Report - www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3

Report Overview

Submitted URL
www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3
IP
104.18.123.114
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-04 14:51:00
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.227.59.33
cdn.cookielaw.org	502	2013-12-28T14:20:36Z	2023-03-13T05:12:20Z	4.0 kB	204 kB	104.16.148.64
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	299 kB	34.120.237.76
crossmark-cdn.crossref.org	21166	2018-08-30T11:00:34Z	2023-03-13T07:46:35Z	401 B	3.4 kB	143.204.55.53
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-13T05:22:57Z	565 B	449 B	162.247.243.29
acw.elsevier.com	30564	2017-01-29T15:06:21Z	2023-03-12T21:54:56Z	742 B	339 B	104.18.232.170
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	423 B	18 kB	104.17.24.14
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	216.58.211.3
geolocation.onetrust.com	802	2018-02-07T12:23:41Z	2023-03-13T05:59:21Z	442 B	517 B	104.18.27.85
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-13T05:15:33Z	463 B	393 B	104.16.56.101
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	2.4 kB	4.1 kB	93.184.220.29
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	394 B	630 B	142.250.74.106
www.annemergmed.com	990952	2013-01-05T08:31:38Z	2023-02-28T21:32:35Z	2.0 kB	2.9 kB	104.18.124.114
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
acw.sciencedirect.com	29822	2013-05-07T02:07:18Z	2023-03-12T21:54:56Z	747 B	5.1 kB	104.18.233.170
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-13T05:22:57Z	379 B	15 kB	151.101.2.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-04 14:51:27	medium	104.18.231.170	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	cdn.cookielaw.org/scripttemplates/otSDKStub.js	26 kB	2023-03-13	2024-02-26
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:29:58 Last Seen2024-02-26 19:47:30 Times Seen27 Hash eb5f773edabd6cb145a5ef495f1d4e57 79167a56792fc85f624078183bbd8941748ce730 83f8393c6593831a76ea84324c946029082b5c72507176c13387468d21c651ff Loading...

	http:blank	580 B	2023-03-13	2023-03-13
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:49:38 Last Seen2023-03-13 16:49:38 Times Seen1 Hash 70cca2d1ec2540cb27966b25f442286b 23984e4011aa334375900717799e5f128521f36e 1c69ce59010380d351d9792abf38a5cedbf223815c73ca44ea4f47b23000e785 Loading...

	www.annemergmed.com/400.jsp	360 B	2023-03-10	2024-01-14
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:35:31 Last Seen2024-01-14 20:08:27 Times Seen140 Hash 17c56835253047c205171a2d7656b9c7 108a452d6cb41d49d0cad0f3695cd6e65988baf0 b3d8d498c38fecab0cc4936ac274e78b3cc421fca0dd447e98a799fccca85664 Loading...

	www.annemergmed.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675512000	39 kB	2023-03-13	2023-03-13
Pretty URL www.annemergmed.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675512000 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:49:38 Last Seen2023-03-13 16:49:38 Times Seen1 Hash 614f76dc8d5a9adf449a4d73d5f0e845 7730beaad4e6edd3520b82dece3025b21b6ad986 2541ec2bd55f9bfef57eb57189a2199fa0f3ae19b23a4019dea5e9958d7afcf0 Loading...

	www.annemergmed.com/400.jsp	27 kB	2023-03-09	2024-04-21
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1728 Hash 0cb3bda9ab599b32b1491fe202989694 e33c2602047413a3645a809f2399c1a84ea6a7c7 c75937e884ef04dcc409e0ffc9d02b10798cd04016faf44c3ba94ae8f9d401cb Loading...

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	www.annemergmed.com/products/marlin/ha/releasedAssets/js/selected.bundle-aa4a570a7c0ec285268d.js	113 kB	2023-03-13	2023-03-14
Pretty URL www.annemergmed.com/products/marlin/ha/releasedAssets/js/selected.bundle-aa4a570a7c0ec285268d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:59:41 Last Seen2023-03-14 11:25:41 Times Seen1 Hash 1e3f87bc6c02c264f246b9f137903b13 06d31c13d94bd282225dc54c9fa75677613692f6 9afa9be60e6e2554f9dd9d4394f1d15747b012f4d894ce0c4742476fbba604ad Loading...

	js-agent.newrelic.com/nr-spa-1177.min.js	38 kB	2023-03-07	2024-04-21
Pretty URL js-agent.newrelic.com/nr-spa-1177.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:08 Last Seen2024-04-21 07:37:34 Times Seen15 Hash d89642b485486b2c9af6da463597333c e92c43649933a001f06bbe3aebeaeae0e7e40f1a 54cb1f867060c01677649ce2d5e65485b33ce06ea271cb4244cbdd22c31fe69a Loading...

	www.annemergmed.com/400.jsp	97 B	2023-03-09	2024-04-21
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1728 Hash 44e1f68404e37bd28d81b479a2d89328 2f2bd8f53a0f8fb99b64887c05c0432748b8827e 7a7b148c0f59f3c9a87735921e68fa39b5edd257f3e40f10a438018419ed5cfe Loading...

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/config/TeX-AMS-MML_HTMLorMML.js?V=2.7.1	244 kB	2023-03-09	2024-03-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/config/TeX-AMS-MML_HTMLorMML.js?V=2.7.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:23:32 Last Seen2024-03-05 10:10:46 Times Seen1111 Hash 6e2464653e773d225658176e400c0bc4 141e23c01a8e3d83ec4addaf5586eac6f57768ab 8df260b35bb9f49c0d937fcbf0ec13fb661b0d281528aec977aee6a8c3f83688 Loading...

	bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=3707&ck=1&ref=https://www.annemergmed.com/400.jsp&be=2078&fe=3135&dc=2818&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675522284947,%22n%22:0,%22f%22:1836,%22dn%22:1836,%22dne%22:1836,%22c%22:1836,%22s%22:1836,%22ce%22:1836,%22rq%22:1838,%22rp%22:2044,%22rpe%22:2044,%22dl%22:2053,%22di%22:2790,%22ds%22:2817,%22de%22:2971,%22dc%22:3134,%22l%22:3134,%22le%22:3141%7D,%22navigation%22:%7B%7D%7D&fcp=2781&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=3707&ck=1&ref=https://www.annemergmed.com/400.jsp&be=2078&fe=3135&dc=2818&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675522284947,%22n%22:0,%22f%22:1836,%22dn%22:1836,%22dne%22:1836,%22c%22:1836,%22s%22:1836,%22ce%22:1836,%22rq%22:1838,%22rp%22:2044,%22rpe%22:2044,%22dl%22:2053,%22di%22:2790,%22ds%22:2817,%22de%22:2971,%22dc%22:3134,%22l%22:3134,%22le%22:3141%7D,%22navigation%22:%7B%7D%7D&fcp=2781&jsonp=NREUM.setToken IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	www.annemergmed.com/400.jsp	758 B	2023-03-13	2023-03-13
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:49:38 Last Seen2023-03-13 16:49:38 Times Seen1 Hash 561704bb7fc994f0c7414d5d89e72e59 62ac1e35bc5abfd947c0726738423c093a0fd483 277444eaad28e04b1be50c933e3bb975e5888da2df6cbf670e7a820b606f9ecb Loading...

	www.annemergmed.com/wro/lz4b~product.js	607 kB	2023-03-13	2023-07-26
Pretty URL www.annemergmed.com/wro/lz4b~product.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:59:41 Last Seen2023-07-26 20:24:30 Times Seen102 Hash f6acbbb69910bdb270b84a37661466e0 6fab12f4a5f86144aca7abf2e929b9dc29c6e4d9 e4a0a70c42b183e5fa93c7b4ca0be847b187ee2ba17a850b4ab5806d179034a2 Loading...

	www.annemergmed.com/400.jsp	192 B	2023-03-08	2024-04-21
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:06:22 Last Seen2024-04-21 01:34:51 Times Seen1740 Hash 96c1ce644d9d465b469ab9dc89e413a9 61f03de51d3e8f76e9f9962b77f86cdbead22355 7f1c264be4c54a63fad9b809cfee7876afff23f8d5c0e51355bb2a9f492d4f43 Loading...

	www.annemergmed.com/400.jsp	321 B	2023-03-13	2024-02-05
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:28:41 Last Seen2024-02-05 23:44:32 Times Seen32 Hash fbc01efa6e3ff57f05f2906f58f7bd69 b15758e2a691b5bc7c7735f4e8c6c9bca7a8723d fe25d9ec46f7782a815ae6c9fd7785bb692a915824058e156a5053d1b690738d Loading...

	www.annemergmed.com/400.jsp	283 B	2023-03-09	2024-04-21
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1732 Hash 7f2a8bf0036495b2afd4ab72d414c5e0 e16ab2e253312c5a038a2b893193bc32964c0be1 634cb36d84a9f495c34ad9dece675716e6dcb7778165632ea7b4667be8d0aad6 Loading...

	www.annemergmed.com/400.jsp	51 kB	2023-03-09	2023-03-26
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2023-03-26 04:57:09 Times Seen3 Hash e751b0c9e643f28052fefcbf025cdd6e 69770e460efd2d70ffa54fae7bc2c21f6bc558fe 81ebcb7051521d852ccc5d9669c89fda0644597c2bcaf8e67354529659425137 Loading...

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML	63 kB	2023-03-07	2024-03-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:09 Last Seen2024-03-05 10:10:45 Times Seen1223 Hash 49565b9ce89c64da075a5a39969b366e 30fedc6c732ef68bff3ef42016c7610d70a00289 48344fd55558bbeb600062a175d052979f9ece87c7299788f8ecf16a46c87bf6 Loading...

	www.annemergmed.com/400.jsp	683 B	2023-03-09	2024-04-21
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1730 Hash 569aeb51a8fcd058de77bc3b9f4d9a9a 5038218c35697fd2e4bce67afcdf73c7dbdf9be9 8afd29cffbcfce623249e115e9f3039e21d4cedb9c6a4a0580c6b4fbb515bb39 Loading...

	www.annemergmed.com/400.jsp	1.0 kB	2023-03-10	2024-01-14
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:35:31 Last Seen2024-01-14 20:08:27 Times Seen140 Hash c7678dbd459f7c3dc9e44d821551c09e 551d3b937969c799b83e8803b75cd588eaf20d2d 5aac80c9bb59f078b67103079e46a576414761645548d0486baedbba57128614 Loading...

	www.annemergmed.com/400.jsp	1.4 kB	2023-03-13	2023-03-13
Pretty URL www.annemergmed.com/400.jsp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:49:38 Last Seen2023-03-13 16:49:38 Times Seen1 Hash 18de3addb194c4de944f60cfe092ac29 fa8173fb35b8d49ad64037c815560dd07e799e26 b1ddef71f47b28254051564827d492e0029aed5798a6d15c540f3d49efcaecaf Loading...

HTTP Transactions (50)

	URL	IP	Response	Size
	www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3	104.18.124.114	301 Moved Permanently	0 B
URL HTTP/1.1 www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3 IP 104.18.124.114:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3 HTTP/1.1 Host: www.annemergmed.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1 HTTP/1.1 301 Moved Permanently Date: Sat, 04 Feb 2023 14:50:49 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 04 Feb 2023 15:50:49 GMT Location: https://www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3 Set-Cookie: __cf_bm=pY79TuC5SxR2Ze3V5GZbv10V52AN_UmDDDNNTLaGbqw-1675522249-0-AUOxgTXI01HSij3E6Uv4i20qj/j2tJdyip2fn90W7GwPNciOXeB/qCMJ6N0utxMoAyr45sWbPBTdmqHXkab/A04=; path=/; expires=Sat, 04-Feb-23 15:20:49 GMT; domain=.www.annemergmed.com; HttpOnly; SameSite=None Server-Timing: cf-q-config;dur=4.9999998736894e-06 Vary: Accept-Encoding Server: cloudflare CF-RAY: 79443888bc29b51b-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cdc095521e9ee2606059be447d1fdd5 02b5d0a5b5823e2338daf7e144700babe2a213af 8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5648 Expires: Sat, 04 Feb 2023 16:24:57 GMT Date: Sat, 04 Feb 2023 14:50:49 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9185 Expires: Sat, 04 Feb 2023 17:23:54 GMT Date: Sat, 04 Feb 2023 14:50:49 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 04 Feb 2023 14:43:38 GMT content-type: application/json age: 431 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16840 Expires: Sat, 04 Feb 2023 19:31:29 GMT Date: Sat, 04 Feb 2023 14:50:49 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: XSYc6NfLTw5Yn+CoYwgLGhcCUt6IP6XOSbIdOloO+ap/GQfyqvXnUz2mNHmWdcUalC99TuCSebj4mwt7SMcxOg== x-amz-request-id: GFGEM587YFC8SMN0 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 04 Feb 2023 13:52:51 GMT age: 3478 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 04 Feb 2023 14:50:49 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash e97503e21443af4203a2c85b3e7d106a 0ebb8882bed99df9045c3e706e3be48083ca9faf ca0c0026a7566c4f0358f80b8a4f9bc90dd609634b1e48f21ce5079aec04719d HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=114343 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:49 GMT Etag: "63dd8c70-116" Expires: Sun, 05 Feb 2023 22:36:32 GMT Last-Modified: Fri, 03 Feb 2023 22:36:32 GMT Server: nginx Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash e97503e21443af4203a2c85b3e7d106a 0ebb8882bed99df9045c3e706e3be48083ca9faf ca0c0026a7566c4f0358f80b8a4f9bc90dd609634b1e48f21ce5079aec04719d HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 0 Cache-Control: max-age=114343 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:49 GMT Etag: "63dd8c70-116" Expires: Sun, 05 Feb 2023 22:36:32 GMT Last-Modified: Fri, 03 Feb 2023 22:36:32 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 278`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 04 Feb 2023 14:07:19 GMT age: 2610 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15645 Expires: Sat, 04 Feb 2023 19:11:35 GMT Date: Sat, 04 Feb 2023 14:50:50 GMT Connection: keep-alive`

	push.services.mozilla.com/	44.227.59.33	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.227.59.33:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: dtqJ75yErvvPbJw8vwIUgQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: xVG8o59v6Lgr3W1hayLNnf9bRpA=`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 774cd68fd1bce07edee4674877f5741f d2a5f0402e42e38a91686b227446ed829f5a4179 95b5a9bf4f5a0db8887f06488c55523cc19e6be7294566b466bb4164f0aee9f6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3933 Cache-Control: max-age=146044 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:51 GMT Etag: "63ddf8ea-117" Expires: Mon, 06 Feb 2023 07:24:55 GMT Last-Modified: Sat, 04 Feb 2023 06:19:22 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 279`

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	104.16.148.64	200 OK	8.4 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (25592) Size 8.4 kB (8384 bytes) Hash e248bb3ed9070ee48f0b5bc674e6a49d 46a6ac373399405df390e910c580cf850dce9886 74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b HTTP Headers `GET /scripttemplates/otSDKStub.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:51 GMT content-type: application/javascript content-length: 8384 content-encoding: gzip content-md5: 4ki7PtkHDuSPC1vGdOaknQ== last-modified: Thu, 02 Feb 2023 13:33:36 GMT etag: 0x8DB05221689032C x-ms-request-id: 3a8b6a68-201e-0101-2064-379f4e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 72740 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79443895baaafac4-OSL X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML	104.17.24.14	200 OK	17 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (62402) Size 17 kB (16889 bytes) Hash cb846e03466ee7b1a2ad7477006b5313 e65f2c58f23d7b32439d4183314a9d31ff2b4f7d 593f76955ee4d6e03f556d4c7bdd8e19ab8f20a77726a64fc5d760db480f4f4a HTTP Headers `GET /ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:51 GMT content-type: application/javascript; charset=utf-8 content-length: 16889 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03f13-f648" last-modified: Mon, 04 May 2020 16:13:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 6371373 expires: Thu, 25 Jan 2024 14:50:51 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ai071X97sOMOJl6ZtuU4dnyGaJbS2Y4%2Bmdts3EkZpN%2FAgTYUY%2Fk5Djg58aCHucJdH3r2%2Ff%2FptrzVZRG4Xa3LxbF%2B5AfpKp3NanY%2FMS1ypAKFiLtCcm0%2B%2F%2Fiw93E552aKPXs3%2FihK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79443895c8e61c12-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 6aefb70fad66455d4639d0f3eb57f01b fcaad323ea9292c1a6a33889af408ebddb1cba10 b62ee4abe6080c6a95543a48f3224eb31ef7a8fc200fac4a9874c8e54790e7bd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5433 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:51 GMT Last-Modified: Sat, 04 Feb 2023 13:20:18 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 278`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.cookielaw.org/consent/696f9cc1-fae1-4b89-973f-0ea151326d45/696f9cc1-fae1-4b89-973f-0ea151326d45.json	104.16.148.64	200 OK	59 kB
URL HTTP/2 cdn.cookielaw.org/consent/696f9cc1-fae1-4b89-973f-0ea151326d45/696f9cc1-fae1-4b89-973f-0ea151326d45.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type data Size 59 kB (58737 bytes) Hash 3156ea37d9bc3a42153e3fa99c5a0904 a702700c925036c3cdc995f58063ed378ff5c943 619d011034206b94991d0a633a53cc29215a662261b1832b485043b4873de4b2 HTTP Headers `GET /consent/696f9cc1-fae1-4b89-973f-0ea151326d45/696f9cc1-fae1-4b89-973f-0ea151326d45.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.annemergmed.com Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:51 GMT content-type: application/x-javascript content-length: 1616 cache-control: public, max-age=86400 content-encoding: gzip content-md5: /JhgsZrpYBdcNhKGJLJS/Q== last-modified: Wed, 04 Jan 2023 11:36:38 GMT etag: 0x8DAEE47F1406847 x-ms-request-id: 5e98c710-a01e-0139-4130-20de17000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT age: 25874 expires: Sun, 05 Feb 2023 14:50:51 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 794438961dddfac0-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19770 Expires: Sat, 04 Feb 2023 20:20:21 GMT Date: Sat, 04 Feb 2023 14:50:51 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19770 Expires: Sat, 04 Feb 2023 20:20:21 GMT Date: Sat, 04 Feb 2023 14:50:51 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19770 Expires: Sat, 04 Feb 2023 20:20:21 GMT Date: Sat, 04 Feb 2023 14:50:51 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19770 Expires: Sat, 04 Feb 2023 20:20:21 GMT Date: Sat, 04 Feb 2023 14:50:51 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19770 Expires: Sat, 04 Feb 2023 20:20:21 GMT Date: Sat, 04 Feb 2023 14:50:51 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8527 bytes) Hash 6661b7263315f5eb3cd2465f671e1fcd b7b5831c6b3ccc41d7a980b6088adc10ff8785f1 eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8527 x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyEC3FyboAMFe0A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:33 GMT etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1" content-type: image/jpeg age: 60018 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11565 bytes) Hash e366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11565 x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fboIrFGboAMFyyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 21:48:04 GMT age: 61367 etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg	34.120.237.76	200 OK	7.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.2 kB (7249 bytes) Hash d7afd5ce8fb9ec7b62e528bf97705e49 afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3 b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7249 x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD9GH5goAMF_ag= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:21 GMT age: 60030 etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg	34.120.237.76	200 OK	44 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 44 kB (44509 bytes) Hash c6fa33d4d4be04aa22f6e2377de4e2f9 e9ffa776489dabf66e27a014a0589cd2836feeeb 9c5a4340c25436bb1e6e8d2ba32faba6f58582888fc34c35837734ce8fee5a7f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10253 x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7GGv5IAMFu8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:32 GMT age: 60019 etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg	34.120.237.76	200 OK	180 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 180 kB (179822 bytes) Hash ce70960ca77265f1572be99105548f65 311a6a179bcaf5a5896502891f23894c582423cf 8801273f64acc7aa91c6eef315a25846144ab114d21c00b5886d2ca257a412e2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9141 x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD8zE5lIAMF1HA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:13:30 GMT age: 59841 etag: "8e674830a97d8ce3818132fda197db4f0289d316" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg	34.120.237.76	200 OK	41 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 41 kB (40779 bytes) Hash 910eecccb009e07e28193b369c96d69a ae46f0373ea6e689ff1060cd22132a4105c51cdf e0e0a2057cee6d5192ef2d140ec74d0e6ff6f170b992b847818d5c4c695b0993 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5174 x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7EFAHIAMFQQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:21 GMT age: 60030 etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 9acd4d5696751ef91b09ea5cd928f29b 950c68386c2ec5de07d4dc56b50acc61234d0fde 2c0d7f9f8b67a32ddecaff61cca93c2ba76144ed8440d8d49b4ca90beeb1e310 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1280 Cache-Control: max-age=111687 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:51 GMT Etag: "63dd7d12-117" Expires: Sun, 05 Feb 2023 21:52:18 GMT Last-Modified: Fri, 03 Feb 2023 21:30:58 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 279`

	crossmark-cdn.crossref.org/widget/v2.0/style.css	143.204.55.53	200 OK	3.0 kB
URL HTTP/1.1 crossmark-cdn.crossref.org/widget/v2.0/style.css IP 143.204.55.53:0 ASN #16509 AMAZON-02 File type ASCII text Size 3.0 kB (3010 bytes) Hash 9aa8df67089e6012dee55f720e9dd13d 44c7910f0ee9ca31b82efe1e02a12d485c313c33 a4a43143f9e6f7643bb3d3bd7287638c70ade9fda687dd8bd58fd1dd91b6c988 HTTP Headers `GET /widget/v2.0/style.css HTTP/1.1 Host: crossmark-cdn.crossref.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: text/css Content-Length: 3010 Connection: keep-alive Last-Modified: Thu, 25 May 2017 15:06:27 +0000 Server: http-kit permissions-policy: interest-cohort=() Date: Sat, 04 Feb 2023 11:22:09 GMT X-Cache: Hit from cloudfront Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: y7lRUR0yc75T6gdp6ULLIL_W-G3Dag82yET02Ui_jNZT0b9-3dkHjQ== Age: 12525`

	acw.sciencedirect.com/SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f	104.18.233.170	404 Not Found	4.8 kB
URL HTTP/2 acw.sciencedirect.com/SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f IP 104.18.233.170:0 ASN #13335 CLOUDFLARENET File type data Size 4.8 kB (4763 bytes) Hash cd9d3e7f5be467078860e2efee324738 e25f1957cc39ba4ab73e3a971dd5a5fa37b42b39 29720dccf397ee114f0c977351c00195caf074fcc6dc0b838372638f2216940c HTTP Headers GET /SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f HTTP/1.1 Host: acw.sciencedirect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 404 Not Found date: Sat, 04 Feb 2023 14:50:51 GMT content-type: text/html cf-cache-status: DYNAMIC set-cookie: __cflb=02DiuEUZgWyrMRgnWqdShCPZ1oy3hj9hmQba5VT3cjWGC; SameSite=Lax; path=/; expires=Sun, 05-Feb-23 13:50:51 GMT; HttpOnly server: cloudflare cf-ray: 7944389948160b3d-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 114ad279908587d66b2888bab13bbd3f ce202869a9874ec805f88a205d9754d9a92bc94d 75ca287d6e6952846b18534876133783dd4f5dd507b1fc36364b2379150c8cf9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5609 Cache-Control: max-age=141930 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:52 GMT Etag: "63dde24d-118" Expires: Mon, 06 Feb 2023 06:16:22 GMT Last-Modified: Sat, 04 Feb 2023 04:42:53 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 280`

	cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js	104.16.148.64	200 OK	94 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 94 kB (93482 bytes) Hash b8f16acb1b6bc46a89b3202f07b4674a cb170c527fd1d700bb672f2f36802081fd4014aa 8360a3b396c1e821e9b04878d2a56df5697a1a75044d84bb8b849b1bd6e5ff07 HTTP Headers `GET /scripttemplates/202211.2.0/otBannerSdk.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: application/javascript content-length: 93482 content-encoding: gzip content-md5: uPFqyxtrxGqJsyAvB7RnSg== last-modified: Mon, 12 Dec 2022 17:31:45 GMT etag: 0x8DADC66BDFA5EC7 x-ms-request-id: cffcc2f9-101e-0024-13c4-0e41a8000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 56533 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389c789cfac4-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/consent/696f9cc1-fae1-4b89-973f-0ea151326d45/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json	104.16.148.64	200 OK	16 kB
URL HTTP/2 cdn.cookielaw.org/consent/696f9cc1-fae1-4b89-973f-0ea151326d45/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators Size 16 kB (15635 bytes) Hash ec7230592c14b44a5eb08535d1e3b6a4 9beb24b59c4d6bcd020de706e1e1d6d8aaa1bdde 9ab2e7c43564f7b38d234753ef7aa8b4fd9266f20cc339f4af7c4b0aec6942b2 HTTP Headers `GET /consent/696f9cc1-fae1-4b89-973f-0ea151326d45/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.annemergmed.com/ Origin: https://www.annemergmed.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: application/x-javascript content-length: 15635 cache-control: public, max-age=86400 content-encoding: gzip content-md5: 7HIwWSwUtEpesIU10eO2pA== last-modified: Wed, 04 Jan 2023 11:36:31 GMT etag: 0x8DAEE47ED59AC0D x-ms-request-id: e069b5ca-101e-0049-6030-20eb86000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT age: 5845 expires: Sun, 05 Feb 2023 14:50:52 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389d6b53fac0-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json	104.16.148.64	200 OK	12 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (50353) Size 12 kB (12540 bytes) Hash 9811a793b217b745126d89976508663b d6dea1e8161a876f58da90838ed3fc2e65c4a29c 3cafd8fb67f27641cb7e2164da324b00fef2b68dbec02aaefcba72820b659edf HTTP Headers `GET /scripttemplates/202211.2.0/assets/v2/otPcCenter.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.annemergmed.com/ Origin: https://www.annemergmed.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: application/json content-length: 12540 content-encoding: gzip content-md5: mBGnk7IXt0USbYmXZQhmOw== last-modified: Mon, 12 Dec 2022 17:31:37 GMT etag: 0x8DADC66B90C98A8 x-ms-request-id: a81b8e02-a01e-017d-1f69-1f027b000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 5845 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389d9b99fac0-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json	104.16.148.64	200 OK	3.0 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (11167) Size 3.0 kB (3020 bytes) Hash bcef00fda6caa683da714aef4a4f4e4b 64b093a6500c547a9d678af6cbca1ce683bac5c5 19dbb640f58f6a90958b72d7fdd6cd96692fb10ccba74d926294679ca129b0bc HTTP Headers `GET /scripttemplates/202211.2.0/assets/otFlat.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.annemergmed.com/ Origin: https://www.annemergmed.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: application/json content-length: 3020 content-encoding: gzip content-md5: vO8A/abKpoPacUrvSk9OSw== last-modified: Mon, 12 Dec 2022 17:31:35 GMT etag: 0x8DADC66B7AF38D0 x-ms-request-id: e472ac4a-601e-0149-5569-1fadd3000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 5845 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389d9b8ffac0-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/logos/static/ot_company_logo.png	104.16.148.64	200 OK	4.0 kB
URL HTTP/2 cdn.cookielaw.org/logos/static/ot_company_logo.png IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type PNG image data, 600 x 106, 8-bit colormap, non-interlaced\012- data Size 4.0 kB (4036 bytes) Hash 13cfac93f102cca813515b432e292220 2515da7707d11c89185c9021f0000cffbe0578f9 a335fc1da4a5ffc1fcacfa3eab57506faa41f026954496becb59cf5fbcd99d0e HTTP Headers `GET /logos/static/ot_company_logo.png HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: image/png content-length: 4036 content-md5: E8+sk/ECzKgTUVtDLikiIA== last-modified: Thu, 02 Feb 2023 13:33:39 GMT etag: 0x8DB052217DDADB5 x-ms-request-id: db08534d-301e-007c-090c-3745d3000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 69915 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389df9fffac4-OSL X-Firefox-Spdy: h2

	js-agent.newrelic.com/nr-spa-1177.min.js	151.101.2.137	200 OK	14 kB
URL HTTP/2 js-agent.newrelic.com/nr-spa-1177.min.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32009) Size 14 kB (14161 bytes) Hash 4ba49e6e2e8de735637e0c8b6bd78858 34abc5e4164ce1067b16ff65a7b82de91e79b0c1 02558502ecdf45fdf6d60eda833fde0842f319e7bfab164d153fdee391e6f455 HTTP Headers `GET /nr-spa-1177.min.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: oNyEtzwXpQTnWbJq6+i0mg+poyPg66gSCc63dciMBMTf/yhH++wZtO6XN8Ceoxwtv351b9vs+mQ= x-amz-request-id: SVJDZWVEZCC0BNB5 last-modified: Tue, 18 Aug 2020 17:23:34 GMT etag: "d89642b485486b2c9af6da463597333c" x-amz-version-id: null content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Sat, 04 Feb 2023 14:50:52 GMT via: 1.1 varnish x-served-by: cache-bma1657-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1675522253.634888,VS0,VE1 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 14161 X-Firefox-Spdy: h2

	geolocation.onetrust.com/cookieconsentpub/v1/geo/location	104.18.27.85	200 OK	123 B
URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP 104.18.27.85:0 ASN #13335 CLOUDFLARENET File type data Size 123 B (123 bytes) Hash dd7df25a95605a9049f4d3b1f3e213c5 18a7d881c891eb08126e2931230a004282c30795 1b2b561429d8def700a8e8b67e78d2cd8c6726a1f88f5b754c85625e9872376f HTTP Headers `GET /cookieconsentpub/v1/geo/location HTTP/1.1 Host: geolocation.onetrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.annemergmed.com Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: application/json access-control-allow-origin: * access-control-allow-headers: Content-Type access-control-allow-methods: GET, OPTIONS vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7944389c1a810b69-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	bam.nr-data.net/events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=3877&ck=1&ref=https://www.annemergmed.com/400.jsp	162.247.243.29	200 OK	24 B
URL HTTP/1.1 bam.nr-data.net/events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=3877&ck=1&ref=https://www.annemergmed.com/400.jsp IP 162.247.243.29:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 1 x 1\012- data Size 24 B (24 bytes) Hash bc32ed98d624acb4008f986349a20d26 2d3df8c11d2168ce2c27e0937421d11d85016361 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300 HTTP Headers POST /events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=3877&ck=1&ref=https://www.annemergmed.com/400.jsp HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: text/plain Content-Length: 607 Origin: https://www.annemergmed.com Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Connection: keep-alive Content-Length: 24 content-type: image/gif access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS access-control-allow-credentials: true access-control-allow-origin: https://www.annemergmed.com x-timer: S1675522253.855068,VS0,VE102 accept-ranges: bytes date: Sat, 04 Feb 2023 14:50:52 GMT via: 1.1 varnish x-served-by: cache-bma1655-BMA x-cache: MISS x-cache-hits: 0`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 8a57a3311e7907b4dd0d69a6d3118f18 445b3ce04bc249ddc6b4354a53c50b9631513c89 64ff1c6906705439bd3a676d85f1ebf468a604901fdd41d998710d08d39e3726 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6176 Cache-Control: max-age=122708 Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 14:50:58 GMT Etag: "63dd9507-117" Expires: Mon, 06 Feb 2023 00:56:06 GMT Last-Modified: Fri, 03 Feb 2023 23:13:11 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 279`

	cdn.cookielaw.org/logos/static/powered_by_logo.svg	104.16.148.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /logos/static/powered_by_logo.svg HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: image/svg+xml content-md5: Y+c301RBZNK39PvKQWrIBw== last-modified: Thu, 02 Feb 2023 13:33:39 GMT x-ms-request-id: f447d889-501e-00c6-113d-37a5da000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 4202 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389dfa00fac4-OSL content-encoding: gzip X-Firefox-Spdy: h2

	www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3	104.18.124.114	302 Found	0 B
URL HTTP/2 www.annemergmed.com/action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3 IP 104.18.124.114:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /action/consumeSharedSessionAction?MAID=ZOo2rwwGTcXEL4XYbShNEA==&I2KBRCK=1&JSESSIONID=aaazomWoiSpnydal5jwyy&SERVER=WZ6myaEXBLEEYvrnizi8SQ==&ORIGIN=744408567&RD=RD&exp=MVA6dRX9aRvq8eB/Ur1boQ==&rtc=3 HTTP/1.1 Host: www.annemergmed.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 302 Found date: Sat, 04 Feb 2023 14:50:49 GMT content-type: text/html; charset=utf-8 location: https://www.annemergmed.com/action/errorInfiniteConsumeSharedSessionAction cf-ray: 7944388c3966b512-OSL cache-control: private strict-transport-security: max-age=15552000 cf-cache-status: DYNAMIC x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy-report-only: default-src data: https: 'unsafe-inline' 'unsafe-eval'; report-uri https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report; report-to https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report set-cookie: JSESSIONID=aaazomWoiSpnydal5jwyy; path=/; age=-1; HttpOnly; SameSite=None; Secure SERVER=WZ6myaEXBLEEYvrnizi8SQ==; path=/; secure; HttpOnly MAID=ZOo2rwwGTcXEL4XYbShNEA==; path=/; secure; HttpOnly I2KBRCK=1; path=/; secure; HttpOnly __cf_bm=k6ww3x95hYO08lfoNVIF.o0FmJExZYqEzTIEJ4Z3kEA-1675522249-0-AdfOZ9YxsQHQvsr5UwRt+Mtpr52jKKPu8kzMc9iRL8wvg015/gFJ4699CtK02b1657+0pWHRE6e+ogIbXZ97Gj0=; path=/; expires=Sat, 04-Feb-23 15:20:49 GMT; domain=.www.annemergmed.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.annemergmed.com/action/errorInfiniteConsumeSharedSessionAction	104.18.124.114	302 Found	0 B
URL HTTP/2 www.annemergmed.com/action/errorInfiniteConsumeSharedSessionAction IP 104.18.124.114:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /action/errorInfiniteConsumeSharedSessionAction HTTP/1.1 Host: www.annemergmed.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: JSESSIONID=aaazomWoiSpnydal5jwyy; SERVER=WZ6myaEXBLEEYvrnizi8SQ==; MAID=ZOo2rwwGTcXEL4XYbShNEA==; I2KBRCK=1; __cf_bm=k6ww3x95hYO08lfoNVIF.o0FmJExZYqEzTIEJ4Z3kEA-1675522249-0-AdfOZ9YxsQHQvsr5UwRt+Mtpr52jKKPu8kzMc9iRL8wvg015/gFJ4699CtK02b1657+0pWHRE6e+ogIbXZ97Gj0= Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 302 Found date: Sat, 04 Feb 2023 14:50:50 GMT content-type: text/html; charset=utf-8 location: https://www.annemergmed.com/400.jsp cf-ray: 7944388d7ae0b512-OSL cache-control: no-cache strict-transport-security: max-age=15552000 cf-cache-status: DYNAMIC x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy-report-only: default-src data: https: 'unsafe-inline' 'unsafe-eval'; report-uri https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report; report-to https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report x-webstats-respid: 40e9be786b6a3a0182805fdbb527e577 vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 04 Feb 2023 14:50:51 GMT date: Sat, 04 Feb 2023 14:50:51 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.56.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.annemergmed.com Connection: keep-alive Referer: https://www.annemergmed.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:51 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 79443895ffddb4f9-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	acw.elsevier.com/SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f	104.18.232.170	404 Not Found	0 B
URL HTTP/2 acw.elsevier.com/SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f IP 104.18.232.170:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /SSOCore/update?acw=2c60d2123d8fa7447c899b0838aacd56a905gxrqa%7C%24%7C051E0F6E8F9F2C71FCCD386B64B5C43B31B89985757CA5C1AD40577704051F2512CE017F23A4255EF03862DA9744B5E64191A06B402105D33FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=19a137cd5cc1681a0b655f645d2d1fbc32a176f HTTP/1.1 Host: acw.elsevier.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.annemergmed.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 404 Not Found date: Sat, 04 Feb 2023 14:50:51 GMT content-type: text/html cf-cache-status: DYNAMIC set-cookie: __cflb=02DiuEUZgWyrMRgnWqdShCPZ1oy3hj9hmQba5VT3cjWGC; SameSite=Lax; path=/; expires=Sun, 05-Feb-23 13:50:51 GMT; HttpOnly server: cloudflare cf-ray: 794438995a18b506-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css	104.16.148.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /scripttemplates/202211.2.0/assets/otCommonStyles.css HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.annemergmed.com/ Origin: https://www.annemergmed.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sat, 04 Feb 2023 14:50:52 GMT content-type: text/css content-md5: XcxlleAcPGO2n5kTZrHH2Q== last-modified: Mon, 12 Dec 2022 17:31:50 GMT x-ms-request-id: 53db3b94-301e-001a-1e69-1ff789000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 5845 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 7944389d9b9dfac0-OSL content-encoding: gzip X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML