
File type PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 06e9a8a330f532093577a1487ca4ff15
77c280f383a1c2e7535577744f5af30e714a733b
2023d33cdcbc92384e340071f2f3a3ccbbd62712f938b15cf1fe823f93cbca59
GET /_itu.png HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb; s-dmd-id-x=read
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: image/png
content-length: 89
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
access-control-allow-origin: *
cache-control: no-transform, max-age=0, must-revalidate, private
expires: -1
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: private
set-cookie: s-dmd-id-x=deleted; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/; domain=www.medtargetsystem.com; SameSite=None; Secure
X-Firefox-Spdy: h2
www.medtargetsystem.com/beacon/process/
34.230.237.180200 OK 60 B URL HTTP/2 www.medtargetsystem.com/beacon/process/
IP 34.230.237.180:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 59f8f5ebbefee4bf73945d2808f18c3f
7d9a07d5aca03391eaca9ba79c929c8efeef4db0
ba85f819e87d50e44e86876fb4823acf29685df3e6aaacc1fc5387022e80d3fb
POST /beacon/process/ HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 754
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: text/html; charset=UTF-8
content-length: 60
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: s-dmd-id-x=deleted; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/; domain=www.medtargetsystem.com; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
IP 142.250.74.131:0
Hash abe88947b04e4c62c08aaf053b04c2fb
e431bea17b3ffa160e8f9bee34069f2f80c62a54
247328ae6f0d2d284024c8089ded1bdeabb51cc375b3db970a57c0ba77a75c2c
POST /s/gts1d4/mBPpT2mjKrY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
IP 142.250.74.131:0
Hash abe88947b04e4c62c08aaf053b04c2fb
e431bea17b3ffa160e8f9bee34069f2f80c62a54
247328ae6f0d2d284024c8089ded1bdeabb51cc375b3db970a57c0ba77a75c2c
POST /s/gts1d4/mBPpT2mjKrY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/tag/js/gpt.js
142.250.74.66200 OK 27 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (39525)
Hash 27c8b16ac683e12c693f5e6fb29d120e
88cbe5f5e1f1a25ba6baf0a3cb50e5c5585032aa
6319e2ef4ce41d47f78b51b320ff33ded3ece68212d48d40c856fa0eec05c5b5
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27271
date: Thu, 02 Feb 2023 20:04:14 GMT
expires: Thu, 02 Feb 2023 20:04:14 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1471 / 855 of 1000 / last-modified: 1675339640"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hb.brainlyads.com/json-parts/?unit_ids=24038&ver=2.0&pageId=1957644194
23.20.158.212200 OK 1.1 kB URL HTTP/2 hb.brainlyads.com/json-parts/?unit_ids=24038&ver=2.0&pageId=1957644194
IP 23.20.158.212:0
File type JSON data\012- HTML document, ASCII text, with very long lines (2805), with no line terminators
Hash bdf10b6b26d4fd6a37c174d7def19fdf
896d91a2e1e78608e97aba77aa8714fdbe93921d
37ca8d0c50256b17da995e28a72f0d67e6f6c9fd123cae1c7b7e5279b9b931ac
GET /json-parts/?unit_ids=24038&ver=2.0&pageId=1957644194 HTTP/1.1
Host: hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: *
etag: W/"af5-LNmS3kfQzllztvVMN0bj8XcggdQ"
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hb.brainlyads.com/prebid.js
23.20.158.212200 OK 180 kB URL HTTP/2 hb.brainlyads.com/prebid.js
IP 23.20.158.212:0
File type ASCII text, with very long lines (65423)
Size 180 kB (179724 bytes)
Hash 54c3d260396cb8ce3c8adbc7a8c1d867
afba457969f5a6dc327226bd35a6a3467bbf0672
537e2da168db65091a7873bf37b4dd4b35f4c9fc00f87d75f47dc8d2819f66a3
GET /prebid.js HTTP/1.1
Host: hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 17:27:37 GMT
vary: Accept-Encoding
etag: W/"638f7b89-91d51"
expires: Thu, 09 Feb 2023 20:04:14 GMT
cache-control: max-age=604800
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash dff38dffeadd71c065a1ae8e702ff586
531575a2687ab048a09d8518ecebe6eaf1bf925a
5ec4a452f9f49ba07aab0c7b1d20a5d0d8aef755a2ebf0d28474be5bb7f5bce8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 434
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Last-Modified: Thu, 02 Feb 2023 19:57:00 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
www.cureus.com/users/26093-brent-thoma/view
172.67.8.5200 OK 4.2 kB URL HTTP/2 www.cureus.com/users/26093-brent-thoma/view
IP 172.67.8.5:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c88a2198d78a90f5465d35ca01974e7
d6c37cd443cfead5be1526999b300dea94c69484
760a8bd6a34ff6c56122b1d6d2b7fbcb2f6bba3aa037df8dddd15084e189e905
GET /users/26093-brent-thoma/view HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
X-CSRF-Token: PSBn1ZtBO8JqtKzB+dMKXYcjGjHjBtjntkbBxGfXL1ETQMQYB5sJwjJjLFIzjdtuNPEFidnLUGDALOqeU2+ATg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _sess=041cf61c-46b9-4557-ba14-e8467294d22f.bf03d243-2e1c-40f8-920d-6c3969f62e79.1675368280.1; dmd-vid=bf03d243-2e1c-40f8-920d-6c3969f62e79; dmd-sid=041cf61c-46b9-4557-ba14-e8467294d22f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store
etag: W/"44136fa355b3678a1146ad16f7e8649e"
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=2; path=/; secure
referrer=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma; path=/; expires=Thu, 02 Feb 2023 20:34:13 GMT; secure
_cureus_session=R09ZcllQK083aG1MRndkbGtEclc3cndUQTg4dnBpeVkydHZUZ1FRMnVZR0ZHRm4yZUNzOVN1SXJCS2F1eHFySUsyWlgxbTZYdW9aeTZKSUtSUzFhd0FjcmVDTDVydlBvSjJ0dG5UajlWMWw3OFo5MHBTajZHM2xub0g3cTl2eU9vaUhwcTN4YzNjNTJSZFZPd2tCL2FrQUxOTnlNTEJMSnFHa2xoRGdZSGhqWE1EQ0tPZU5jRU94RktndllUWGhTajlXQ2xVVFRlUGJoNW54cmYxQkZ6RTl2dHAyRGJtbmsrdWYzbUdMZ0Zhcmg3S3RFWHpRaCtubEFCRXgzYzcwZEFvNFZMZytqMkVrYmo3eUVmemRJZ3c9PS0tWGQydmlNWVAxOElZVkJoZytCR0JDQT09--22e4da79a036913505fd58768508f5738ce75b2c; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 98a6609e-0ce6-48d0-8db5-e616d2b98925
x-runtime: 0.080006
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588deaf4fb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.ad.gt/api/v1/u/matches/251?url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&ref=
104.22.5.69200 OK 57 kB URL HTTP/2 a.ad.gt/api/v1/u/matches/251?url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&ref=
IP 104.22.5.69:0
Hash d32b04fdba9571b15023077eec9d3fb2
060097ffa54da4bd191d7aaf1d291302f82d7291
5a59e1dd581804091de151cc7002abcd73128d174bb6d4547c8567a8ab95f0c2
GET /api/v1/u/matches/251?url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&ref= HTTP/1.1
Host: a.ad.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: application/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Thu, 02 Feb 2023 20:04:13 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e079ff0b45-OSL
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/23562/profile_1581108735-Teresa_Chan_-_web_size-10.png
172.67.8.5200 OK 62 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/23562/profile_1581108735-Teresa_Chan_-_web_size-10.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 89b0cac4b40cb1a69a82a44918ebeed2
b2a8023619e56abd0186dbc1faf7ad0eb2797d01
b11e3ae57c7dbcf7a4f88374fc0d197697b23ac12e540bc136b8bf1e1c9d45fd
GET /uploads/user_profile/avatar/23562/profile_1581108735-Teresa_Chan_-_web_size-10.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: image/png
content-length: 61967
last-modified: Thu, 06 Jan 2022 18:21:58 GMT
etag: "89b0cac4b40cb1a69a82a44918ebeed2"
cache-control: max-age=315576000
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kdIYfOQ5uK71Aj-VthOHMPu_VFLEbhTXUaSIXru3HV0LBsFEcoz2PQ==
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e77d55b529-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fa17a623e7dfc3a144c1fbefb7fe
50d637cac8808b59196ff18040db1369cad9d51e
dfe2a451b1389c328ed0867dd6cff4fcec3f17c5444d206c902956792aa721a8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFE2A451B1389C328ED0867DD6CFF4FCEC3F17C5444D206C902956792AA721A8"
Last-Modified: Thu, 02 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14206
Expires: Fri, 03 Feb 2023 00:01:00 GMT
Date: Thu, 02 Feb 2023 20:04:14 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/mBPpT2mjKrY
IP 142.250.74.131:0
Hash abe88947b04e4c62c08aaf053b04c2fb
e431bea17b3ffa160e8f9bee34069f2f80c62a54
247328ae6f0d2d284024c8089ded1bdeabb51cc375b3db970a57c0ba77a75c2c
POST /s/gts1d4/mBPpT2mjKrY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
onetag-sys.com/prebid-request
51.89.9.252200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.89.9.252:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 908
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.cureus.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 766
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.cureus.com
cache-control: max-age=0, private, must-revalidate
date: Thu, 02 Feb 2023 20:04:14 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.cureus.com
142.250.74.162200 OK 80 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.cureus.com
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5fd76024dd80f922e4bfc853df9b8eb1
9cab65ed6d6be3ac00831424aabe4d74e0c6c8dd
6462e61a74c3c18b519366f196f6bca76d536be8e273514225b19e7505e817ab
GET /pagead/ppub_config?ippd=www.cureus.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Thu, 02 Feb 2023 20:04:14 GMT
expires: Thu, 02 Feb 2023 20:04:14 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 80
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 20:19:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aeea9e144cc0f54034a171c595f109db
10492fe44c12c2ac14e85aabab86ce062c2fbb2a
32d7b2564e83e3e9b695af9b7237949dbbaf5b0012b5f2a5ad314483ea02b3af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3715
Cache-Control: max-age=138852
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:14 GMT
Etag: "63db841f-1d7"
Expires: Sat, 04 Feb 2023 10:38:26 GMT
Last-Modified: Thu, 02 Feb 2023 09:36:31 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
assets.cureus.com/uploads/user_profile/avatar/57479/profile_1520908283-MichelleLin_Square_FINAL.png
172.67.8.5200 OK 48 kB URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/57479/profile_1520908283-MichelleLin_Square_FINAL.png
IP 172.67.8.5:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash a469fdffb082cc639ddf62503fea72d6
6b1cd9f4f546784f0411803480137d241b03642d
d39770d8809db819989a3185dae2572c2863e2b6004d17f45fb43824a31b5d8e
GET /uploads/user_profile/avatar/57479/profile_1520908283-MichelleLin_Square_FINAL.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: image/png
content-length: 47528
last-modified: Thu, 06 Jan 2022 18:55:58 GMT
etag: "a469fdffb082cc639ddf62503fea72d6"
cache-control: max-age=315576000
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SQ_RvF1D-HpHjkfUvbhhtymPBDtPL_E9btuXRtKLkpz_pzeuuA-ugw==
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e78d88b529-OSL
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023013001.js
142.250.74.162200 OK 134 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023013001.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (65395)
Size 134 kB (133639 bytes)
Hash ee98ed1221a7dc8d2824d7c70161183b
c860051c3dbc2463b5bc6b848144e40ec0d12559
150e3af136daedf3b8e96717f14b459885b6e9055c683c32e852a2e354aa1d75
GET /gpt/pubads_impl_2023013001.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133639
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:15:04 GMT
expires: Tue, 30 Jan 2024 16:15:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Mon, 30 Jan 2023 09:35:16 GMT
content-type: text/javascript
age: 272950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 87d378d85b7aa8efd5e0c7a79cf2db66
c214a472cc014f10dc14cada0c6783c82d507e42
7fae47c192ddd3d2d2f400d0a09a5bc67aacca77ec436c54041ea16b354b50af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:14 GMT
Last-Modified: Thu, 02 Feb 2023 18:41:08 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oLhFBNGxI1CrTnBTww7TxZcb_0B1-YiDqXQIJuilcneSVDZmxJqxVw==
Age: 4986
ib.adnxs.com/ut/v3/prebid
37.252.173.215200 OK 13 kB URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.173.215:0
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21279), with no line terminators
Hash e87d9152715f14001c2fcc360c4e663b
4b320f01b0a49db95382e3c724bebed4f5b2c70f
fb6f5d12a370c61c9c93ace69253ddd82409f1f17c480e7c743df9343f6f4559
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 635
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.cureus.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 8c7fb2eb-6ad9-4732-8800-60c8c99dc91a
Set-Cookie: icu=ChkI1--IARAKGAEgASgBML6u8J4GOAFAAUgBEL6u8J4GGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:14 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=2107514271406598321; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:14 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1075
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.cureus.com
cache-control: no-cache, no-store, must-revalidate
date: Thu, 02 Feb 2023 20:04:13 GMT
X-Firefox-Spdy: h2
rp.liadm.com/j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093
34.225.117.251302 Found 0 B URL HTTP/2 rp.liadm.com/j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093
IP 34.225.117.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093 HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 02 Feb 2023 20:04:14 GMT
content-length: 0
trace-id: d85394a3c06d0446
vary: Origin
location: /j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093&n3pc=true
set-cookie: lidid=bbcf12ca-fa85-44e2-835d-e7b4afc2d28f; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:14 GMT; SameSite=None; Path=/; Domain=.liadm.com; Secure; HTTPOnly
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://www.cureus.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
rp.liadm.com/j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093&n3pc=true
34.225.117.251200 OK 13 B URL HTTP/2 rp.liadm.com/j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093&n3pc=true
IP 34.225.117.251:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 97efe0b7ee61e154d57e80758bb797d8
810b4e115fe9f5ae697666febf2a9abf0b21c9ec
efabba3678b85fcab831b778ea2ddaad1e2a1e952584d3566bc39b7ccb3429d9
GET /j?wpn=prebid&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&duid=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp&se=e30&dtstmp=1675368282093&n3pc=true HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cureus.com
Content-Type: text/plain
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: application/json
content-length: 13
trace-id: 0902cd6b2026ca3f
vary: Origin
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-pixel-event-id: 77e88336-fcad-4d6c-a324-26ee95452a5c
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://www.cureus.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.cureus.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.cureus.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.cureus.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 20:04:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.cureus.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.cureus.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.cureus.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 20:04:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023013001&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023013001&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14586), with no line terminators
Hash 43068dae4cb5040fdb78852c02336b19
36407f02f520c746b2d895d8ade416781176a952
07131399c991fe7f7f5de2ae54a43f00bd403f763aac685708cb76796ae521c5
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023013001&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Thu, 02 Feb 2023 20:04:15 GMT
server: cafe
content-length: 11009
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hb.brainlyads.com/pbjs_wrapper.v2.0.js
23.20.158.212200 OK 21 kB URL HTTP/2 hb.brainlyads.com/pbjs_wrapper.v2.0.js
IP 23.20.158.212:0
Hash 9f2196be98236fd3523916df94258b62
5f8e851c32fa858777f1c7c6d4bb027d3c23b84c
b573babb0317cfe1b97a3fb0ba30f9f18a3ecf944c838627d75ff84aac82074c
GET /pbjs_wrapper.v2.0.js HTTP/1.1
Host: hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 04:29:39 GMT
vary: Accept-Encoding
etag: W/"63cf5eb3-c93c"
expires: Thu, 09 Feb 2023 20:04:13 GMT
cache-control: max-age=604800
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.cureus.com/packs/media/images/favicon-6b3259c58f4356da2cc885357cfda20b.png
172.67.8.5200 OK 490 B URL HTTP/2 assets.cureus.com/packs/media/images/favicon-6b3259c58f4356da2cc885357cfda20b.png
IP 172.67.8.5:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 11d250b1b4fe3b18b5316b0bcea02921
abf028769f12c5788e0bf4fe66466f90a7ba0473
507b3733dbe22c5cebd446db63b9c0866ff86b0b87121bc39d7beadb8816af8c
GET /packs/media/images/favicon-6b3259c58f4356da2cc885357cfda20b.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: image/png
content-length: 490
age: 3472
cf-bgj: imgq:100,h2pri
cf-polished: origSize=658
etag: "63d93d0c-292"
last-modified: Tue, 31 Jan 2023 16:08:44 GMT
vary: Accept-Encoding
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-id: 6i0NHESGWbbOA7KS61m6aLFfIttMCzHeduGEc51VhlTwHp1JZYvzVA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 793588eaba51b529-OSL
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4879)
Hash efa79209615ca7c5abdda234e981ba97
2e07a2bc183140560141e993d5bab5e9e40603de
2ebf176b26c2cac26da3e2803e01be5b7e8f10045401132770dba28f470ed4d2
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 20:04:15 GMT
expires: Thu, 02 Feb 2023 20:04:15 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14216978301538601454
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49806
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-5.10.0-min.gz.js
54.230.245.185200 OK 19 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.10.0-min.gz.js
IP 54.230.245.185:0
File type ASCII text, with very long lines (58187)
Hash 32c6cc8f35238dd7b822aad7abb0f9df
24454e0119580267f0cd07bb4a677e9dbbefadb4
6aca9b41ab848b66834f15bae809e02081e09dd8beaee392b9613df0728f3446
GET /libs/amplitude-5.10.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18576
date: Sat, 28 May 2022 23:07:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 10 Mar 2020 21:56:03 GMT
etag: "32c6cc8f35238dd7b822aad7abb0f9df"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: M8gQYqjvk9smBMK6Q3KU0xI4MWwIVNBc
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hys7jZFLEreOuTAnEpZW6lkaNytqBvjH3kB3wTDG_5Y4Mk5SfgaPsg==
age: 21589001
X-Firefox-Spdy: h2
public.cureus.com/homepage_new/question_mark.png
172.67.8.5200 OK 1.6 kB URL HTTP/2 public.cureus.com/homepage_new/question_mark.png
IP 172.67.8.5:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash a8f23c1267e1cb993ff6624bef9ea1a4
3f0293b6d221efd048215d36ec669de0431766cd
4ef2a8f44575ce6de408c54fad77cac330e043507eafb927827abc59c5f96a75
GET /homepage_new/question_mark.png HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: image/png
content-length: 1551
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2930
etag: "17b96bdb6a2920a77094aa4295a24242"
last-modified: Tue, 29 Mar 2022 21:53:55 GMT
x-amz-id-2: MzzchsmHV5GZZppTw2JdM3sRl9JE9gcVc/TU/K30pEPgkNEQ4FxEAlsjtyJJt5dzej0NYjVliwg=
x-amz-request-id: 33S02PPAXZEJ8GKZ
x-amz-version-id: null
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e82ea3b529-OSL
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=74602
date: Thu, 02 Feb 2023 20:04:15 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1321cc39f23a17f5d53ded09d1808802
673716636a6e3fc1f447e07dae9d2eea4ad43802
78a7fc08db4c529ab73babf02922bce7e62defe003edee2c1602e363dc0958b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.142200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 19:44:08 GMT
expires: Thu, 02 Feb 2023 21:44:08 GMT
cache-control: public, max-age=7200
age: 1207
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
48c584cfdcdb40c7eb0f4744a6279a98.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html?n=2
142.250.74.97200 OK 3.1 kB URL HTTP/2 48c584cfdcdb40c7eb0f4744a6279a98.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html?n=2
IP 142.250.74.97:0
File type ASCII text, with very long lines (502)
Hash 1861582c7599c5ce815710b8fa3c415a
40ae0e30c06a66d20abf5848931cf474c0d7e01b
27a5efff4d8bb23067b5adc869a5f1f16e712a71a8224ba5968af2947e080a39
GET /safeframe/1-0-40/html/container.html?n=2 HTTP/1.1
Host: 48c584cfdcdb40c7eb0f4744a6279a98.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Thu, 02 Feb 2023 20:04:15 GMT
expires: Fri, 02 Feb 2024 20:04:15 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 162b641cc7a6617ae925f9b4f4a2d017
eeeda4a970af1df0d56fd580aa7aeb40219b192a
5c36d7108d3312c942bf6bff9e2e0f5845e8d62e6a842ef64a98488d940270cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Last-Modified: Thu, 02 Feb 2023 18:17:14 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
142.250.74.130302 Found 341 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 477f80dece20bf7f4897b3fb7ccbe301
458f5ad2bb2834dce23a4b48070838199ea5aeb4
d1b0eb9007048a4fa84ca8211f7d79257b54e44c136567c64a514b6130bf4631
GET /pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm=&dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121&google_tc=
date: Thu, 02 Feb 2023 20:04:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 341
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 20:19:15 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.recaptcha.net/recaptcha/api.js
142.250.74.131200 OK 559 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (853), with no line terminators
Hash 857fd281f66e870ea85e9864372ce9a1
231fe248b7305c7860720e263f808fd27845e56e
da7f66ad24142f77b43d308b1bcb9ebfcebb96706a35ffeb989c4f4bb3bcd065
GET /recaptcha/api.js HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 20:04:15 GMT
date: Thu, 02 Feb 2023 20:04:15 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 559
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6185
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Last-Modified: Thu, 02 Feb 2023 18:21:10 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 38e07bc636d0c9da432cd0ab4e25404d
dd02b02634e90eef44e97028b42eb13d52456122
f22afe419eb712c351ad3dff2571aa73b777fe8f12198c92845c8800b64f1a47
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 15036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 01:52:39 GMT
Expires: Fri, 03 Feb 2023 01:52:39 GMT
ETag: "dd02b02634e90eef44e97028b42eb13d52456122"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 02 Feb 2023 20:04:15 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: HZd9CRGzqBF/TZ8+v/IEttUgckXcuXBcB5CRwWKkc8SKFjmKfhOY/QcAz9Gqsiu6Kl8qdxo9mcowRw9vS5mJ8w==
content-length: 27843
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 20:04:15 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.193200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 02 Feb 2023 20:04:15 GMT
expires: Thu, 02 Feb 2023 20:04:15 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 349de070966a5d709e2a2b72f1dceae6
df3bef1f0e2e4f2cbee8bc29dd7913150442e378
58b8cef7271093c92a314e2297a2e580a35ba0d3a65eac0aa61d1cca0ccf64e0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 06 Feb 2023 19:06:31 GMT
ETag: "df3bef1f0e2e4f2cbee8bc29dd7913150442e378"
Last-Modified: Thu, 02 Feb 2023 19:06:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2708
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793588ec1cfcb505-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 54fb4e41ffaf928b8a93ff7479881522
2f852999d5594cc2039dcecfe36217d85cdd5747
bd86f88501af77f8a73cdf2c3e76599975491c35f18e14a0514ce5e65df23ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6185
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Last-Modified: Thu, 02 Feb 2023 18:21:10 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.207.193200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 08:42:42 GMT
expires: Fri, 02 Feb 2024 08:42:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 40893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12967%26ref%3D%26url%3Dhttps%253A%252F%252Fwww.cureus.com%252Fusers%252F26093-brent-thoma%26hn_ver%3D40%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
37.252.172.123307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12967%26ref%3D%26url%3Dhttps%253A%252F%252Fwww.cureus.com%252Fusers%252F26093-brent-thoma%26hn_ver%3D40%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12967%26ref%3D%26url%3Dhttps%253A%252F%252Fwww.cureus.com%252Fusers%252F26093-brent-thoma%26hn_ver%3D40%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12967%2526ref%253D%2526url%253Dhttps%25253A%25252F%25252Fwww.cureus.com%25252Fusers%25252F26093-brent-thoma%2526hn_ver%253D40%2526fid%253D3000fec7-8f0f-40cb-8e40-9137b8045121
AN-X-Request-Uuid: fca942ea-a0ca-4960-b3ed-9bc4cce8b81c
Set-Cookie: uuid2=6301163606651585506; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:15 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
secure.adnxs.com/getuidp?callback=__jp1
37.252.172.123200 OK 18 B URL HTTP/1.1 secure.adnxs.com/getuidp?callback=__jp1
IP 37.252.172.123:0
File type ASCII text, with no line terminators
Hash c101409f939021f00070a1383e5c9001
c92eabd1871a2dee0dbcf24ec277e3897c81ddeb
4155b39ac0ea1987072e3fc58ad7f59b0a25216c901253ba1e06922727556fb7
GET /getuidp?callback=__jp1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 18
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 211f7020-e8e5-470a-b429-94d2a992ee5d
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
secure.adnxs.com/getuidu?https://trc.lhmos.com/uid/save/?uid=$UID&aimsessionidv2=041cf61c-46b9-4557-ba14-e8467294d22f&dgid=UNK&mcode=15710&mid=47
37.252.172.123307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuidu?https://trc.lhmos.com/uid/save/?uid=$UID&aimsessionidv2=041cf61c-46b9-4557-ba14-e8467294d22f&dgid=UNK&mcode=15710&mid=47
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuidu?https://trc.lhmos.com/uid/save/?uid=$UID&aimsessionidv2=041cf61c-46b9-4557-ba14-e8467294d22f&dgid=UNK&mcode=15710&mid=47 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuidu%3Fhttps%3A%2F%2Ftrc.lhmos.com%2Fuid%2Fsave%2F%3Fuid%3D%24UID%26aimsessionidv2%3D041cf61c-46b9-4557-ba14-e8467294d22f%26dgid%3DUNK%26mcode%3D15710%26mid%3D47
AN-X-Request-Uuid: 53251f44-abd7-462a-a655-35c5c3ae1e27
Set-Cookie: uuid2=2184863249714244594; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:15 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 8ae8131097ca1aa789752481213a7a08
cdab4e25facb53689872d59cd4b2da0175651a5a
a7d54b094d3d2eb80d4183a9d73efaf62d2001104692f8d6d08063468c98f13e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 15036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 18:30:13 GMT
Expires: Fri, 03 Feb 2023 18:30:13 GMT
ETag: "cdab4e25facb53689872d59cd4b2da0175651a5a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
match.adsrvr.org/track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3729d8445019ddf0cb6e03e7cdbe643a
b513f16d0106e68311b09addade6d44894e3537b
1e38f04f29641215a4d0476be900b37b8819d929db7ef6d4deab15a361e46f1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5149
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Last-Modified: Thu, 02 Feb 2023 18:38:26 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
match.deepintent.com/identity/?key=269cdf5b457d1eef7e2f97252bae330ec0f695500a9b5f4b34903eb10b675c16&sid=041cf61c-46b9-4557-ba14-e8467294d22f&&cb=__jp0
8.18.47.7200 OK 9 B URL HTTP/2 match.deepintent.com/identity/?key=269cdf5b457d1eef7e2f97252bae330ec0f695500a9b5f4b34903eb10b675c16&sid=041cf61c-46b9-4557-ba14-e8467294d22f&&cb=__jp0
IP 8.18.47.7:0
File type ASCII text, with no line terminators
Hash 78be81e13443b5220f0ddf27b9bf2241
169ba55c7eb4d444f5e0754bc0bf060d85636775
ae6d2af8776955d266e742c30b24a670963a7dbbf5d7a48e910eac0d44d966da
GET /identity/?key=269cdf5b457d1eef7e2f97252bae330ec0f695500a9b5f4b34903eb10b675c16&sid=041cf61c-46b9-4557-ba14-e8467294d22f&&cb=__jp0 HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 9
date: Thu, 02 Feb 2023 20:04:15 GMT
server: b
X-Firefox-Spdy: h2
match.deepintent.com/usersync/114/store?ext1=041cf61c-46b9-4557-ba14-e8467294d22f&id=UNK
8.18.47.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/114/store?ext1=041cf61c-46b9-4557-ba14-e8467294d22f&id=UNK
IP 8.18.47.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/114/store?ext1=041cf61c-46b9-4557-ba14-e8467294d22f&id=UNK HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 02 Feb 2023 20:04:15 GMT
server: b
X-Firefox-Spdy: h2
trc.lhmos.com/enrich/data/redir?mcode=15710&mid=47&uid=0&
34.102.246.198200 OK 2 B URL HTTP/2 trc.lhmos.com/enrich/data/redir?mcode=15710&mid=47&uid=0&
IP 34.102.246.198:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /enrich/data/redir?mcode=15710&mid=47&uid=0& HTTP/1.1
Host: trc.lhmos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: x-requested-with
access-control-allow-credentials: true
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-type: application/json
content-length: 2
date: Thu, 02 Feb 2023 20:04:15 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29
104.244.42.5200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=f19d30d1-b64c-4202-8f00-5ca069342de3; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:15 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0ad7474a7ec9fcfd
strict-transport-security: max-age=0
x-response-time: 113
x-connection-hash: e6bd6f559248413011d360a8a6e37c2cc8db22ca13bc7561679a36f455c4bd17
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 192e540aaeaac8945f96a17637257d86
a8e0425979969412fd5d4a78dc88b15208a98143
77baa0cb3c8ddb68e1a0c897242d04160f67dd76a1e9d1b532a113cdfd5baabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.106200 OK 867 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.106:0
Hash 24851c0efa2c9b66158d70795ffc379d
1b05f46bd3d99d099590ba60bbe94531c263bbd7
148325b604c4796f351380447c89a07bd90e296b35f44e205180522ac8cf844c
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 20:04:15 GMT
date: Thu, 02 Feb 2023 20:04:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
image2.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
185.64.189.110302 Found 514 B URL HTTP/2 image2.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
IP 185.64.189.110:0
File type Sun disk label 'Content-type: text/html; charset=utf-8t=utf-8\005\0070\001\001\004\202\001\2720\202\001\2660\201\237\242\026\004\024\212t\177\257\205\315\356\225\315=\234\320\342F\024\363q5\035'\030\01720230202114045Z0t0r0J0\011\006\005+\016\003\002\032\005\342F\024\363q5\035'\030\01720230202114045Z0t0r0J0\011\006\005+\016\003\002\032\005' 16905 alts/cyl, 5554 data cyls, start cyl 764325087, 437458060 blocks\012- data
Hash b8bb3224c673be057e15587b7d955dbb
04938374a7d5068b48f52947a3e56685a298c37c
9ec4eb01ec094ca64544ef9921a6dcbde3642399ffd94ace6a26bf7795d9f65f
GET /AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 20:04:14 GMT
set-cookie: KTPCACOOKIE=true; domain=pubmatic.com; secure; expires=Wed, 03-May-2023 20:04:14 GMT; path=/
location: https://image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5540624c22f3c0e1f095022295ba0a40
2046e0fb639dd8598753620aef85160d5a68c729
e1f339a32daea6d0e5498312ea8d04d742732df7086f6447738fc84213541bcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 192e540aaeaac8945f96a17637257d86
a8e0425979969412fd5d4a78dc88b15208a98143
77baa0cb3c8ddb68e1a0c897242d04160f67dd76a1e9d1b532a113cdfd5baabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 192e540aaeaac8945f96a17637257d86
a8e0425979969412fd5d4a78dc88b15208a98143
77baa0cb3c8ddb68e1a0c897242d04160f67dd76a1e9d1b532a113cdfd5baabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hs-analytics.net/analytics/1675368000000/9367854.js
104.17.68.176200 OK 82 kB URL HTTP/2 js.hs-analytics.net/analytics/1675368000000/9367854.js
IP 104.17.68.176:0
File type ASCII text, with very long lines (64878)
Hash 3ec722cd42ff58a9ea8fe28dae30dfcc
49c6ee3f9a7572910f09922c171253b5a64f7ec5
554d0a63ff41f66bc8d55ee6fc8f739eeeb7a74d11bce9fa0bf5242b1c6f2e23
GET /analytics/1675368000000/9367854.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: text/javascript
x-amz-id-2: UgXLx2JanUqoEpBvVVvplGa+uMiXRH5TTWym2dKxk8YHVe4H6PAZ0wwkl0D0EbS95W1+aH6oxWM=
x-amz-request-id: Z1N0S7VQB6K0V4CX
last-modified: Wed, 18 Jan 2023 20:38:25 GMT
etag: W/"a2493bb100a17eae866e635fd10d86e7"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Thu, 02 Feb 2023 20:06:29 GMT
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588eb8ec3b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
216.58.207.193200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (65534)
Hash 71f3ba24b0a01ade500d97ad0b8f3617
508b7affbf3e3c2b8bf4f46ebcb69ea29855bf9a
34c90f195073264a8f3e51bb9582b73665f65d7b053a031400c48bf627ca9d69
GET /rtv/012301181928000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28817
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "6eb387830c268337"
content-type: text/javascript; charset=UTF-8
age: 266378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
216.58.207.193200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (14751)
Hash 73e00d54af81c3fab604b50e24c8e9c3
69acac1ec53fcbcf886bb240adabd050520197f9
3347e49ea6e174315c1bee3660a9988e4c7fe184a7a1176cf2aceb307c73125a
GET /rtv/012301181928000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "47662644ea8653a3"
content-type: text/javascript; charset=UTF-8
age: 266378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
216.58.207.193200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
IP 216.58.207.193:0
File type ASCII text, with very long lines (5021)
Hash 15dbec6a43680f6683938949e1b50562
fd479e89a3460ca0e48b5001aad0a2836df31dab
d08eefabc738f11545330db83c2d3e9a855add08db6b9d9217a15dd783c4f5c8
GET /rtv/012301181928000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1914
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 18:22:17 GMT
expires: Fri, 02 Feb 2024 18:22:17 GMT
cache-control: public, max-age=31536000
etag: "f13d3e1d36b26a3d"
content-type: text/javascript; charset=UTF-8
age: 6118
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
216.58.207.193200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash d002971e2ddb3b4efd4dc02db13ee630
da135f871d06963e22f3dc6ec251cfbaed9740ad
a464154b965a79018453f4b97ffa8412a5059b0b521472bfc0e84df5c74d8fac
GET /rtv/012301181928000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12960
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f74ebce85e2cb18a"
content-type: text/javascript; charset=UTF-8
age: 266378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5540624c22f3c0e1f095022295ba0a40
2046e0fb639dd8598753620aef85160d5a68c729
e1f339a32daea6d0e5498312ea8d04d742732df7086f6447738fc84213541bcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
reporting.powerad.ai/
54.234.151.247200 OK 2 B IP 54.234.151.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST / HTTP/1.1
Host: reporting.powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 133
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12967%2526ref%253D%2526url%253Dhttps%25253A%25252F%25252Fwww.cureus.com%25252Fusers%25252F26093-brent-thoma%2526hn_ver%253D40%2526fid%253D3000fec7-8f0f-40cb-8e40-9137b8045121
37.252.172.123302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12967%2526ref%253D%2526url%253Dhttps%25253A%25252F%25252Fwww.cureus.com%25252Fusers%25252F26093-brent-thoma%2526hn_ver%253D40%2526fid%253D3000fec7-8f0f-40cb-8e40-9137b8045121
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12967%2526ref%253D%2526url%253Dhttps%25253A%25252F%25252Fwww.cureus.com%25252Fusers%25252F26093-brent-thoma%2526hn_ver%253D40%2526fid%253D3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://s.cpx.to/an_fire?app_nexus_uid=0&pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
AN-X-Request-Uuid: dc99585a-d1a6-45b3-9e70-ed92a866974e
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
secure.adnxs.com/bounce?%2Fgetuidu%3Fhttps%3A%2F%2Ftrc.lhmos.com%2Fuid%2Fsave%2F%3Fuid%3D%24UID%26aimsessionidv2%3D041cf61c-46b9-4557-ba14-e8467294d22f%26dgid%3DUNK%26mcode%3D15710%26mid%3D47
37.252.172.123302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuidu%3Fhttps%3A%2F%2Ftrc.lhmos.com%2Fuid%2Fsave%2F%3Fuid%3D%24UID%26aimsessionidv2%3D041cf61c-46b9-4557-ba14-e8467294d22f%26dgid%3DUNK%26mcode%3D15710%26mid%3D47
IP 37.252.172.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuidu%3Fhttps%3A%2F%2Ftrc.lhmos.com%2Fuid%2Fsave%2F%3Fuid%3D%24UID%26aimsessionidv2%3D041cf61c-46b9-4557-ba14-e8467294d22f%26dgid%3DUNK%26mcode%3D15710%26mid%3D47 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://trc.lhmos.com/uid/save/?uid=0&aimsessionidv2=041cf61c-46b9-4557-ba14-e8467294d22f&dgid=UNK&mcode=15710&mid=47
AN-X-Request-Uuid: 11555ca4-ce2b-4330-bfb3-8148cc8f49e1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 868.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 14:34:21 GMT
expires: Fri, 02 Feb 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 19794
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.cpx.to/an_fire?app_nexus_uid=0&pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
52.50.35.7200 OK 95 B URL HTTP/1.1 s.cpx.to/an_fire?app_nexus_uid=0&pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121
IP 52.50.35.7:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9606fa62df0ffe87253f3baf418f0e42
fe8520ab0bf1622350513d685ece5faf70b4e8c1
bf27786b4381176350787d768bf5f7c5310ba640aa48ee98a3d2c310ddd971ab
GET /an_fire?app_nexus_uid=0&pid=12967&ref=&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&hn_ver=40&fid=3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: cpSess=b5ad17b67e521f5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0
pragma: no-cache
set-cookie: cpSess=b5ad17b67e521f5; Expires=Fri, 02 Feb 2024 20:04:15 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
p3p: CP="NOI DEV ADM"
expires: Thu, 02 Feb 2023 20:04:15 UTC
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a74e9df0da2b1a67dfda6786a37dd2a8
8fefdd28cf1a5806b0f3bb23f86b81e03dbde32a
6a8ae9cbe9e568d449136667058e401101fe5130f4dc92524d44f4498210aa9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Last-Modified: Thu, 02 Feb 2023 18:35:37 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 269681
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.cpx.to/ca.png?dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121&google_error=3
52.50.35.7200 OK 95 B URL HTTP/1.1 s.cpx.to/ca.png?dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121&google_error=3
IP 52.50.35.7:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9606fa62df0ffe87253f3baf418f0e42
fe8520ab0bf1622350513d685ece5faf70b4e8c1
bf27786b4381176350787d768bf5f7c5310ba640aa48ee98a3d2c310ddd971ab
GET /ca.png?dsp=dbm&fid=3000fec7-8f0f-40cb-8e40-9137b8045121&google_error=3 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: cpSess=b5ad17b67e521f5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:15 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0
pragma: no-cache
set-cookie: cpSess=b5ad17b67e521f5; Expires=Fri, 02 Feb 2024 20:04:15 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.linkedin.oribi.io/partner/2527684/domain/cureus.com/token
54.230.111.112200 OK 533 B URL HTTP/2 cdn.linkedin.oribi.io/partner/2527684/domain/cureus.com/token
IP 54.230.111.112:0
Hash fd2e346cd2c92bdb1af9b7ef0cbf3cbc
6279e6a96349fab37cb92189cb639e7ae23c1ebe
8fb9cb05934a113ccfe9b2f9440711d5aeb4d3d94d6aa91464af65f91169a6e7
GET /partner/2527684/domain/cureus.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 19:12:31 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cwed1ZXRnLqsAH5GDj4VWxwEnRpLUwHNuxiVEDyukf_tY_JtMPjdlg==
age: 3104
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2527684%26time%3D1675368282889%26url%3Dhttps%253A%252F%252Fwww.cureus.com%252Fusers%252F26093-brent-thoma%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLOimPXeCRKTgAAAYYTutGC_t0nSr4gped0JmIjiofmwl7-zO3EAbQc4XnjYPpOJhj0kTixjcPu_A; Max-Age=2592000; Expires=Sat, 04 Mar 2023 20:04:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKXFXCYzYjMggAAAYYTutGC54PQfrwK0CVEeradPjfaaOiKHwQTTB-yM-61MaImh2RTAaS6gCJXgX4kRgLhLQ; Max-Age=2592000; Expires=Sat, 04 Mar 2023 20:04:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a2fc18fe-e82a-4b98-8264-b24adf9066c0"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 02-Feb-2024 20:04:15 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675368255:t=1675454655:v=2:sig=AQH4RATBnhW7MqbsEVitHZlI2UO6l-a6"; Expires=Fri, 03 Feb 2023 20:04:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzvRHCSlvKOK+63os/8w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A02C8EA923054E88B9F3BEE8DF2D9395 Ref B: OSL30EDGE0218 Ref C: 2023-02-02T20:04:15Z
date: Thu, 02 Feb 2023 20:04:15 GMT
content-length: 0
X-Firefox-Spdy: h2
www.medtargetsystem.com/partner/auth_review
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth_review
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth_review HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 209
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=ab10454e-ce4c-415a-805a-24f9c0165ef4&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f6f1529a-7363-4e53-b482-8b872645314b&tw_document_href=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&tw_iframe_status=0&txn_id=o9o6b&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:15 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167536825594154034; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167536825594154034; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_jW6qhf/ot7iShx3jh7YNOw=="; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167536825594154034; Max-Age=63072000; Expires=Sat, 01 Feb 2025 20:04:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 2bd831d8b85a8c30
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: a05ac0c7ae50e6f88ac6fc8568f382bb50dfb197843f7574c75bf2b294e972e7
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 91f77accfdecd9abff22f103c9726e50
a2085989812bc7985bcd60da2c4913b7c93ef5ec
fe5af7a15129947869cf30856f1ef7655fff6036543771d8a414d3f425ff8969
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 20:04:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:38:25 GMT
Expires: Wed, 08 Feb 2023 03:38:24 GMT
Etag: "a2085989812bc7985bcd60da2c4913b7c93ef5ec"
Cache-Control: max-age=602704,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 534
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793588f0ce26b51d-OSL
www.facebook.com/tr/?id=906535086809084&ev=PageView&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&rl=&if=false&ts=1675368283538&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675368283537.120758746&it=1675368282980&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=906535086809084&ev=PageView&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&rl=&if=false&ts=1675368283538&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675368283537.120758746&it=1675368282980&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=906535086809084&ev=PageView&dl=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&rl=&if=false&ts=1675368283538&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675368283537.120758746&it=1675368282980&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 20:04:16 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ead5df3e30e38bb1a739ababb3292302
b5986cff7222999bf19e360ced4a445a2202c82c
768a8260af372a1ca06f826c3a3f84b6bc4523130134b32998baf75b64d7de4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.cureus.com&callback=_gfp_s_&client=ca-pub-9961010318990675&cookie=ID%3Da360ab8e2c220cdd%3AT%3D1675368255%3AS%3DALNI_MbpnG7eboMP8mXwFa6sgpX6MZfV0Q&gpic=UID%3D00000bae330753a0%3AT%3D1675368255%3ART%3D1675368255%3AS%3DALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A
142.250.74.98200 OK 200 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.cureus.com&callback=_gfp_s_&client=ca-pub-9961010318990675&cookie=ID%3Da360ab8e2c220cdd%3AT%3D1675368255%3AS%3DALNI_MbpnG7eboMP8mXwFa6sgpX6MZfV0Q&gpic=UID%3D00000bae330753a0%3AT%3D1675368255%3ART%3D1675368255%3AS%3DALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 15bccae9c7dc602e1bbd8700747253ba
88d999ab76d42b76c1f384fded5bed2bba8c5750
e8d90503179af6a1ff8d02ec571545ce193a9ae8f3fe8df263e012eec3d07521
GET /gampad/cookie.js?domain=www.cureus.com&callback=_gfp_s_&client=ca-pub-9961010318990675&cookie=ID%3Da360ab8e2c220cdd%3AT%3D1675368255%3AS%3DALNI_MbpnG7eboMP8mXwFa6sgpX6MZfV0Q&gpic=UID%3D00000bae330753a0%3AT%3D1675368255%3ART%3D1675368255%3AS%3DALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 20:04:16 GMT
server: cafe
cache-control: private
content-length: 200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
185.64.189.110200 OK 20 B URL HTTP/2 image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121
IP 185.64.189.110:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D3000fec7-8f0f-40cb-8e40-9137b8045121 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=v0gsn3b&ttd_tpi=1&ttd_puid=47&ttd_puid=UNK&ttd_puid=0&ttd_puid=null&ttd_puid=75c904c2-3895-4376-91b8-9b316381a716&ttd_puid=041cf61c-46b9-4557-ba14-e8467294d22f&ttd_puid=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=v0gsn3b&ttd_tpi=1&ttd_puid=47&ttd_puid=UNK&ttd_puid=0&ttd_puid=null&ttd_puid=75c904c2-3895-4376-91b8-9b316381a716&ttd_puid=041cf61c-46b9-4557-ba14-e8467294d22f&ttd_puid=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=v0gsn3b&ttd_tpi=1&ttd_puid=47&ttd_puid=UNK&ttd_puid=0&ttd_puid=null&ttd_puid=75c904c2-3895-4376-91b8-9b316381a716&ttd_puid=041cf61c-46b9-4557-ba14-e8467294d22f&ttd_puid= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:16 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
api.amplitude.com/
52.24.5.45200 OK 7 B IP 52.24.5.45:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1094
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:16 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-63dc1740-43ae31ff3b4b461f7d381ffd
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2527684&time=1675368282889&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4698780e-63eb-404e-889d-2931c1908eab"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 02-Feb-2024 20:04:16 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675368256:t=1675454656:v=2:sig=AQFFngzv2r43eJ_bOuIaw6EU47LCYJOE"; Expires=Fri, 03 Feb 2023 20:04:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzvRHLD74i1rsTTyGmWA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D762908DE5F74AA19E4C7C4DB81D526E Ref B: OSL30EDGE0218 Ref C: 2023-02-02T20:04:16Z
date: Thu, 02 Feb 2023 20:04:16 GMT
content-length: 0
X-Firefox-Spdy: h2
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 204
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:16 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 71c50cb909022f062ca4dabb60cd7dac
0d5048a4ca70bb942a02dbb1b5ac111960bdd473
172f35e8db404b0b3b944394ab4d92262a6cf0f3e16b9ff71bbeec5e8bb39912
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: max-age=169812
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:16 GMT
Etag: "63dbf7b1-118"
Expires: Sat, 04 Feb 2023 19:14:28 GMT
Last-Modified: Thu, 02 Feb 2023 17:49:37 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&gjid=1971400966&_gid=1525912581.1675368283&_u=YADAAUAAAAAAACAAI~&z=1503925999
64.233.165.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&gjid=1971400966&_gid=1525912581.1675368283&_u=YADAAUAAAAAAACAAI~&z=1503925999
IP 64.233.165.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&gjid=1971400966&_gid=1525912581.1675368283&_u=YADAAUAAAAAAACAAI~&z=1503925999 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.cureus.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 20:04:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
z.moatads.com/everydayhealthdfp606180883043/moatad.js
23.38.201.146200 OK 0 B URL HTTP/2 z.moatads.com/everydayhealthdfp606180883043/moatad.js
IP 23.38.201.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /everydayhealthdfp606180883043/moatad.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 68FW/Y7tyv6JuYvVntb+rCKdGlLmraYmrLL8DNlqQjgHfMD5MXmGPi7k45gpQTCsXLjxeLMSGq0=
x-amz-request-id: 4A0D5F13C42AF6E7
last-modified: Thu, 02 Jul 2020 17:30:38 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
accept-ranges: bytes
content-type: application/x-javascript
content-length: 0
server: AmazonS3
cache-control: max-age=28216
date: Thu, 02 Feb 2023 20:04:16 GMT
X-Firefox-Spdy: h2
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9367854&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&t=Cureus&cts=1675368284173&vi=623a605f54e2bcdfd4dec1077fd17e1d&nc=true&u=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1&b=112258907.1.1675368284171&cc=15
104.19.154.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9367854&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&t=Cureus&cts=1675368284173&vi=623a605f54e2bcdfd4dec1077fd17e1d&nc=true&u=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1&b=112258907.1.1675368284171&cc=15
IP 104.19.154.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=9367854&pu=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&t=Cureus&cts=1675368284173&vi=623a605f54e2bcdfd4dec1077fd17e1d&nc=true&u=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1&b=112258907.1.1675368284171&cc=15 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:16 GMT
content-type: image/gif
content-length: 45
cf-ray: 793588f4fd86b4f3-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 8c46eeed-e9e0-430e-a4eb-ec00bec762f0
x-robots-tag: none
set-cookie: __cf_bm=dHUmYA2L_IKZya9GsrdvUGTCkbf2y7H..M5587VcaTs-1675368256-0-AaL/uvjT9k2QqBFuZaJwy84aGlvswoMqldbYtOkmeFEKcAAv99gVimOxmXklc9DNKDocLd3/AZZxQEVmvmqtkT8=; path=/; expires=Thu, 02-Feb-23 20:34:16 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mK1NtS2t8OpN4EZQy5vFrKLAmqnm9NMPXAGNZy5mu%2F125l0sa29Bxq2zfO%2F%2BXFuxtRKqAx0Q%2FpMUEudfeHf8MMdmtTaxTAaLim1veCgjRpgl4VqZxNE0cUKEoSN%2BbjTg3h3i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 71c50cb909022f062ca4dabb60cd7dac
0d5048a4ca70bb942a02dbb1b5ac111960bdd473
172f35e8db404b0b3b944394ab4d92262a6cf0f3e16b9ff71bbeec5e8bb39912
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: max-age=169812
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 20:04:16 GMT
Etag: "63dbf7b1-118"
Expires: Sat, 04 Feb 2023 19:14:28 GMT
Last-Modified: Thu, 02 Feb 2023 17:49:37 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&_u=YADAAUAAAAAAACAAI~&z=1615499115
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&_u=YADAAUAAAAAAACAAI~&z=1615499115
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-40378117-1&cid=1071826051.1675368281&jid=1213178518&_u=YADAAUAAAAAAACAAI~&z=1615499115 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 20:04:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pcs/view?xai=AKAOjsvx7hUVMUUY108WSBBmO5FThR_FAux1ij8roIyc8JD53auc8cnkuRiRhSegJLH4hoTOURt6HMtnRVnerwc0XsHp69fp_rGH1eO2PjGy7RuxNE_Eo-rJuLfjcx9KsM7_8kW00Gpi2J2iZTPTJF67MJv36t9xnnVwUEMmrBK66y8m9EmYBprCbTH1tIoj-TwTvvV-CqQvV8ZkAwqCCAvruHjG2EE-Erk7xSwRrpq31jTxeqdzaVIp5o21vvEr6V7LfLJWlN1W7ebhpCpkf6nhnUK0F70hJRVQe4ZrhmLS5KZRx_jTqujiGJmq2Q-aG11CdqrAu6xC_KVQ&sai=AMfl-YReboN6Mftnk7mTtoEIXghcv86rVyWTRpNRdqdUGcpMCttkFJBFLNNYPcC1G_9wQpGDEeuzJcGdN8RTnkFqq2IM4qbJLdjxmEW4QoYzv6nueQUsfFbBTXJEj3fUK9GAYSVwlVXH5PZ09zXmcGVi&sig=Cg0ArKJSzBPkJP1vMTiBEAE&uach_m=[UACH]&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 securepubads.g.doubleclick.net/pcs/view?xai=AKAOjsvx7hUVMUUY108WSBBmO5FThR_FAux1ij8roIyc8JD53auc8cnkuRiRhSegJLH4hoTOURt6HMtnRVnerwc0XsHp69fp_rGH1eO2PjGy7RuxNE_Eo-rJuLfjcx9KsM7_8kW00Gpi2J2iZTPTJF67MJv36t9xnnVwUEMmrBK66y8m9EmYBprCbTH1tIoj-TwTvvV-CqQvV8ZkAwqCCAvruHjG2EE-Erk7xSwRrpq31jTxeqdzaVIp5o21vvEr6V7LfLJWlN1W7ebhpCpkf6nhnUK0F70hJRVQe4ZrhmLS5KZRx_jTqujiGJmq2Q-aG11CdqrAu6xC_KVQ&sai=AMfl-YReboN6Mftnk7mTtoEIXghcv86rVyWTRpNRdqdUGcpMCttkFJBFLNNYPcC1G_9wQpGDEeuzJcGdN8RTnkFqq2IM4qbJLdjxmEW4QoYzv6nueQUsfFbBTXJEj3fUK9GAYSVwlVXH5PZ09zXmcGVi&sig=Cg0ArKJSzBPkJP1vMTiBEAE&uach_m=[UACH]&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsvx7hUVMUUY108WSBBmO5FThR_FAux1ij8roIyc8JD53auc8cnkuRiRhSegJLH4hoTOURt6HMtnRVnerwc0XsHp69fp_rGH1eO2PjGy7RuxNE_Eo-rJuLfjcx9KsM7_8kW00Gpi2J2iZTPTJF67MJv36t9xnnVwUEMmrBK66y8m9EmYBprCbTH1tIoj-TwTvvV-CqQvV8ZkAwqCCAvruHjG2EE-Erk7xSwRrpq31jTxeqdzaVIp5o21vvEr6V7LfLJWlN1W7ebhpCpkf6nhnUK0F70hJRVQe4ZrhmLS5KZRx_jTqujiGJmq2Q-aG11CdqrAu6xC_KVQ&sai=AMfl-YReboN6Mftnk7mTtoEIXghcv86rVyWTRpNRdqdUGcpMCttkFJBFLNNYPcC1G_9wQpGDEeuzJcGdN8RTnkFqq2IM4qbJLdjxmEW4QoYzv6nueQUsfFbBTXJEj3fUK9GAYSVwlVXH5PZ09zXmcGVi&sig=Cg0ArKJSzBPkJP1vMTiBEAE&uach_m=[UACH]&adurl= HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 20:04:17 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 20:19:17 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 02 Feb 2023 20:04:17 GMT
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pcs/view?xai=AKAOjstC4ynoaIUt5PsBUkKW2hTX_cHZrxBpJ5FrX71bUYPcZ8LBu7gEqu9jafSjuRHxjOjUHvvejX_nXfd35iU8czTHHbC1QCRnpsTYOvWbd_Z9NUrY5jSMhBJaK463vLE66hB3orMcDeu4Ba5Pj62USEA35_Br0EmIDmIRc5T_kb-xB_ASMqLWOpQk5cdfIotqnS4FK7RFvSGfsxOa97UCC6_xD5PrAxrFz7ZrnFEMeqFknws5KIykwlTKNIzk-DOW0iC1t6NpePljaonhJLAxrsjB2DKQ1bucFhmOYSVkYtcnWyNfskY3Vd2ER3JarzDpTaa-QHq0yBWF&sai=AMfl-YTKwWV4G91628Gsqb6_YH1fFACy6Ln9G_QYgw7_45lH6Y0EJPqU4w-rAZ15Ks9lCi4zbzxutIVtV4YN2Gd60vQ1CPJTBtH2D488n85ft0WfSnWimJe6rZIOYakDKqwXwPuoohVdF_zOEg2XTIzH&sig=Cg0ArKJSzAfRG6Cn9mY8EAE&uach_m=[UACH]&adurl=
142.250.74.162200 OK 0 B URL HTTP/2 securepubads.g.doubleclick.net/pcs/view?xai=AKAOjstC4ynoaIUt5PsBUkKW2hTX_cHZrxBpJ5FrX71bUYPcZ8LBu7gEqu9jafSjuRHxjOjUHvvejX_nXfd35iU8czTHHbC1QCRnpsTYOvWbd_Z9NUrY5jSMhBJaK463vLE66hB3orMcDeu4Ba5Pj62USEA35_Br0EmIDmIRc5T_kb-xB_ASMqLWOpQk5cdfIotqnS4FK7RFvSGfsxOa97UCC6_xD5PrAxrFz7ZrnFEMeqFknws5KIykwlTKNIzk-DOW0iC1t6NpePljaonhJLAxrsjB2DKQ1bucFhmOYSVkYtcnWyNfskY3Vd2ER3JarzDpTaa-QHq0yBWF&sai=AMfl-YTKwWV4G91628Gsqb6_YH1fFACy6Ln9G_QYgw7_45lH6Y0EJPqU4w-rAZ15Ks9lCi4zbzxutIVtV4YN2Gd60vQ1CPJTBtH2D488n85ft0WfSnWimJe6rZIOYakDKqwXwPuoohVdF_zOEg2XTIzH&sig=Cg0ArKJSzAfRG6Cn9mY8EAE&uach_m=[UACH]&adurl=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstC4ynoaIUt5PsBUkKW2hTX_cHZrxBpJ5FrX71bUYPcZ8LBu7gEqu9jafSjuRHxjOjUHvvejX_nXfd35iU8czTHHbC1QCRnpsTYOvWbd_Z9NUrY5jSMhBJaK463vLE66hB3orMcDeu4Ba5Pj62USEA35_Br0EmIDmIRc5T_kb-xB_ASMqLWOpQk5cdfIotqnS4FK7RFvSGfsxOa97UCC6_xD5PrAxrFz7ZrnFEMeqFknws5KIykwlTKNIzk-DOW0iC1t6NpePljaonhJLAxrsjB2DKQ1bucFhmOYSVkYtcnWyNfskY3Vd2ER3JarzDpTaa-QHq0yBWF&sai=AMfl-YTKwWV4G91628Gsqb6_YH1fFACy6Ln9G_QYgw7_45lH6Y0EJPqU4w-rAZ15Ks9lCi4zbzxutIVtV4YN2Gd60vQ1CPJTBtH2D488n85ft0WfSnWimJe6rZIOYakDKqwXwPuoohVdF_zOEg2XTIzH&sig=Cg0ArKJSzAfRG6Cn9mY8EAE&uach_m=[UACH]&adurl= HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 20:04:17 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 20:19:17 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 02 Feb 2023 20:04:17 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6d0337cbc86cbd0ca1603b86b4df6b57
1e74e6e160d298ee0f4c536c3ecce8f6f6458031
aa2455fc3fbc892afddc744b433935ccb40f4f850e4915d29e69923fe251f5be
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:17 GMT
Last-Modified: Thu, 02 Feb 2023 19:44:37 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8RG7aAhJTUfgm5F77TMl8QIF1rkbimwAQTCflzc35T5viF9-h8sJog==
Age: 1180
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6d0337cbc86cbd0ca1603b86b4df6b57
1e74e6e160d298ee0f4c536c3ecce8f6f6458031
aa2455fc3fbc892afddc744b433935ccb40f4f850e4915d29e69923fe251f5be
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:17 GMT
Last-Modified: Thu, 02 Feb 2023 19:43:16 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FPtE5h7gE20z4ax0I8IQsUDFv500r_xExly3hYX4OpDeBIS3X0VLwA==
Age: 1261
reporting.powerad.ai/
54.234.151.247200 OK 2 B IP 54.234.151.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST / HTTP/1.1
Host: reporting.powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 181
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
public.cureus.com/article-show-redesign/siq-badge-hover.png
172.67.8.5200 OK 7.3 kB URL HTTP/2 public.cureus.com/article-show-redesign/siq-badge-hover.png
IP 172.67.8.5:0
File type PNG image data, 533 x 612, 8-bit colormap, non-interlaced\012- data
Hash 58550e65c958536ca39b106c3a93dec3
28f7bb1011a924dd9a3fa71b19f2e9cf15a87f29
6cadb93993e0ccbcfc6c1446d52eb94605898ed8df261ce9bdfc9d914e0ef5d0
GET /article-show-redesign/siq-badge-hover.png HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.2.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154; amplitude_id_5ad90e857b5a91e67cbd1d170c91177ccureus.com=eyJkZXZpY2VJZCI6IjU4Y2M5NDYwLTM0ZjYtNGI5MS1hZWQyLTcwNGQ1MDRjMGRlMFIiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTY3NTM2ODI4Mjg4MSwibGFzdEV2ZW50VGltZSI6MTY3NTM2ODI4Mjg4MiwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9; _gid=GA1.2.1525912581.1675368283; _gat_gtag_UA_40378117_1=1; _gat_gtag_UA_199748785_89=1; __gads=ID=a360ab8e2c220cdd-223a40388adb0099:T=1675368255:S=ALNI_Ma3ZTuel6pjJzttXxgi9txrJ4JDiA; __gpi=UID=00000bae330753a0:T=1675368255:RT=1675368255:S=ALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A; _fbp=fb.1.1675368283537.120758746; __hstc=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1; hubspotutk=623a605f54e2bcdfd4dec1077fd17e1d; __hssrc=1; __hssc=112258907.1.1675368284171
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: image/png
content-length: 7313
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15836
etag: "5c31e50d92b911288c2fea5b35d0a2f4"
last-modified: Tue, 10 Jan 2023 20:06:20 GMT
x-amz-id-2: ux/Dd2lhIDlq+jTdFPOPGLNp3/LM6ynbD360WUUtd9d2ahSYrTdzpmQJyxUKf5g2bBsgcbaK2qI=
x-amz-request-id: QAFCMVES2RVVBY9D
x-amz-version-id: null
cf-cache-status: HIT
age: 120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588f98cc9b529-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fdd29beecc70ee0b89e88355d91285a7
38233c566202c9a3f63a0946f44cf51a40ae3d67
c12e8ff1ccc72a0c073ce3487e63b4092dff3dcaa18daedaa4547a3c02da8d8e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C12E8FF1CCC72A0C073CE3487E63B4092DFF3DCAA18DAEDAA4547A3C02DA8D8E"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6706
Expires: Thu, 02 Feb 2023 21:56:03 GMT
Date: Thu, 02 Feb 2023 20:04:17 GMT
Connection: keep-alive
static.adsafeprotected.com/main.19.8.385.js
54.230.111.33200 OK 64 kB URL HTTP/2 static.adsafeprotected.com/main.19.8.385.js
IP 54.230.111.33:0
Hash 231f3b23aa653d526039c82e109cd5d6
37ce525b3dbba710fe99102a4e43b31f44d2e4f7
3c9b1190c1a65289d6346ee54d2b6a3698f66e6369a226422a97a4e41d4d624a
GET /main.19.8.385.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 18 Jan 2023 21:29:24 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 19:44:57 GMT
etag: W/"d4db5e05b3c00fb6a3a262869af20f38"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: VUpTdNSw556u8DTxBoj61VmLffpEPAG9
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q6vESiM9JxIAEUbkUBDHw5wLbxc2qMySXv4A_IJM_efD6etqbKO_HA==
age: 1290894
X-Firefox-Spdy: h2
report2.hb.brainlyads.com/statistics
54.84.92.154204 No Content 0 B URL HTTP/1.1 report2.hb.brainlyads.com/statistics
IP 54.84.92.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /statistics HTTP/1.1
Host: report2.hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-nm-host,x-nm-url
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 Feb 2023 20:04:17 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
report2.hb.brainlyads.com/statistics
54.84.92.154200 OK 0 B URL HTTP/1.1 report2.hb.brainlyads.com/statistics
IP 54.84.92.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /statistics HTTP/1.1
Host: report2.hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-nm-host: www.cureus.com
x-nm-url: https://www.cureus.com/users/26093-brent-thoma
Content-Type: application/json
Content-Length: 3009
Origin: https://www.cureus.com
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 Feb 2023 20:04:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
static.adsafeprotected.com/sca.17.6.2.js
54.230.111.33200 OK 23 kB URL HTTP/2 static.adsafeprotected.com/sca.17.6.2.js
IP 54.230.111.33:0
File type ASCII text, with very long lines (26279)
Hash 0c4c28f0653817a7982d1339cf6a3205
dc95d2be50d4f7d953412d89ee930051a89aa761
64ce3bca0d337ed9e700d12baa988f95f2e1de02883c6367f523194246ecbc89
GET /sca.17.6.2.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 21 Sep 2022 15:36:17 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Sep 2022 19:21:34 GMT
etag: W/"1f3488247c90bb5de253d3d0cb3b7458"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: go8nfBUviNCPCwnrYX1LpMW5hEx3ASGy
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WAnAtIFLE49kpYcHw2Yd2YhV7X03giXzJWqLbCkDLw5TBs8TaPxOmQ==
age: 11593681
X-Firefox-Spdy: h2
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
public.cureus.com/article-show-redesign/siq-badge-hover-gold.png
172.67.8.5200 OK 92 kB URL HTTP/2 public.cureus.com/article-show-redesign/siq-badge-hover-gold.png
IP 172.67.8.5:0
File type PNG image data, 667 x 612, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ed4aadde6721522509361d863b9d164
e808827c31d291ff7d46d1c03288f82f6c446869
b035bb7cd99c55d600297c84efede4ecaf0cddff8e86ce0e726cbacc4ec51603
GET /article-show-redesign/siq-badge-hover-gold.png HTTP/1.1
Host: public.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.2.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154; amplitude_id_5ad90e857b5a91e67cbd1d170c91177ccureus.com=eyJkZXZpY2VJZCI6IjU4Y2M5NDYwLTM0ZjYtNGI5MS1hZWQyLTcwNGQ1MDRjMGRlMFIiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTY3NTM2ODI4Mjg4MSwibGFzdEV2ZW50VGltZSI6MTY3NTM2ODI4Mjg4MiwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9; _gid=GA1.2.1525912581.1675368283; _gat_gtag_UA_40378117_1=1; _gat_gtag_UA_199748785_89=1; __gads=ID=a360ab8e2c220cdd-223a40388adb0099:T=1675368255:S=ALNI_Ma3ZTuel6pjJzttXxgi9txrJ4JDiA; __gpi=UID=00000bae330753a0:T=1675368255:RT=1675368255:S=ALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A; _fbp=fb.1.1675368283537.120758746; __hstc=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1; hubspotutk=623a605f54e2bcdfd4dec1077fd17e1d; __hssrc=1; __hssc=112258907.1.1675368284171
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: image/png
content-length: 91632
cf-bgj: imgq:100,h2pri
cf-polished: origSize=99387
etag: "a7681ec9325629169cb274b58df5fa21"
last-modified: Wed, 11 Jan 2023 16:18:31 GMT
x-amz-id-2: pwloM8oqyKwE/5oBgBbBUXuSnrk9ItByG3D0aFF/1DgXhEJwCVUbZKaXKw++U5Pq7qmnU9SFORE=
x-amz-request-id: EDPS6NCX57HXJ5HJ
x-amz-version-id: null
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588f98ce3b529-OSL
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=157577
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=157577
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=157577 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=154785
expires: Sat, 04 Feb 2023 15:04:03 GMT
date: Thu, 02 Feb 2023 20:04:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1675368282416
51.89.9.252204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?cb=1675368282416
IP 51.89.9.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1675368282416 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.65.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.65.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Wed, 18 Jan 2023 06:44:40 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 02 Feb 2023 20:04:18 GMT
Age: 58908
X-Served-By: cache-lga13626-LGA, cache-bma1668-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 189633
X-Timer: S1675368258.084355,VS0,VE0
Vary: Accept-Encoding
pixel.adsafeprotected.com/mon?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:a5d94256-edf1-7c98-6d85-38ddaeb15acc,c:3607v9,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-lj9zd,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:175,mot:0,app:0,maw:0,fm:tuJQArr+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:195,oid:c60d4ac0-a334-11ed-a640-daa461f80016,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
52.51.214.106200 OK 43 B URL HTTP/2 pixel.adsafeprotected.com/mon?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:a5d94256-edf1-7c98-6d85-38ddaeb15acc,c:3607v9,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-lj9zd,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:175,mot:0,app:0,maw:0,fm:tuJQArr+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:195,oid:c60d4ac0-a334-11ed-a640-daa461f80016,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
IP 52.51.214.106:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /mon?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:a5d94256-edf1-7c98-6d85-38ddaeb15acc,c:3607v9,sl:inView,em:true,fr:true,thd:1,mn:jsserver-primary-bb8697c85-lj9zd,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:175,mot:0,app:0,maw:0,fm:tuJQArr+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:195,oid:c60d4ac0-a334-11ed-a640-daa461f80016,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: app01.ie.303net.net
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/mon?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824,c:3607uA,sl:outOfView,em:true,fr:true,thd:1,mn:jsserver-experiment-primary-6d97fd7958-jplmq,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:925.986.336.280,am:i,cc:925.986.336.280,piv:0,obst:0,th:0,reas:l,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:139,mot:0,app:0,maw:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b*.8002%7C1b1%7C1c1%7C1d%7C1e,idMap:1b*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:162,oid:c60ada01-a334-11ed-b2c8-d21e55029c47,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
52.51.214.106200 OK 43 B URL HTTP/2 pixel.adsafeprotected.com/mon?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824,c:3607uA,sl:outOfView,em:true,fr:true,thd:1,mn:jsserver-experiment-primary-6d97fd7958-jplmq,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:925.986.336.280,am:i,cc:925.986.336.280,piv:0,obst:0,th:0,reas:l,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:139,mot:0,app:0,maw:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b*.8002%7C1b1%7C1c1%7C1d%7C1e,idMap:1b*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:162,oid:c60ada01-a334-11ed-b2c8-d21e55029c47,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0
IP 52.51.214.106:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /mon?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3=&adsafe_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&adsafe_type=abdq&adsafe_url=https%3A%2F%2Fwww.cureus.com%2F&adsafe_type=f&adsafe_jsinfo=,id:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824,c:3607uA,sl:outOfView,em:true,fr:true,thd:1,mn:jsserver-experiment-primary-6d97fd7958-jplmq,rg:ie,pt:1-5-15,wc:0.0.1280.939,ac:925.986.336.280,am:i,cc:925.986.336.280,piv:0,obst:0,th:0,reas:l,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:139,mot:0,app:0,maw:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b*.8002%7C1b1%7C1c1%7C1d%7C1e,idMap:1b*,pl:,rmeas:1,rend:1,renddet:IMG.qs,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:162,oid:c60ada01-a334-11ed-b2c8-d21e55029c47,v:19.8.385,sp:1,st:0,fwm:0,wr:1280.939,sr:1280.1024,ov:0 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: app03.ie.303net.net
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
198.47.127.19200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 198.47.127.19:0
File type ASCII text, with no line terminators
Hash 1fb8ce00e7620d8cf413b620451770e2
e27f0382fc8001515472925789c0ae9e1a5b0e4a
258e13e56b46ac43b2430be19e67ee1599e13f521ecb5afc46abc8dc95685308
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Wed, 3 May 2023 12:49:48 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Thu, 02 Feb 2023 20:04:16 GMT
content-length: 60
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 61294360-b266-473b-8e99-4a7eddd20d47
Set-Cookie: uuid2=3554620702826063505; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:18 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.173.215200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: f60ae8b8-a8be-4809-a49f-95e2a958c5f0
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
assets.cureus.com/uploads/figure/file/175873/content_card_1b226f4048c911ebadfbf9dbaa4c2020-Figure-1---Resized.png
172.67.8.5200 OK 200 kB URL HTTP/2 assets.cureus.com/uploads/figure/file/175873/content_card_1b226f4048c911ebadfbf9dbaa4c2020-Figure-1---Resized.png
IP 172.67.8.5:0
File type PNG image data, 460 x 258, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (199628 bytes)
Hash e4e2e342c716da509289ca3831c4b4d9
ae8b8fe0f9f75fd1221a831dd7d489d95d60f9b9
d45f63c0e22932ad88e76a8e2c9f8854d78255a659ca5749c86a2c8f901a7c16
GET /uploads/figure/file/175873/content_card_1b226f4048c911ebadfbf9dbaa4c2020-Figure-1---Resized.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.2.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154; amplitude_id_5ad90e857b5a91e67cbd1d170c91177ccureus.com=eyJkZXZpY2VJZCI6IjU4Y2M5NDYwLTM0ZjYtNGI5MS1hZWQyLTcwNGQ1MDRjMGRlMFIiLCJ1c2VySWQiOm51bGwsIm9wdE91dCI6ZmFsc2UsInNlc3Npb25JZCI6MTY3NTM2ODI4Mjg4MSwibGFzdEV2ZW50VGltZSI6MTY3NTM2ODI4Mjg4MiwiZXZlbnRJZCI6MSwiaWRlbnRpZnlJZCI6MCwic2VxdWVuY2VOdW1iZXIiOjF9; _gid=GA1.2.1525912581.1675368283; _gat_gtag_UA_40378117_1=1; _gat_gtag_UA_199748785_89=1; __gads=ID=a360ab8e2c220cdd-223a40388adb0099:T=1675368255:S=ALNI_Ma3ZTuel6pjJzttXxgi9txrJ4JDiA; __gpi=UID=00000bae330753a0:T=1675368255:RT=1675368255:S=ALNI_Mb9V60nRD6tZK3LBsOYVh35mhYK8A; _fbp=fb.1.1675368283537.120758746; __hstc=112258907.623a605f54e2bcdfd4dec1077fd17e1d.1675368284171.1675368284171.1675368284171.1; hubspotutk=623a605f54e2bcdfd4dec1077fd17e1d; __hssrc=1; __hssc=112258907.1.1675368284171
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/png
content-length: 199628
last-modified: Tue, 09 Mar 2021 18:35:49 GMT
etag: "e4e2e342c716da509289ca3831c4b4d9"
cache-control: max-age=315576000
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fX_v3AhcLS62E2cG95XC3BJfzOdH5jn0k9mAeCy8qilKxBTXJtcqSA==
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588f98ce4b529-OSL
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D5D2FA86D-7185-46BD-8306-BCF191E7066D%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D5D2FA86D-7185-46BD-8306-BCF191E7066D%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D5D2FA86D-7185-46BD-8306-BCF191E7066D%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=144007
expires: Sat, 04 Feb 2023 12:04:25 GMT
date: Thu, 02 Feb 2023 20:04:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 88b02c78c78105feaa8291e67d5668a6
c31c1324388669b09ebb6197ad3bc843cdc1b4ec
1dbc5513111679f8caa08fd620c4d395abc0650b724364916a7955fc05379452
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161417
Date: Thu, 02 Feb 2023 20:04:18 GMT
Etag: "63dbe3eb-1d7"
Expires: Sat, 04 Feb 2023 16:54:35 GMT
Last-Modified: Thu, 02 Feb 2023 16:25:15 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ErSgCTlyfx6mKo69xQmbQMHrSlHRsBfFEh2eJXRYXFC7zUuHDc88Uw==
Age: 1760
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 88b02c78c78105feaa8291e67d5668a6
c31c1324388669b09ebb6197ad3bc843cdc1b4ec
1dbc5513111679f8caa08fd620c4d395abc0650b724364916a7955fc05379452
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:18 GMT
Last-Modified: Thu, 02 Feb 2023 19:33:01 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UbsvAzYRWs8x0-MEHs52ioXhMudpk7M1ZFwK0Hx2lgCd8G7RrCnrnQ==
Age: 1877
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 88b02c78c78105feaa8291e67d5668a6
c31c1324388669b09ebb6197ad3bc843cdc1b4ec
1dbc5513111679f8caa08fd620c4d395abc0650b724364916a7955fc05379452
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 20:04:18 GMT
Etag: "63dbe3eb-1d7"
Last-Modified: Thu, 02 Feb 2023 19:33:10 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BP1L_SUYyG2cJ_nCsWOLH0BB7ocwCgT6hmyOg3jxFAISTYiV0fxxsA==
Age: 1868
www.cureus.com/users/26093-brent-thoma/articles
172.67.8.5200 OK 3.4 kB URL HTTP/2 www.cureus.com/users/26093-brent-thoma/articles
IP 172.67.8.5:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (18546), with no line terminators
Hash d135a11f5e3945b20999f0130f7cfbea
391913bf5af88b85b5f380af0d69b978a27174fe
ee12ecac9a17bab83bd3ba2fe6359b381081262060bd20e18223523631746f65
GET /users/26093-brent-thoma/articles HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
X-CSRF-Token: PSBn1ZtBO8JqtKzB+dMKXYcjGjHjBtjntkbBxGfXL1ETQMQYB5sJwjJjLFIzjdtuNPEFidnLUGDALOqeU2+ATg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _sess=041cf61c-46b9-4557-ba14-e8467294d22f.bf03d243-2e1c-40f8-920d-6c3969f62e79.1675368280.1; dmd-vid=bf03d243-2e1c-40f8-920d-6c3969f62e79; dmd-sid=041cf61c-46b9-4557-ba14-e8467294d22f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: application/json; charset=utf-8
cache-control: no-cache, no-store
etag: W/"af54fd21aa526ad8350e11120d3f2442"
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=2; path=/; secure
referrer=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma; path=/; expires=Thu, 02 Feb 2023 20:34:17 GMT; secure
_cureus_session=b29yK2NqaS9jSkR5U0x1MkJMU3hSVDQzcFExQlNWcVBJQ2ZxOWsvQmhDcXRkakVzekNpd0gzWlA0NHQwYjh3K2xBeU5oMVR2YW1YMDE3TFdkWG9EZ0c0S1VHL3h3Zk9nVWFwWFR3bkpLSTdIWEhwRGdPdnV2dHVFdUNDejByUHVvRG4vYUZ6Nmx3cEVWL2hxNCtiL3NwZWZWeXQ3S3pkS0p5cHFtblRxd24rcVhhdzBLdlZOd1pNYThMR0puZ3MzakkzSFVyY2xxN2h5cU13ZWtmcUNjS2lJK3ovZzQ4eWwxcStyYTFsTHlDeDRZQzE4V25BL21nRW8yWjd1TG5rb3R0eEpHUVpTQitKNFJYYWpBK0lVbkE9PS0td1BHQkpCQ041dnRLTVJScnlGNnduZz09--f78a972476f51ecf9c839be5dd33eb4b3af312ab; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 34791a38-e632-46f2-94e0-b25f50daa7f8
x-runtime: 2.619900
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588debf60b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824&tv=%7Bc:3607BR,pingTime:-10,time:612,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684%7D
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824&tv=%7Bc:3607BR,pingTime:-10,time:612,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684%7D
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824&tv=%7Bc:3607BR,pingTime:-10,time:612,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684%7D HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt07.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607wb,pingTime:-2,time:258,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:370,beZ:370,mfA:546,cmA:547,inA:547,inZ:549,prA:549,prZ:557,si:565,poA:566,poZ:574,cmZ:574,mfZ:574,loA:610,loZ:614,ltA:627,ltZ:628,mdA:370,mdZ:448%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:258,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B81~100%5D,as:%5B81~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,slid:%5Bgoogle_ads_iframe_/4213/edh.cureus/primarycare_0,google_ads_iframe_/4213/edh.cureus/primarycare_0__container__,edh-banner-3,content,main,container,root%5D,sinceFw:61,readyFired:true%7D&br=g
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607wb,pingTime:-2,time:258,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:370,beZ:370,mfA:546,cmA:547,inA:547,inZ:549,prA:549,prZ:557,si:565,poA:566,poZ:574,cmZ:574,mfZ:574,loA:610,loZ:614,ltA:627,ltZ:628,mdA:370,mdZ:448%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:258,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B81~100%5D,as:%5B81~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,slid:%5Bgoogle_ads_iframe_/4213/edh.cureus/primarycare_0,google_ads_iframe_/4213/edh.cureus/primarycare_0__container__,edh-banner-3,content,main,container,root%5D,sinceFw:61,readyFired:true%7D&br=g
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607wb,pingTime:-2,time:258,type:a,im:%7Bsf:0,pom:1,prf:%7BbeA:370,beZ:370,mfA:546,cmA:547,inA:547,inZ:549,prA:549,prZ:557,si:565,poA:566,poZ:574,cmZ:574,mfZ:574,loA:610,loZ:614,ltA:627,ltZ:628,mdA:370,mdZ:448%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:258,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B81~100%5D,as:%5B81~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,slid:%5Bgoogle_ads_iframe_/4213/edh.cureus/primarycare_0,google_ads_iframe_/4213/edh.cureus/primarycare_0__container__,edh-banner-3,content,main,container,root%5D,sinceFw:61,readyFired:true%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt02.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Fk,pingTime:-10,time:825,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684,sca:%7Bspg:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824%7D%7D
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Fk,pingTime:-10,time:825,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684,sca:%7Bspg:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824%7D%7D
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Fk,pingTime:-10,time:825,type:s,mvn:ZnNjPTEzLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNi4ydjEwMDJ8fDEyODB8fDF8fDF8fDI0fHwxMDI0fHwwfHwwfHwxfHxsYW5kc2NhcGUtcHJpbWFyeXx8MjR8fDUvNHx8NS80fHwwfHwxMjgw,no:MTcuNi4ydk1vemlsbGF8fE5ldHNjYXBlfHxufHxufHwwfHxufHxMaW51eCB4ODZfNjR8fEdlY2tvfHwyMDEwMDEwMXx8MHx8TW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NDsgcnY6MTA1LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvMTA1LjB8fDF8fDF8fG58fG4-,ch:n,fsc:17.6.2v222220222000022202200000220002000220002002220222222202000222000220200000000000222202200002202222200000000000020020000022200022222220022200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220022020222200222222020002200200022222222202222002002022002222200000000020200000000000000202220,asp:1675368285767%7C%7C4c90d1251a4ebe6fa0ff12989ffe7f2f%7C%7Cdf16c081c25306654a0efb89b8761a08%7C%7C93ffb972e81ec67b227057c3eb4de729%7C%7Cbbc0e2ae3827e4b360fb76976b72a632%7C%7C12db5e013e7e0e7564e5785cadf1f2a2%7C%7Ccd55c61c8225d1429f23a084614ce92c%7C%7Cdd35cf475f9af7893d38e19e813bb13c%7C%7C1663701684,sca:%7Bspg:62cd57ef-cc08-9a86-8c2d-ba5ca3aaa824%7D%7D HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt02.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ml,pingTime:1,time:1260,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1260,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1084~100%5D,as:%5B1084~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ml,pingTime:1,time:1260,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1260,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1084~100%5D,as:%5B1084~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ml,pingTime:1,time:1260,type:p,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1260,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1084~100%5D,as:%5B1084~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt08.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ms,pingTime:1,time:1267,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1267,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1090~100%5D,as:%5B1090~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ms,pingTime:1,time:1267,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1267,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1090~100%5D,as:%5B1090~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Ms,pingTime:1,time:1267,type:pf,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1267,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1090~100%5D,as:%5B1090~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt12.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Mv,pingTime:1,time:1270,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1271,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1094~100%5D,as:%5B1094~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:publ1,cmr:t%7D&br=g
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Mv,pingTime:1,time:1270,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1271,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1094~100%5D,as:%5B1094~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:publ1,cmr:t%7D&br=g
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607Mv,pingTime:1,time:1270,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1271,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1094~100%5D,as:%5B1094~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:publ1,cmr:t%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt04.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607My,pingTime:1,time:1273,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1273,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1096~100%5D,as:%5B1096~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:grpm1,cmr:t%7D&br=g
52.24.84.252200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607My,pingTime:1,time:1273,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1273,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1096~100%5D,as:%5B1096~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:grpm1,cmr:t%7D&br=g
IP 52.24.84.252:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=8002&asId=a5d94256-edf1-7c98-6d85-38ddaeb15acc&tv=%7Bc:3607My,pingTime:1,time:1273,type:c,clog:%5B%7Bpiv:100,vs:i,r:,w:728,h:90,t:194%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:1,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:1273,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:194,wc:0.0.1280.939,ac:270.127.728.90,am:i,cc:270.127.728.90,piv:100,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1096~100%5D,as:%5B1096~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:true,e:,tt:jload,dtt:0,fm:tuJQArp+11%7C12%7C13%7C1411%7C1412%7C15%7C16%7C17%7C18%7C19%7C1a%7C1b.8002%7C1b1%7C1b2%7C1c*.8002%7C1c1%7C1d%7C1e,idMap:1c*,rmeas:1,rend:1,renddet:IMG.qs,siq:195,sis:636,metricId:grpm1,cmr:t%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:18 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt14.or.303net.net
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/jload?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3=
52.51.214.106200 OK 13 kB URL HTTP/2 pixel.adsafeprotected.com/jload?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3=
IP 52.51.214.106:0
Hash cf180924e5e6220efbe59a298237bc67
7f8bb58482578568be4e6a4d0b2472e3280d156e
46af120ed75ee2efddd7e7fa0a12da3a11515d1c49e74fe29971ef0a72b83f07
GET /jload?anId=8002&campId=728x90&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851200&pubOrder=117330613&cb=1680351149&custom=leader1&custom2=&custom3= HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 63eaa871-aa32-4ba0-9481-3999f60fb497
Set-Cookie: uuid2=5536062763103932420; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 03-May-2023 20:04:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.173.215200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 02 Feb 2023 20:04:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 7e2628fa-b9ff-4456-b284-30d86a3aa6d8
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
www.medtargetsystem.com/partner/auth
34.230.237.180200 OK 0 B URL HTTP/2 www.medtargetsystem.com/partner/auth
IP 34.230.237.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /partner/auth HTTP/1.1
Host: www.medtargetsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.medtargetsystem.com
Connection: keep-alive
Referer: https://www.medtargetsystem.com/beacon/portal/?_url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma&_sid=041cf61c-46b9-4557-ba14-e8467294d22f&_vid=bf03d243-2e1c-40f8-920d-6c3969f62e79&_ak=226-9834-9D483CFC&_flash=false&_th=1675368280|1675368280|1
Cookie: s-DMDSESSID=716974bac91dad9068dfa509601962cb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.7 (Ubuntu)
vary: X-Forwarded-Proto
x-powered-by: PHP/7.0.19-1+deb.sury.org~trusty+2
x-robots-tag: noindex
X-Firefox-Spdy: h2
assets.cureus.com/packs/application-bf62a41d-3.css
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/application-bf62a41d-3.css
IP 172.67.8.5:0
GET /packs/application-bf62a41d-3.css HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: text/css
age: 3474
cf-bgj: minify
cf-polished: origSize=328492
etag: W/"63dbd451-5032c"
last-modified: Thu, 02 Feb 2023 15:18:41 GMT
vary: Accept-Encoding
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-id: Y1valfaWGXdWvukufhuPcqNKq879n1e8KbESoxXpasMmneE6AxI5rg==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81ca6b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.cureus.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.8.5200 OK 0 B URL HTTP/2 www.cureus.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.8.5:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
last-modified: Wed, 01 Feb 2023 11:49:52 GMT
etag: W/"63da51e0-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588d7fc63b529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 04 Feb 2023 20:04:12 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
assets.cureus.com/packs/js/application-60d67553e11a48ea2d2a.js
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/js/application-60d67553e11a48ea2d2a.js
IP 172.67.8.5:0
GET /packs/js/application-60d67553e11a48ea2d2a.js HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
age: 353
cf-bgj: minify
cf-polished: origSize=4483927
etag: W/"63dbd45a-446b57"
last-modified: Thu, 02 Feb 2023 15:18:50 GMT
vary: Accept-Encoding
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-id: K3j2Tm6SqRaFzc-_z1RHx5T8nK9--4tXopOk8akKuiRcvUoCw6I--w==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81cb0b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/jload?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3=
52.51.214.106200 OK 0 B URL HTTP/2 pixel.adsafeprotected.com/jload?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3=
IP 52.51.214.106:0
GET /jload?anId=8002&campId=336x280&pubId=23539933&chanId=21907982481&placementId=4683702200&pubCreative=138385851194&pubOrder=117330613&cb=214873269&custom=box1&custom2=&custom3= HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cureus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
assets.cureus.com/uploads/user_profile/avatar/250090/profile_1626198178-Headshot_from_Children's.png
172.67.8.5404 Not Found 0 B URL HTTP/2 assets.cureus.com/uploads/user_profile/avatar/250090/profile_1626198178-Headshot_from_Children's.png
IP 172.67.8.5:0
GET /uploads/user_profile/avatar/250090/profile_1626198178-Headshot_from_Children's.png HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Cookie: _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _li_dcdm_c=.cureus.com; _lc2_fpi=c7470ed62bb1--01gr9vpdzae0mv21qx3ecbzvmp; _pubcid=08f5670c-75b1-4680-844f-f501f9363154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 20:04:15 GMT
content-type: application/xml
x-cache: Error from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TIpOekoQOkF-Tku_Mu6qbNBHnarRvhElCCJamUDlIgqhkl8wxvQZHw==
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 793588e77d80b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.cureus.com/packs/application-bf62a41d-2.css
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/application-bf62a41d-2.css
IP 172.67.8.5:0
GET /packs/application-bf62a41d-2.css HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: text/css
age: 3474
cf-bgj: minify
cf-polished: origSize=309815
etag: W/"63dbd45a-4ba37"
last-modified: Thu, 02 Feb 2023 15:18:50 GMT
vary: Accept-Encoding
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-id: ayGEE8B-Dryt8A6ZpQhIiaCMf9U8qjTl3lVQ8nZpPX886GCIIvY-SQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81ca4b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-banner.com/v2/9367854/banner.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/v2/9367854/banner.js
IP 104.18.33.171:0
GET /v2/9367854/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: X6FRtpsRdz/jseQAqSBLfxdzJudoYCHVnQajLPRSmc+RICghOFxJ/XQWlrjblJ8Dv2KACh8lC0A=
x-amz-request-id: RPNV8PQ0B5V6X9X4
last-modified: Thu, 26 Jan 2023 18:48:24 GMT
etag: W/"ec39cab3894b5da162aa9d0fb7c32cd7"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: UJBoEDN6eFvWjKbUKu2BdVkRvxghhqSl
access-control-allow-origin: https://www.cureus.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Thu, 02 Feb 2023 20:03:05 GMT
cf-cache-status: HIT
age: 118
server: cloudflare
cf-ray: 793588db28f70b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.cureus.com/users/26093-brent-thoma/activities
172.67.8.5200 OK 0 B URL HTTP/2 www.cureus.com/users/26093-brent-thoma/activities
IP 172.67.8.5:0
GET /users/26093-brent-thoma/activities HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
X-CSRF-Token: PSBn1ZtBO8JqtKzB+dMKXYcjGjHjBtjntkbBxGfXL1ETQMQYB5sJwjJjLFIzjdtuNPEFidnLUGDALOqeU2+ATg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _sess=041cf61c-46b9-4557-ba14-e8467294d22f.bf03d243-2e1c-40f8-920d-6c3969f62e79.1675368280.1; dmd-vid=bf03d243-2e1c-40f8-920d-6c3969f62e79; dmd-sid=041cf61c-46b9-4557-ba14-e8467294d22f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store
content-security-policy:
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=2; path=/; secure
referrer=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma; path=/; expires=Thu, 02 Feb 2023 20:34:14 GMT; secure
_cureus_session=OWN5UUQ3NnFZU3ZtUEpGSHJLd2hHb2xSOTVvT2ZQWm9GSEc1OVU5TC9tZklWNks3K1F2dk9sYWVHZTBWaTJzWGgvc0VrNDh6Z21oQnpRSUNuSHZhSEYxbHNBQmh4Qm9zeHo3bTN6b0prRkJKbDF3VkJjWVIxUlk3SE4vL0ZpV0VTODA4L1d6bzlEOWFHdEJhSy9zNEVVN0FWaExFRjdmQlNJQnZPdFZDSGhVU2xvLzdGN1F5YUNvRy8yVEdOU1pENnJHdjh4YlNicmFkVktUakM4NmFrakdZTHY3ZmtvbnhjdDNYUlUvVGgvc09oNDlPVmd4dnQvbS9jZTdoUTVHVkR3eEpDTU54TmZrWEJRWWxLUGpydUE9PS0tL1IxNGx6WXB1TE16Vm02RGlJNXlKdz09--dc56554554402d7cd15a3bcae53b112efe567958; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 67e45e53-9a48-4508-83d7-da968b6d95a8
x-runtime: 0.892985
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588de8f16b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
powerad.ai/pubPls/?width=1268&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma
18.211.141.243200 OK 0 B URL HTTP/2 powerad.ai/pubPls/?width=1268&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma
IP 18.211.141.243:0
GET /pubPls/?width=1268&url=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Origin: https://www.cureus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:13 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: https://www.cureus.com
access-control-allow-headers: *
etag: W/"dc1-uqGwTGZkIWN5kO8RgKeitwp3Slk"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
assets.cureus.com/packs/js/jquery-240f6e8612a5c3ec6ea7.js
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/js/jquery-240f6e8612a5c3ec6ea7.js
IP 172.67.8.5:0
GET /packs/js/jquery-240f6e8612a5c3ec6ea7.js HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
age: 353
cf-bgj: minify
cf-polished: origSize=99080
etag: W/"63dbd451-18308"
last-modified: Thu, 02 Feb 2023 15:18:41 GMT
vary: Accept-Encoding
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-id: Kc3WYnZHXTSER_U703Wjox5OVu9qPExZOUiSH5ShHHR9vU-23aKpEQ==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81cadb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
powerad.ai/script.js
18.211.141.243200 OK 0 B IP 18.211.141.243:0
GET /script.js HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
accept-ranges: bytes
cache-control: public, max-age=172800
last-modified: Thu, 02 Feb 2023 11:31:53 GMT
etag: W/"33aa4-18611e5b932"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.cureus.com/users/26093-brent-thoma
172.67.8.5200 OK 0 B URL HTTP/2 www.cureus.com/users/26093-brent-thoma
IP 172.67.8.5:0
GET /users/26093-brent-thoma HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:11 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store
content-security-policy:
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=1; path=/; secure
cureus_gdpr=false; path=/; expires=Tue, 19 Jan 2038 11:14:17 GMT; secure
referer_id=; path=/; expires=Sat, 04 Mar 2023 20:04:11 GMT; secure
referrer=; path=/; expires=Thu, 02 Feb 2023 20:34:11 GMT; secure
_cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 04ce9277-575f-4749-b939-da9b33ef973d
x-runtime: 0.375170
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588d15988b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.cureus.com/packs/js/fastclick-bc55b4bd75800965f3f4.js
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/js/fastclick-bc55b4bd75800965f3f4.js
IP 172.67.8.5:0
GET /packs/js/fastclick-bc55b4bd75800965f3f4.js HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
age: 353
cf-bgj: minify
cf-polished: origSize=8846
etag: W/"63dbd451-228e"
last-modified: Thu, 02 Feb 2023 15:18:41 GMT
vary: Accept-Encoding
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-id: OeFd_rt5VShjrCVESlzkSkLcy9LSEsswfz8iHa475etN7OO9d4Ia4A==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81cafb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.cureus.com/packs/js/modernizr-edb93eed0abbef9b1dff.js
172.67.8.5200 OK 0 B URL HTTP/2 assets.cureus.com/packs/js/modernizr-edb93eed0abbef9b1dff.js
IP 172.67.8.5:0
GET /packs/js/modernizr-edb93eed0abbef9b1dff.js HTTP/1.1
Host: assets.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:12 GMT
content-type: application/javascript
age: 353
cf-bgj: minify
cf-polished: origSize=10815
etag: W/"63dbd45a-2a3f"
last-modified: Thu, 02 Feb 2023 15:18:50 GMT
vary: Accept-Encoding
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-id: C1Atof5cu2hMlmXB95HmTq3Cs7Rrxubei6q2FxEfhNpwUO5MhFR5ag==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
cf-cache-status: HIT
server: cloudflare
cf-ray: 793588d81cacb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=157577&sc=1&u=5D2FA86D-7185-46BD-8306-BCF191E7066D&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=157577&sc=1&u=5D2FA86D-7185-46BD-8306-BCF191E7066D&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=157577&sc=1&u=5D2FA86D-7185-46BD-8306-BCF191E7066D&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 20:04:17 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
www.cureus.com/users/26093-brent-thoma/coauthors
172.67.8.5200 OK 0 B URL HTTP/2 www.cureus.com/users/26093-brent-thoma/coauthors
IP 172.67.8.5:0
GET /users/26093-brent-thoma/coauthors HTTP/1.1
Host: www.cureus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cureus.com/users/26093-brent-thoma
X-CSRF-Token: PSBn1ZtBO8JqtKzB+dMKXYcjGjHjBtjntkbBxGfXL1ETQMQYB5sJwjJjLFIzjdtuNPEFidnLUGDALOqeU2+ATg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: announcement=1; cureus_gdpr=false; referer_id=; referrer=; _cureus_session=cXQzWFFZSURPdGF6ajNBSE94bkd5QjgzKzZzeFRkeXpFM1JEU1kyN0ZDSGl2RlhaUEpUeko4K2Vjc0RlekppcHZGd0RwbElXaGNlU3RYT0FpdVVBZlpma25ZRVR6ZzBNdDdqeVVYSHlYejZVRUN0MU1VeDMvam0xMGRBNnlBYkc4VlZoSmkwWTFEY2JQMXdDbVBXN0VVS05ucE95TUdjQXJ4S0YvQTZvOURQY0UzbW12cmF1NzZhbERZcCtDcFR6TCtaL1hFY245VStOaE9NRElNamFUemhZMGRPSkk1aFh4SnZlR0lId1dxQVBnMjR5NzdaMVdiSkNvTmNFa3NyOVNURkUyckNtaUwwT29SdWMxQ0lSTlE9PS0tSUVqSXZNK3hueTRBOVFJTUNHRTBRQT09--4c6d3cfd7d996540734a655490bf81a6c368d62b; _ga_4RFYJBBNXE=GS1.1.1675368280.1.0.1675368280.0.0.0; _ga=GA1.1.1071826051.1675368281; _sess=041cf61c-46b9-4557-ba14-e8467294d22f.bf03d243-2e1c-40f8-920d-6c3969f62e79.1675368280.1; dmd-vid=bf03d243-2e1c-40f8-920d-6c3969f62e79; dmd-sid=041cf61c-46b9-4557-ba14-e8467294d22f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 20:04:14 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store
content-security-policy:
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
set-cookie: announcement=2; path=/; secure
referrer=https%3A%2F%2Fwww.cureus.com%2Fusers%2F26093-brent-thoma; path=/; expires=Thu, 02 Feb 2023 20:34:14 GMT; secure
_cureus_session=YS95K2UweE54RkpjQ3dlaFhtQkZ2L29Dcml5YjJrUDJYZTAvRTFqcmQ4WkQzYWVnMXlhc004SnFtQTdzQTR0bnhvcFhvcjFTZjdqWThQRWFJdVVqMlA3UTUwWDFPK2dqanh2ZXJDS3VnWG9yZTBNUEZIZ05oc2dlYy9qRTQ0ejA2L3ZWMVhEK1VHSDlMZitSM0JXenE5dGVPV3ZCNnE2d2ZyWkI5R042Nmd1aUJDRTdxYjNraWRzbUdxeTVReE0rUkhaZTBPM3JQZlFFWEFYQWlGYXJSSkpJRzlNT094V0JwdzZ3VGxPWlFPcHVMRWhjYVJTUDUzM0dvcGwrWjN4ZldZdDFYV0hETDdEaXVaN1JCa3lmdGc9PS0tcWtIZmRuUkw2anRyUENuZGxORHp2Zz09--316c0c69faeddccf7094962882bfb0ed8f789896; path=/; secure; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: b65021c0-b7da-42ec-968b-4be8ed32102c
x-runtime: 0.792946
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793588de8f1ab529-OSL
content-encoding: br
X-Firefox-Spdy: h2