r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17154
Expires: Sun, 27 Nov 2022 14:27:17 GMT
Date: Sun, 27 Nov 2022 09:41:23 GMT
Connection: keep-alive
caresyncsilver.com/
200 OK 289 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash f92ef2e6c6db4d409e6a5068eb927fea
57b5577ae1f84dbf4ef816c9a74920b49bf34136
f071a4088020d5ecbf36429a809d0d1b32bf7030c9cf9f8e45c9e69d31348e52
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: caresyncsilver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 09:41:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 12 Dec 2015 00:24:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=600
Expires: Sun, 27 Nov 2022 09:51:23 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 289
Keep-Alive: timeout=2, max=500
Content-Type: text/html
ocsp.digicert.com/
200 OK 471 B IP
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5133
Cache-Control: max-age=94518
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:23 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:56:41 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4679
Expires: Sun, 27 Nov 2022 10:59:22 GMT
Date: Sun, 27 Nov 2022 09:41:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 09:17:38 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1425
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eppfpe6SMXpUtemDACloq0HwllPRs9uuApPlZjc9mcco3gv2pmmvlFWw0eg+UtKpkDhPVOIFETc=
x-amz-request-id: YX35FZ13738PT3J3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 08:44:34 GMT
age: 3409
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.caresync.com/
301 Moved Permanently 59 B IP
File type HTML document, ASCII text
Hash 0728dc0272ff0d473f6d9589d264d4b4
8502f0d5401f2554b1f84f09a6e3a42b31f65bce
c2e5adb70eef66f773d400a4a0a19bb978a22b7eaa8713f2412947f4c085c6dc
GET / HTTP/1.1
Host: www.caresync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://caresyncsilver.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 09:41:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 59
Connection: keep-alive
Location: https://vaticahealth.com
Server: ip-100-74-2-99.eu-west-2.compute.internal
X-Request-Id: 5fb0f137-1c2f-4c91-8c0a-74245035a297
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 205df8e7561c82e4276bb56562ff4411
ff5ba72ee4025e289c9c86a7fba641f3ef4870ba
13a454bb7f4cb252542c45d9d3fee65ed8fd2820731ace5e4a69d8576cff9e23
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 09:41:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 21:07:05 GMT
Expires: Sun, 27 Nov 2022 21:07:05 GMT
ETag: "ff5ba72ee4025e289c9c86a7fba641f3ef4870ba"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 09:08:54 GMT
cache-control: public,max-age=3600
age: 1950
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4849
Cache-Control: max-age=89176
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:24 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:27:40 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HWNiq4ITZRYKAXSLxdaxzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CmX43/ncKDcniNR7nyV1Frkas8k=
vaticahealth.com/
301 Moved Permanently 0 B IP
ASN #209242 Cloudflare London, LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: vaticahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://caresyncsilver.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 09:41:24 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.vaticahealth.com/
set-cookie: hencove=103; expires=Tue, 07-Mar-2023 07:48:01 GMT; Max-Age=8640000; path=/; secure
x-powered-by: WP Engine
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:
x-redirect-by: WordPress
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
x-frame-options: ALLOW-FROM https://static.hsappstatic.net/
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9sbuLO2kI64sWKxLilV3YKWFWynqswVSOzMecDl%2FiO2mHQyFncN2oleebFZvJQ3i5kKyYE9Qzsg8EIAAdj7NQnMr7DG%2BvbU0dboCdgdAMbu76MAucPD2dDnGhnzS5m9UYu4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7709e868bb9c0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 205df8e7561c82e4276bb56562ff4411
ff5ba72ee4025e289c9c86a7fba641f3ef4870ba
13a454bb7f4cb252542c45d9d3fee65ed8fd2820731ace5e4a69d8576cff9e23
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 09:41:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 21:07:05 GMT
Expires: Sun, 27 Nov 2022 21:07:05 GMT
ETag: "ff5ba72ee4025e289c9c86a7fba641f3ef4870ba"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 279 B IP
Hash 4c68738619a804148d1c723255009198
aa5b458f6fce0c4f4aef0623f3bf5d8c6f6cfafd
9707f3ee6320844cad2474031ec9651e771581031ca5b9d2fb21f899847b2892
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4646
Cache-Control: max-age=109862
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "638228c5-117"
Expires: Mon, 28 Nov 2022 16:12:27 GMT
Last-Modified: Sat, 26 Nov 2022 14:55:01 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2695
Cache-Control: max-age=127717
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:10:02 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 4c68738619a804148d1c723255009198
aa5b458f6fce0c4f4aef0623f3bf5d8c6f6cfafd
9707f3ee6320844cad2474031ec9651e771581031ca5b9d2fb21f899847b2892
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3484
Cache-Control: max-age=108700
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "638228c5-117"
Expires: Mon, 28 Nov 2022 15:53:05 GMT
Last-Modified: Sat, 26 Nov 2022 14:55:01 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2695
Cache-Control: max-age=127717
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:10:02 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
assets.adobedtm.com/175f7caa2b90/8ce8073a6f4c/launch-d7bbf25ab785.min.js
200 OK 20 kB URL HTTP/2 assets.adobedtm.com/175f7caa2b90/8ce8073a6f4c/launch-d7bbf25ab785.min.js
IP
File type ASCII text, with very long lines (32750)
Hash 7780959f8f47fbeb9f2ab8930f058343
eb276b8e645031c27378cd76b9a2883af24e7752
047c9dd8e6b97f979d037e1ab0731ca4f544a81c75e2297a80dd42a22b4b4989
GET /175f7caa2b90/8ce8073a6f4c/launch-d7bbf25ab785.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "217a9ec24e97f854bc3e12c3cb93b834:1653073358.769077"
last-modified: Fri, 20 May 2022 19:02:38 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sun, 27 Nov 2022 10:41:25 GMT
date: Sun, 27 Nov 2022 09:41:25 GMT
content-length: 20138
access-control-allow-origin: https://www.vaticahealth.com
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4360
Cache-Control: max-age=129382
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:37:47 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.7/ScrollMagic.min.js?ver=6.0.3
200 OK 5.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.7/ScrollMagic.min.js?ver=6.0.3
IP
File type ASCII text, with very long lines (17329)
Hash 00bc1f42200b9831dccd3a5b13ef59ae
e06fb51d20e31c09e840e70fa88b094b889156dc
27de72ac8f629595f9f5e5d9c26fec0335a5b4e7cd7547d6f0fb960d4edff09e
GET /ajax/libs/ScrollMagic/2.0.7/ScrollMagic.min.js?ver=6.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 5437
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-4416"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5654660
expires: Fri, 17 Nov 2023 09:41:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1sLI3OaJCPOrRt%2F79ZiWd6YCGc8qvSfaxqleE6rvr8jy9U6djGbA8BtFl6PeuNwwsqXIZgwDv78xI6RoY5Ru8rCi2EAzuCB0qCg85uEElJ0uBwb4UbtblnHfRbo6CpzzdZOWNWs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7709e8731f6bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/3.0.5/gsap.min.js?ver=6.0.3
200 OK 20 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/3.0.5/gsap.min.js?ver=6.0.3
IP
File type ASCII text, with very long lines (56420)
Hash c1a503099e37cd986b079f243b756bf1
5a12e6fae6178ba44ae22a88c5c1dc77ada9e387
32a59c239a9e3f58674857e835388efccc658f759c1cb2242577899a8413290e
GET /ajax/libs/gsap/3.0.5/gsap.min.js?ver=6.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 20311
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-ddb1"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 998026
expires: Fri, 17 Nov 2023 09:41:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SkE2CPZa2oYte8PBSQhhMijVP5dJXrCSdLwyQYTQ6iSMZSDKl%2Bv7be4kg%2BPDKmsCrMGY42dcIO%2FkY5NDFaGDGlS3pPjcZCQKZi2s39MHssm0ftfPLslAeSlk5s5D%2BsKgGlKAEIEz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7709e8732f74b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.7/plugins/animation.gsap.min.js?ver=6.0.3
200 OK 582 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.7/plugins/animation.gsap.min.js?ver=6.0.3
IP
File type ASCII text, with very long lines (1187)
Hash 1ff410e17cfb6c1ae0a8cdd58b978e6e
6db09a91b053605102a9f2b6c9a6018463e961b1
7bf62c6d6961c9782ed491680d7ec61c0cad3f57ed40b7deb2df0d72ce465ec2
GET /ajax/libs/ScrollMagic/2.0.7/plugins/animation.gsap.min.js?ver=6.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 582
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-508"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 390388
expires: Fri, 17 Nov 2023 09:41:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RW4rV6xq2JeALbr69VUodZSF8uTQyJwU%2Fq626nEiuT5Yh5B4L5xuld0WVfOftXhoTf7kJfhc48I0qXekNs4R9NMeJrrXqv%2BfiyczEefKtfRZE7OWETVr%2Fn3OsFA81tQ3WKaRkVuZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7709e8732f7bb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2695
Cache-Control: max-age=127717
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:25 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:10:02 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
js.adsrvr.org/up_loader.1.1.0.js
200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 23:31:36 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FlcOgQI-N0rDbFSA92aHX5q9ejxbFrFOaxzlBxuln0NjkTQJn1pSsg==
Age: 36590
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5040
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:41:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5040
Expires: Sun, 27 Nov 2022 11:05:25 GMT
Date: Sun, 27 Nov 2022 09:41:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 42584
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f80a9a9b55da31c98663e157dde74a19
26b8dd82140c0db021048e11bff65a391dc6b444
680c39e4ea1d784db9831958942a64f3e83618dc443c8bcaa34223d85bb5b926
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe38fd9-0497-4ec8-8f57-1ba100e73fcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6859
x-amzn-requestid: 4a1b13ad-9455-401d-a914-c1ada2191977
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTHRroAMFR8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-4e5d630b23cdeb2e4b6d75d1;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D24B6xoLZ2nu1NdlMU5TgJSc-DfzD6vrMzgU3s6tAiAsUuzBb_t89Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 08:21:28 GMT
age: 4797
etag: "26b8dd82140c0db021048e11bff65a391dc6b444"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MA_O50Lu6RRAFJpzXmVXhkxvYazdX5Lhk2Qa5k9fYUhBta-IWpVT1g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 01:46:48 GMT
age: 28477
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9de86e0161ef1255306ddfce1c2549d7
f77ff5378766c6b14125de0e003b21f34726672b
7db14b31e7e2d882eb446bd6056ad9e8eed6e1581837a6d54d2e0d26aa2600bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183848d2-b6cc-4349-b07a-3fd8540a63e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4023
x-amzn-requestid: e9fe84db-d488-4ec7-81e6-c819bb625944
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b44BuHsmIAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d3a4-54fbd7892170110e4bafc899;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:13:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GYi18tS1H9gOh6y9rQGwRx9VANq4dYJ_vJIpMD0kWIXFVNSif-sxXA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:05:29 GMT
age: 41756
etag: "f77ff5378766c6b14125de0e003b21f34726672b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 42588
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e615cdc2e330b5cf76435abce9aa631a
71f737c3cee7766494157cd6491ce247a785c09e
853f68bf79a553b9fbf0e10391424faf0a3c071370d05d369563f7824d1bda84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a2bb7d-e57c-4751-a56f-0802ae9eaee6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: f00ac8bd-6466-4c92-9b99-0e71b4b2345c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8Jr4ENtoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2318-0e3a57932987e29521388dd7;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:04:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ntfumip5IjOlyoe6ASlwJ1PjPLN1yZHkK_iiDDKfmMCyI__PrrGVMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 11:33:57 GMT
age: 79648
etag: "71f737c3cee7766494157cd6491ce247a785c09e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.hs-scripts.com/6311499.js?integration=WordPress&ver=9.0.338
200 OK 1.3 kB URL HTTP/2 js.hs-scripts.com/6311499.js?integration=WordPress&ver=9.0.338
IP
File type ASCII text, with very long lines (539)
Hash 0ed10ce36f9e3a35e83d57daadd8c28a
ef5b68ab0e2d6ec3be5747964afbc00287a5ed29
29325b9d72ef1e7ff6722abc0a737066ceb639976bbe824695e80db088746ff5
GET /6311499.js?integration=WordPress&ver=9.0.338 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BCE8F2D7F9F33B58FE4CF6DF9C151B5FF0F3995E5000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 9c0995b0-4c41-474b-9218-d121a60e9cfd
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.vaticahealth.com
last-modified: Sun, 27 Nov 2022 09:41:25 GMT
cf-cache-status: MISS
expires: Sun, 27 Nov 2022 09:42:25 GMT
server: cloudflare
cf-ray: 7709e873898b0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 1d38d59279479c6622878518ce776872
8e6902407c6591d7d2b5e952eeae745992c43fca
fb8056cb6a555bb9673172a56d68c7ce002bb174b864383ca281a4ff2fddf2ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4093
Cache-Control: max-age=98522
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:26 GMT
Etag: "6381fea3-2d7"
Expires: Mon, 28 Nov 2022 13:03:28 GMT
Last-Modified: Sat, 26 Nov 2022 11:55:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
200 OK 727 B IP
Hash 1d38d59279479c6622878518ce776872
8e6902407c6591d7d2b5e952eeae745992c43fca
fb8056cb6a555bb9673172a56d68c7ce002bb174b864383ca281a4ff2fddf2ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2806
Cache-Control: max-age=97235
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:26 GMT
Etag: "6381fea3-2d7"
Expires: Mon, 28 Nov 2022 12:42:01 GMT
Last-Modified: Sat, 26 Nov 2022 11:55:15 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 727
vaticaprod.wpengine.com/wp-content/uploads/2020/02/RiskAdjustmentYield-2.png
200 OK 3.9 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/RiskAdjustmentYield-2.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash cf386f49ab0f9e0d0aab64588eb1c07d
457dba0210e9f5526bdfdb545913d097cc5f719d
903d64a575a4da89fe8de4e2654fda874bddb30aaffd8f1fc05078a69a293883
GET /wp-content/uploads/2020/02/RiskAdjustmentYield-2.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 3873
last-modified: Mon, 31 Oct 2022 04:24:24 GMT
etag: "635f4df8-f21"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
vaticaprod.wpengine.com/wp-content/uploads/2020/02/QualityOfCare-1.png
200 OK 6.3 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/QualityOfCare-1.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash 4db913d0db2731b1de04f17ccd8d70d2
df6cc709103bd291be76c0a16499c65e23b35a12
073c7df8344215c642c2536271cd9af15bb38def2db8f85c0661409de5f48d52
GET /wp-content/uploads/2020/02/QualityOfCare-1.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 6266
last-modified: Mon, 31 Oct 2022 04:15:37 GMT
etag: "635f4be9-187a"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
vaticaprod.wpengine.com/wp-content/uploads/2020/02/RiskAdjustment-2.png
200 OK 4.9 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/RiskAdjustment-2.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash 1702db8dd4b27d3b0f8c1f0c1a3fed53
e879b0e6fe22aef8fb9f13d02143134010a4fd31
da3321bae167cb5ccd8ebfdca51a624b58003afa038184aa01664cba3739123f
GET /wp-content/uploads/2020/02/RiskAdjustment-2.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 4910
last-modified: Mon, 31 Oct 2022 04:10:35 GMT
etag: "635f4abb-132e"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
vaticaprod.wpengine.com/wp-content/uploads/2020/02/PatientEngagement-1.png
200 OK 2.4 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/PatientEngagement-1.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash ccf17e8179ad58861f95e044ea5c02cb
3320755a8ae10c112ef2399731f0f936c667da39
ab3c2ae474f1044b908f55c9bf390ec6f91e37655c8ee8688db071453e014176
GET /wp-content/uploads/2020/02/PatientEngagement-1.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 2360
last-modified: Mon, 31 Oct 2022 04:22:54 GMT
etag: "635f4d9e-938"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
vaticaprod.wpengine.com/wp-content/uploads/2020/02/FinancialPerformance-1.png
200 OK 6.1 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/FinancialPerformance-1.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash fe54f7af6ae5b57c37489b76fe2854b8
48a08ba54943963998af953fd6db100a1e04325b
27f97256d67f18ce75fb57fd84c72f815dc0f7d776150b9fbb253bb2e66e2ce6
GET /wp-content/uploads/2020/02/FinancialPerformance-1.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 6101
last-modified: Mon, 31 Oct 2022 04:24:30 GMT
etag: "635f4dfe-17d5"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
vaticaprod.wpengine.com/wp-content/uploads/2020/02/StarRatings-1.png
200 OK 6.2 kB URL HTTP/2 vaticaprod.wpengine.com/wp-content/uploads/2020/02/StarRatings-1.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 267 x 267, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f49621d97441d1e1d82778cb15062a4
4c750d20463ba39a57fb2cf485dd05a4d679c540
783c7f99eee2101c7f19b2d0a0aa7660c67e0f76014718cdd3b5ee79ceeb6bc7
GET /wp-content/uploads/2020/02/StarRatings-1.png HTTP/1.1
Host: vaticaprod.wpengine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 09:41:26 GMT
content-type: image/png
content-length: 6185
last-modified: Mon, 31 Oct 2022 04:21:20 GMT
etag: "635f4d40-1829"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 4.3 kB IP
Hash 36ce6f63832687a9f86e16d3909eeb3f
aeac5a296e0a87f9f267c9ad54e2335b8112f219
92d4a022e732e046531dbb464281ae1f5e191ead07f150967d6e3cc83ead3f85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-M78M59N
200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M78M59N
IP
Hash 5265af87e67f538eecf63e645d674090
c955d0fc1c262b09ae83338930d8f911b0ed988d
2f888783268d8a08b03d4ebc586ff012e574ba46150551ed2619bdcdb423c1a2
GET /gtm.js?id=GTM-M78M59N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 09:41:27 GMT
expires: Sun, 27 Nov 2022 09:41:27 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77691
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WJZS5GX
200 OK 69 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WJZS5GX
IP
File type ASCII text, with very long lines (4652)
Hash f74159e7dad549c34fb56599e327412e
5e009df2b6a429fc917417357860f2658006fa79
b281db2916834d43f13e9c43e8a0d43b9776ca5b646663f2bb1f3a884ec6082d
GET /gtm.js?id=GTM-WJZS5GX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 09:41:27 GMT
expires: Sun, 27 Nov 2022 09:41:27 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68880
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash c2e2f684498fff79b73db9efc0bc9e5a
883408bbde4babd32c8e4815b2820eb37bdf57fe
5f72db5c2b99bc524494284b882d105bd57bbb6963888cbc43ad8cd8ded51850
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 09:41:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 20:23:27 GMT
Expires: Sun, 27 Nov 2022 20:23:27 GMT
ETag: "883408bbde4babd32c8e4815b2820eb37bdf57fe"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
200 OK 279 B IP
Hash 5c98e2de80865b8ca3b25c880738e5b2
8463fe7201addc41e4a5f6386d48caf496347238
9b4110143b26cd01edd12a955b064daaca9d538e216e7ec6d3576a8adcd7fd39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6226
Cache-Control: max-age=167975
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Etag: "6383059c-117"
Expires: Tue, 29 Nov 2022 08:21:02 GMT
Last-Modified: Sun, 27 Nov 2022 06:37:16 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 20 kB IP
Hash 3a150b0c8e01b1211b75fce45e5dd554
94839e6da40efee31593a87dfadbe589ca231109
a45fa2b13cbecc23472a9aefdbbf43bfeb6f0815f0d49d1e37f207ac0a2251d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 678
Cache-Control: max-age=148756
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Etag: "6382d035-116"
Expires: Tue, 29 Nov 2022 03:00:43 GMT
Last-Modified: Sun, 27 Nov 2022 02:49:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
lltrck.com/scripts/lt-v3.js?llid=34608
200 OK 7.2 kB URL HTTP/2 lltrck.com/scripts/lt-v3.js?llid=34608
IP
Hash c24c2ef6a3dd3d60b62580c7da674705
9479f09a3f170e49369e4b2b36d279dbb24ad6e8
4870a2d59aaf2bb5af8c2b112b38c84393ec2038c7377c47cd707d728e5d7ebb
GET /scripts/lt-v3.js?llid=34608 HTTP/1.1
Host: lltrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: text/javascript
content-length: 6849
server: Kestrel
cache-control: public, max-age=172800
strict-transport-security: max-age=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3d2abad42d156752976e96c8b8f79758
3394fb8d44cde287c470d95cebbbc90ea39d2937
26773a07783c3f7c4d10baf12c5bbbc923ddb2fc9f0a7a1cb2954b7cf805cf70
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171400
Date: Sun, 27 Nov 2022 09:41:27 GMT
Etag: "6383191b-1d7"
Expires: Tue, 29 Nov 2022 09:18:07 GMT
Last-Modified: Sun, 27 Nov 2022 08:00:27 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zq094vxSROl8hJrZonXQTLCIO-MFYKsvrFaUX5U-IpFB9dRbbzCUSQ==
Age: 4660
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 69fcd1e66a46b2b4264a82e17c9ce31d
c6a528ae7ce77cbbc6dda0bcba0a829a5ed243bd
d56c991f6d50b43b8cc82a6dbad2f2c0974956b557cf4e5f50470911423a583f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127873
Date: Sun, 27 Nov 2022 09:41:27 GMT
Etag: "63827a44-1d7"
Expires: Mon, 28 Nov 2022 21:12:40 GMT
Last-Modified: Sat, 26 Nov 2022 20:42:44 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mJP6QEADRZyXyn6_dP3aUZiqIHjkfbGqPCWTkByzq2xLcCH8VaRWfg==
Age: 1796
collector.leadinfo.net/config/LI-627D5805ED609/
200 OK 59 kB URL HTTP/2 collector.leadinfo.net/config/LI-627D5805ED609/
IP
Hash a77c92cd50c4f3003d2c42f52aef1b35
214e4279e3e337f90e56ce36925cd8d6972956b7
0e977f430e37f54028cada06c2bf6a26f406adb538fa2e4c1310a64ad7a159a4
GET /config/LI-627D5805ED609/ HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: application/json; charset=utf-8
content-length: 30
access-control-allow-origin: https://www.vaticahealth.com
vary: Origin
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
api.leadinfo.com/v1/identify/LI-627D5805ED609
200 OK 7.1 kB URL HTTP/2 api.leadinfo.com/v1/identify/LI-627D5805ED609
IP
Hash 6adcfb6e01bab8d86d8ffc81d8545e2e
1cb4dc036e82e2b8d524a287ab838e417926bc35
84ea036b5e2c3db9ffc8a8f8e873d083f091ac0461cbe4ba37795a95f8754470
GET /v1/identify/LI-627D5805ED609 HTTP/1.1
Host: api.leadinfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: application/json; charset=UTF-8
content-length: 2
server: Apache/2.4.54 (Debian)
x-powered-by: Leadinfo
access-control-allow-origin: https://www.vaticahealth.com
access-control-allow-headers: Origin
access-control-allow-methods: GET
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Q9P-Th4o8rI
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Q9P-Th4o8rI
IP
Hash 73a992fb8d57b35efa0b989649777c22
9b600eb2c6c679cc9a67f6e4698e1a9993b57784
4006d8a45d1359a485933f7a2d086d4ddbb27c5eaf4b683009b38faaabc3879d
POST /s/gts1d4/Q9P-Th4o8rI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash fc4a7e7994c9c78defaedf9fffaf8952
615ed25c886ede48cac533cc7f137a1aac18e704
194c4337045e8c0ac67c7028a86254692e0ef11106a587cfb8fcc0f4f4363440
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3468
Cache-Control: max-age=116571
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Etag: "63824796-116"
Expires: Mon, 28 Nov 2022 18:04:18 GMT
Last-Modified: Sat, 26 Nov 2022 17:06:30 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
tr.lfeeder.com/?sid=wVkO4XZBdLb8Z6Bj&data=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
200 OK 43 B URL HTTP/2 tr.lfeeder.com/?sid=wVkO4XZBdLb8Z6Bj&data=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
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /?sid=wVkO4XZBdLb8Z6Bj&data=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 HTTP/1.1
Host: tr.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
server: CloudFront
date: Sun, 27 Nov 2022 09:41:27 GMT
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F8jjKCtoIyqwUPjWSiS9mb6VoBz_zjm930QqfoTbAEubqKEuioon6A==
X-Firefox-Spdy: h2
sc.lfeeder.com/lftracker_v1_wVkO4XZBdLb8Z6Bj.js
200 OK 35 kB URL HTTP/2 sc.lfeeder.com/lftracker_v1_wVkO4XZBdLb8Z6Bj.js
IP
Hash 3b8277651d4aa11c01589baefc63a190
ac054437e0ea03beaa5a55b772e6fd47bc062fa2
e9d92115f56a2a1fd3f3b6af23bd9377495cda7d473dcf63d0fd4343d82b9fe7
GET /lftracker_v1_wVkO4XZBdLb8Z6Bj.js HTTP/1.1
Host: sc.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 16:56:23 GMT
x-amz-version-id: hzHjYvBH9qoxQMsO3znkJpukL2TxnTQA
server: AmazonS3
content-encoding: gzip
date: Sun, 27 Nov 2022 09:03:13 GMT
cache-control: max-age=3600
etag: W/"2141d6e77d992db91e5696243bc92f66"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T49xGjwbwfieYihClTXAsxAvR9_IH0pyOa2CyvLRPZJNc-wMcnMDdA==
age: 2294
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Q9P-Th4o8rI
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Q9P-Th4o8rI
IP
Hash 73a992fb8d57b35efa0b989649777c22
9b600eb2c6c679cc9a67f6e4698e1a9993b57784
4006d8a45d1359a485933f7a2d086d4ddbb27c5eaf4b683009b38faaabc3879d
POST /s/gts1d4/Q9P-Th4o8rI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/aLGsOFvWJRQ
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/aLGsOFvWJRQ
IP
Hash 2d378100759e03e25f3e7e30237a9902
3d1d660d5d3e739bfb4b8f8b334aba3923d237fc
10314e91379b405c9af440fcb0bf598860d398158df547938083a4c193492995
POST /s/gts1d4/aLGsOFvWJRQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/aLGsOFvWJRQ
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/aLGsOFvWJRQ
IP
Hash 2d378100759e03e25f3e7e30237a9902
3d1d660d5d3e739bfb4b8f8b334aba3923d237fc
10314e91379b405c9af440fcb0bf598860d398158df547938083a4c193492995
POST /s/gts1d4/aLGsOFvWJRQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.lfeeder.com/?sid=wVkO4XZBdLb8Z6Bj&data=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
200 OK 43 B URL HTTP/2 tr.lfeeder.com/?sid=wVkO4XZBdLb8Z6Bj&data=eyJnYVRyYWNraW5nSWRzIjpbXSwiZ2FNZWFzdXJlbWVudElkcyI6WyJEQy0xMTA1MzgxNyIsIkctUDM4MzZNVjZRTCJdLCJnYUNsaWVudElkcyI6WyIxNTI5MzQ2OC4xNjY5NTQyMDg4Il0sImNvbnRleHQiOnsibGlicmFyeSI6eyJuYW1lIjoibGZ0cmFja2VyIiwidmVyc2lvbiI6IjIuNTguMCJ9LCJwYWdlVXJsIjoiaHR0cHM6Ly93d3cudmF0aWNhaGVhbHRoLmNvbS8iLCJwYWdlVGl0bGUiOiJWYXRpY2EgSGVhbHRoIHwgUmlzayBBZGp1c3RtZW50ICYgUXVhbGl0eSBvZiBDYXJlIENvZGluZyBTb2x1dGlvbiIsInJlZmVycmVyIjoiaHR0cDovL2NhcmVzeW5jc2lsdmVyLmNvbS8ifSwiZXZlbnQiOiJ0cmFja2luZy1ldmVudCIsImNsaWVudEV2ZW50SWQiOiI3MGY3NzJkY2Q3NDM2MjgzIiwic2NyaXB0SWQiOiJ3VmtPNFhaQmRMYjhaNkJqIiwiY29va2llc0VuYWJsZWQiOnRydWUsImNvbnNlbnRMZXZlbCI6Im5vbmUiLCJhbm9ueW1pemVJcCI6ZmFsc2UsImxmQ2xpZW50SWQiOiJMRjEuMS42OTFjOTZmYzUwMDY1MmU1LjE2Njk1NDIwODc1MzQiLCJmb3JlaWduQ29va2llcyI6W10sInByb3BlcnRpZXMiOnt9LCJhdXRvVHJhY2tpbmdFbmFibGVkIjp0cnVlLCJhdXRvVHJhY2tpbmdNb2RlIjoib25fc2NyaXB0X2xvYWQifQ==
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /?sid=wVkO4XZBdLb8Z6Bj&data=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 HTTP/1.1
Host: tr.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
server: CloudFront
date: Sun, 27 Nov 2022 09:41:28 GMT
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: befxR_TQbV-Y894eC9r0Vi9YW9SSeuYLhoPdY6qJMyx1knbRG3rDjA==
X-Firefox-Spdy: h2
t.influ2.com/p/vt/?a=&clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8&caid=&cb=1669542087627&s=&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&d=0&da=0
200 OK 597 B URL HTTP/2 t.influ2.com/p/vt/?a=&clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8&caid=&cb=1669542087627&s=&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&d=0&da=0
IP
File type JPEG image data, baseline, precision 8, 1x1, components 3\012- data
Hash bc775cab72715549ed16bc765bc775fa
9dd0752986a9a009472c74abbd59eb7d3b7c6b89
d267998c3594ce7f02341a5a8ef2b2705627f2552960e332d73747022406a30b
GET /p/vt/?a=&clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8&caid=&cb=1669542087627&s=&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&d=0&da=0 HTTP/1.1
Host: t.influ2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: image/jpeg
content-length: 597
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: R=f85b86fc12ed30ef9e1c16f7; Path=/; Domain=influ2.com; Expires=Mon, 27 Nov 2023 09:41:28 GMT; Secure; SameSite=None
via: 1.1 google
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
11053817.fls.doubleclick.net/activityi;src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F?
200 OK 229 B URL HTTP/2 11053817.fls.doubleclick.net/activityi;src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (452), with no line terminators
Hash ea92c33e36782f3b45d883b18d020a8a
c161d0b83c2c71881568dee161e5fdb651e92cee
13ae2f0eaccb549cef2be00489d2b89b47dfde4aeab704a3f3057bc7b97f09ad
GET /activityi;src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F? HTTP/1.1
Host: 11053817.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 229
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 09:56:28 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 77b4e096caa381b6c35145231699afbc
b2fd940ca43dcda7dbd3dad92d8d46976f9be7a7
78f52bdc0cddd8b831ae2f6ccd9dcd683f9a08b083cb14a6a057770d2389d685
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5884
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Last-Modified: Sun, 27 Nov 2022 08:03:24 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 3.0 kB IP
Hash 9dd538eaa36933d3db8394e76174ad7f
ea6fdefe8df31f10e4db9fc60052e93fd178a23f
fe1ff77aac1aec8b99c88d5a05f66fd8c89512b331d36d222a28e6d18b4cc9e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
200 OK 230 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (451), with no line terminators
Hash 3366777f4b9aab25d2f3f81a0947f5cd
8d947726d97235d2007e32548c5e0493e684bfcc
4b7704127c63a32ce0caf4db9f8402035bd304adb7b684ab4bd7c900f4fcd78e
GET /ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11053817.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:28 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 230
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lltrck.com/api/tracking?_llid=34608&_fd=bIS1dIN7Mz%3A4e4dvenG1bXOibHWicISpMnOwcT9%3E&_llreferer=http%3A%2F%2Fcaresyncsilver.com%2F&_lluuid=lsb5cdb3-4cab-4e9d-b0b1-2c5cd4b0492d&_cl=0&_v=3
200 OK 992 B URL HTTP/2 lltrck.com/api/tracking?_llid=34608&_fd=bIS1dIN7Mz%3A4e4dvenG1bXOibHWicISpMnOwcT9%3E&_llreferer=http%3A%2F%2Fcaresyncsilver.com%2F&_lluuid=lsb5cdb3-4cab-4e9d-b0b1-2c5cd4b0492d&_cl=0&_v=3
IP
Hash ec26b22373827990950aacc55fdf9a83
6f45e527839227abc7d80d89555edb26a681c1e8
c448c2569a0bac899f2429088fef902eba99f5eb516f7d084df8474432c02143
GET /api/tracking?_llid=34608&_fd=bIS1dIN7Mz%3A4e4dvenG1bXOibHWicISpMnOwcT9%3E&_llreferer=http%3A%2F%2Fcaresyncsilver.com%2F&_lluuid=lsb5cdb3-4cab-4e9d-b0b1-2c5cd4b0492d&_cl=0&_v=3 HTTP/1.1
Host: lltrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: image/gif
content-length: 43
server: Kestrel
set-cookie: trackalyzer=lsb5cdb3-4cab-4e9d-b0b1-2c5cd4b0492d; expires=Mon, 27 Nov 2023 09:41:28 GMT; path=/; SameSite=None; secure
access-control-allow-origin: *
strict-transport-security: max-age=2592000
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=6311499
200 OK 378 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=6311499
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ae6199e433991fddfc53ba540bc49afe
12513025e35011c367e6cee16e73c449f0bdf74e
41e2cfb3dbebe515da80045f6f1c441d950e9f9e4d3dd33735838cb090c2f6bf
GET /hs-script-loader-public/v1/config/pixel/json?portalId=6311499 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: application/json;charset=utf-8
cf-ray: 7709e8810a32b4f7-OSL
access-control-allow-origin: https://www.vaticahealth.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: d86b1eba-1407-4de7-a99b-51af0bdc27b1
x-trace: 2B18109F61C12EEB157E90DBBDCB0992D31A8A7058000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CW6hzpRw%2FD2dIs6Nr%2FQB03nIDxhXldMAea0fy1yCbD4gRsL%2FhJK2SCu2q0B5PDlr1PT7bpgigzVpm45pU30zJkr6ow1BJGLgSUZGLG%2B3kKL40B698bxF3ATb7uCfnICx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 77b4e096caa381b6c35145231699afbc
b2fd940ca43dcda7dbd3dad92d8d46976f9be7a7
78f52bdc0cddd8b831ae2f6ccd9dcd683f9a08b083cb14a6a057770d2389d685
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5884
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Last-Modified: Sun, 27 Nov 2022 08:03:24 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
adservice.google.no/ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11053817;type=siter0;cat=siter0;ord=4883866608971;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:28 GMT
expires: Sun, 27 Nov 2022 09:41:28 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vaticahealth.com/
Origin: https://www.vaticahealth.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-length: 0
server: spray-can/1.3.3
access-control-allow-origin: https://www.vaticahealth.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 2.5 kB IP
Hash 38d0708817870fdd601eecb372c7e5e9
f3ade6cf7be2cc4cd80929a41fe9365076d3b113
a6b4518c1983ac95800e11e51ab63d6dcdac163ba8f1ad515ec1ba7285490fc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash e1e583c87ff20e758028c4c13da5d95a
71592a4290f130228a2810347e3af5585af9df91
96cd6500fa9b61afd79c24de2af807eb8946a252307a586914fe9f33927202ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3859
Cache-Control: max-age=151556
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Etag: "6382ceb9-118"
Expires: Tue, 29 Nov 2022 03:47:24 GMT
Last-Modified: Sun, 27 Nov 2022 02:43:05 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 892
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: spray-can/1.3.3
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.vaticahealth.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 1a1ef5d9b759babb17e3653cf93123bc
801a1eee56bedae9528fe1f47dbefb93454faaac
181b7a1fbb6db5d34ff4ed5c450c83656664414b17ac2490aa7a46112a9aea4d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91124
Date: Sun, 27 Nov 2022 09:41:28 GMT
Etag: "6381db6a-1d7"
Expires: Mon, 28 Nov 2022 11:00:12 GMT
Last-Modified: Sat, 26 Nov 2022 09:24:58 GMT
Server: ECS (dcb/7EC6)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ohVHCGcJfcO1xSL9AMFSuLE6-IHnB-_X8qYsJaw6waSvWjQU4-mPrg==
Age: 5714
region1.google-analytics.com/g/collect?v=2&tid=G-P3836MV6QL>m=2oeb90&_p=862821276&cid=15293468.1669542088&ul=en-us&sr=1280x1024&_s=1&sid=1669542087&sct=1&seg=0&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&dr=http%3A%2F%2Fcaresyncsilver.com%2F&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-P3836MV6QL>m=2oeb90&_p=862821276&cid=15293468.1669542088&ul=en-us&sr=1280x1024&_s=1&sid=1669542087&sct=1&seg=0&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&dr=http%3A%2F%2Fcaresyncsilver.com%2F&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-P3836MV6QL>m=2oeb90&_p=862821276&cid=15293468.1669542088&ul=en-us&sr=1280x1024&_s=1&sid=1669542087&sct=1&seg=0&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&dr=http%3A%2F%2Fcaresyncsilver.com%2F&dt=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.vaticahealth.com
date: Sun, 27 Nov 2022 09:41:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
200 OK 35 B URL HTTP/2 forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: image/gif
content-length: 35
x-trace: 2BE52E5ABBBCFDF49595C585868E510D88BE15A23C000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: ec160d1f-7d21-4ff5-8caf-eb9a8c647da1
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7709e884de7d0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash e1e583c87ff20e758028c4c13da5d95a
71592a4290f130228a2810347e3af5585af9df91
96cd6500fa9b61afd79c24de2af807eb8946a252307a586914fe9f33927202ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4014
Cache-Control: max-age=151711
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:28 GMT
Etag: "6382ceb9-118"
Expires: Tue, 29 Nov 2022 03:49:59 GMT
Last-Modified: Sun, 27 Nov 2022 02:43:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
twin-iq.kickfire.com/twin.js?15315
200 OK 424 B URL HTTP/2 twin-iq.kickfire.com/twin.js?15315
IP
Hash 5bd1e8c855937dd99944ba4915d8f595
4e256c292e86a29cc05fea86f55740eddc607e6e
034acd3ced0cf00cdfcb684283fdc624a48c2dc8dcddeb55e09412f92971056d
GET /twin.js?15315 HTTP/1.1
Host: twin-iq.kickfire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: application/javascript
content-length: 424
server: Apache/2.4.52 ()
last-modified: Thu, 06 Jan 2022 20:12:30 GMT
etag: "1a8-5d4ef7d746e6f"
accept-ranges: bytes
x-frame-options: DENY
content-security-policy: frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11053817;type=vatic0;cat=https0;ord=1240705637901;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11053817;type=vatic0;cat=https0;ord=1240705637901;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11053817;type=vatic0;cat=https0;ord=1240705637901;gtm=2odb90;auiddc=1994392076.1669542087;~oref=https%3A%2F%2Fwww.vaticahealth.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:28 GMT
expires: Sun, 27 Nov 2022 09:41:28 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash dfa654d8233fe07d019e18f24386d049
b0b7d9f6fa560cfc93bb94b18296f2106c626a4c
33d6e905dc0431094366f3e6e45b51415c46ffd1f02452f7b9ef854c93b38ab7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 27 Nov 2022 09:41:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 21:56:05 GMT
Expires: Sun, 27 Nov 2022 21:56:05 GMT
ETag: "b0b7d9f6fa560cfc93bb94b18296f2106c626a4c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
twin-iq.kickfire.com/twin.php?TWIQ=15315&kftwiqpg=https%3A%2F%2Fwww.vaticahealth.com%2F&Hst=www.vaticahealth.com&r=0.7690259236814383
200 OK 375 B URL HTTP/2 twin-iq.kickfire.com/twin.php?TWIQ=15315&kftwiqpg=https%3A%2F%2Fwww.vaticahealth.com%2F&Hst=www.vaticahealth.com&r=0.7690259236814383
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 428dd1d27abce0864e808445162ec924
8ff1ffa82437e2b556aa326d5db26303b3aeda29
9c2d5249a8800f24226e77abb64824a8e56d45d30c6e01e22f6ac56b9118751b
GET /twin.php?TWIQ=15315&kftwiqpg=https%3A%2F%2Fwww.vaticahealth.com%2F&Hst=www.vaticahealth.com&r=0.7690259236814383 HTTP/1.1
Host: twin-iq.kickfire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: image/png
server: Apache/2.4.52 ()
x-powered-by: PHP/7.2.34
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-frame-options: DENY
content-security-policy: frame-ancestors 'none';
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=33631
date: Sun, 27 Nov 2022 09:41:29 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f79de44e08c43da30a3c6c5291fdc427
1a07b622d844d4793fe4767199f5f33f0f3229e2
d536b31b46e283bf64ff0c3e3bf29c706f1d5c2b63d82bc41c76e15bf4a06fe2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3411
Cache-Control: max-age=151081
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:29 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 03:39:30 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 08:41:08 GMT
expires: Sun, 27 Nov 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 3621
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: CIqTNSI14C/lBPShgCJLPOq1gLgB7JYa6gWQO1E3aL/Wp/irGjcB/EiOqjPbvYwRBKdnws1rzsIhx46k1xhpbg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 09:41:29 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/740000948/?random=1669542087390&cv=11&fst=1669542087390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&auid=1994392076.1669542087&rfmt=3&fmt=4
200 OK 921 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/740000948/?random=1669542087390&cv=11&fst=1669542087390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&auid=1994392076.1669542087&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2015), with no line terminators
Hash 9f490b2129bed112ede70ca5f97ef1c0
6d5a7941f6c211de0981d9becdbbdb9a45660f8c
2f8d312cd0e4d63f060500bde9daae8438e0ef93fb6d311881c055866ff1708e
GET /pagead/viewthroughconversion/740000948/?random=1669542087390&cv=11&fst=1669542087390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&auid=1994392076.1669542087&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 921
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 09:56:29 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 2.6 kB IP
File type Applesoft BASIC program data, first line number 17\012- data
Hash c8293f839b547e49577636fc45b472fb
4b149c35f9cb9ce2fe4de9f2a6f841f5d1ada393
b9200ca4a2bae62db8d3cce4aa3a898c52bfc97424735848a0c5e8b4e0003b50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3339
Cache-Control: max-age=151009
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:29 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 03:38:18 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4akGGJZY77tX7E-8RfgBp-algmcgBgnBUzoJ2Lkk9WD14isrF-Sxkw==
age: 333083
X-Firefox-Spdy: h2
script.hotjar.com/modules.e1bdbadbcc63daea6270.js
200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.e1bdbadbcc63daea6270.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 53db6c810ee48127f87a9c79e206fc67
aa53e521ba10b23524afc519c6e6ba8d1eb5147c
f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B7Asn625NSdODyccBa8eRVM9G9S_h_QlO6kZa9QsHCw2CsQ3ow3D2Q==
age: 264743
X-Firefox-Spdy: h2
www.rumiview.com/containers/f583e4ed-db1e-48e1-9929-67ca888013c7.js
200 OK 60 kB URL HTTP/1.1 www.rumiview.com/containers/f583e4ed-db1e-48e1-9929-67ca888013c7.js
IP
File type Unicode text, UTF-8 text, with very long lines (32031)
Hash b588190a4c4e2784be1a20e10061d882
ec372567fa0bd614098e18f0622597e76d1a898b
5e5cbd0bfb1675cfdc32d7fb8224989215d779cb3e28dd602531de3cf0c5cdb5
GET /containers/f583e4ed-db1e-48e1-9929-67ca888013c7.js HTTP/1.1
Host: www.rumiview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 27 Nov 2022 09:41:29 GMT
content-type: application/javascript; charset=utf-8
transfer-encoding: chunked
cache-control: public, must-revalidate, max-age=360
vary: Accept-Encoding, Accept-Encoding, Cookie
x-robots-tag: none
content-encoding: gzip
cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/3092657/domain/vaticahealth.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vaticahealth.com/
Origin: https://www.vaticahealth.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 27 Nov 2022 09:31:15 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CQlp5wltIuUGWoUdDj-d_N5hYVOh-4aQ8oBJxQUecgv_4QANAnjJGg==
age: 614
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/3092657/domain/vaticahealth.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vaticahealth.com/
Origin: https://www.vaticahealth.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 27 Nov 2022 09:31:15 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dx0XaKCJEUrv__f6HvxGwytPxtsrEbCzcR8xKgSvtbwVsgfqc3kM_w==
age: 614
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 09:41:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/740000948/?random=1669542087390&cv=11&fst=1669539600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&fmt=3&is_vtc=1&random=2949140177&rmt_tld=1&ipr=y
200 OK 1.4 kB URL HTTP/2 www.google.no/pagead/1p-user-list/740000948/?random=1669542087390&cv=11&fst=1669539600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&fmt=3&is_vtc=1&random=2949140177&rmt_tld=1&ipr=y
IP
Hash 131b2189d7d1acfaf19c2a874d2512e8
a6ca56fc8cf61fceff535e158cd2ea4b2bcb5825
6977694edf75fe31b066478d7b7ee370fb98e0b891ac4b2c211d2641c41bcea3
GET /pagead/1p-user-list/740000948/?random=1669542087390&cv=11&fst=1669539600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.vaticahealth.com%2F&ref=http%3A%2F%2Fcaresyncsilver.com%2F&tiba=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&fmt=3&is_vtc=1&random=2949140177&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 09:41:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1669542300000/6311499.js
200 OK 20 kB URL HTTP/2 js.hs-analytics.net/analytics/1669542300000/6311499.js
IP
File type ASCII text, with very long lines (64108)
Hash 8992fe8553838ea79c3e52ed3f453150
a943a826084a66d6e02c330c71055133b36f21db
395b964e7771592d25f93d93cbf8437b6ffcb7e884dd9eca7ccef84200d7fe5f
GET /analytics/1669542300000/6311499.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:29 GMT
content-type: text/javascript
x-amz-id-2: kAx3tWstX8SyuGrCNGPkebFkzi9J9WZNvyNdRvSkeffgSTSeuDoHKzoV+WPetkyVn4mkHJzA5bo=
x-amz-request-id: 13HZPJ31H2639QNK
last-modified: Fri, 04 Nov 2022 20:33:47 GMT
etag: W/"52eba95f2740e60b65dfd4f618ee83e8"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sun, 27 Nov 2022 09:46:29 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7709e889c939b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F
302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3092657%26time%3D1669542089028%26url%3Dhttps%253A%252F%252Fwww.vaticahealth.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKkTnTpjn4CwgAAAYS4dpQGh5rvoJ3C7w3jNFSIxVYBf9lWOw_cInofWiw3WHcNT0kuvOjTaQ9ksA; Max-Age=2592000; Expires=Tue, 27 Dec 2022 09:41:29 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKW85iZYQeF0AAAAYS4dpQGdIFatgj9mma-lJ0vdGLM1e-_xcwQcSidTvO0N80SlKN7GsJwrtVlT_HimWEVPw; Max-Age=2592000; Expires=Tue, 27 Dec 2022 09:41:29 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&e8b29124-5824-411b-8d25-6a5610c73fbd"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 27-Nov-2023 09:41:29 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2420:u=1:x=1:i=1669542089:t=1669628489:v=2:sig=AQEhHGiv_9wZegtvJoOgyquvW7jhC_wY"; Expires=Mon, 28 Nov 2022 09:41:29 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXucI8yG4igWpMcRE+ViQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5DBCF8B26B054AE6B37E07EECF3DE334 Ref B: OSL30EDGE0219 Ref C: 2022-11-27T09:41:29Z
date: Sun, 27 Nov 2022 09:41:29 GMT
content-length: 0
X-Firefox-Spdy: h2
www.rumiview.com/ppms.js
200 OK 24 kB IP
Hash c9d7df0fac7477821d28595ad2bd36f1
4a7723baffc9d470c948923338012fe280e0c3b0
a75006830c6a8a90d3ddf7d1d06d5eff76ec3bce7d4d0c4b268459e7ad6752aa
GET /ppms.js HTTP/1.1
Host: www.rumiview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 27 Nov 2022 09:41:29 GMT
content-type: application/javascript
last-modified: Tue, 20 Jul 2021 10:53:42 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"60f6ab36-11bae"
expires: Sun, 27 Nov 2022 15:41:29 GMT
cache-control: max-age=21600
x-content-type-options: nosniff
content-encoding: gzip
www.facebook.com/tr/?id=1150932738847028&ev=PageView&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&rl=http%3A%2F%2Fcaresyncsilver.com%2F&if=false&ts=1669542089628&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669542089627.2010218957&it=1669542089097&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1150932738847028&ev=PageView&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&rl=http%3A%2F%2Fcaresyncsilver.com%2F&if=false&ts=1669542089628&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669542089627.2010218957&it=1669542089097&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1150932738847028&ev=PageView&dl=https%3A%2F%2Fwww.vaticahealth.com%2F&rl=http%3A%2F%2Fcaresyncsilver.com%2F&if=false&ts=1669542089628&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669542089627.2010218957&it=1669542089097&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 27 Nov 2022 09:41:30 GMT
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/2967594?s=0.25&r=0.1067144911591763
204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2967594?s=0.25&r=0.1067144911591763
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2967594?s=0.25&r=0.1067144911591763 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sun, 27 Nov 2022 09:41:30 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uk99ZmaYycA_keJF6wSaGcCx0g5PJAmKfMUmj6IYwfWAS6Ous7aLSw==
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
200 OK 66 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
IP
Hash 964975f2d84792af2e6f7187e5c16e93
f991e2aaab77d7aa2377fe40375fdffa5157e7bb
bd8f39b0b855d2253bb6e0379fd7f77db5b4ef5373b628d846bea95c746fc3d4
GET /partner/3092657/domain/vaticahealth.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 27 Nov 2022 09:03:12 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: D2wA8vS-dVfwOq44sGSuUN5Umy6PIUcnJUOmiMFRkuh0rS1jrFDH2g==
age: 2297
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3092657%26time%3D1669542089028%26url%3Dhttps%253A%252F%252Fwww.vaticahealth.com%252F%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3092657%26time%3D1669542089028%26url%3Dhttps%253A%252F%252Fwww.vaticahealth.com%252F%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3092657%26time%3D1669542089028%26url%3Dhttps%253A%252F%252Fwww.vaticahealth.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vaticahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&a93086c1-d927-46d2-80af-4c08effb2026"; Domain=.linkedin.com; Expires=Mon, 27-Nov-2023 09:41:30 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202211270941309d998d3e-a520-4177-8f51-92cab8f0d0d5AQEZLnAs3AVeHLBzrUCG2Ae47L07mf1Z"; Domain=.www.linkedin.com; Expires=Mon, 27-Nov-2023 09:41:30 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njk1NDIwOTA7MjswMjG3B7O2m5tQ33H7si0fDyIcdm4/G0nB7eEK7s/FwtpNqw==; Domain=.linkedin.com; Expires=Fri, 26 May 2023 09:41:30 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2435:u=1:x=1:i=1669542090:t=1669628490:v=2:sig=AQGKUwiCUtZ3MkAfkiHynVt_Ggxj_MDp"; Expires=Mon, 28 Nov 2022 09:41:30 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXucI823COQk8RcQZjwLA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 0FAADEF9710F45E5B6E184F6D5BD02A9 Ref B: OSL30EDGE0219 Ref C: 2022-11-27T09:41:29Z
date: Sun, 27 Nov 2022 09:41:29 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0179baf5ec5e7b83a87754b610733eea
2a8cde6961b030ae16954fcb196a86b4b36fd70b
aed0c506abbc2b33decadb4b2d5ef82e3cff474b48bce5ebe8cce1294435cae1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109182
Date: Sun, 27 Nov 2022 09:41:30 GMT
Etag: "63822fdf-1d7"
Expires: Mon, 28 Nov 2022 16:01:12 GMT
Last-Modified: Sat, 26 Nov 2022 15:25:19 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XFpzXQdxjrrYV97kFP2DHKp3pXXwVuLQ5QguUdpSrnFvj3Vg_PU-Ug==
Age: 2153
www.rumiview.com/ppms.php?action_name=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&idsite=f583e4ed-db1e-48e1-9929-67ca888013c7&rec=1&r=561754&h=9&m=41&s=29&url=https%3A%2F%2Fwww.vaticahealth.com%2F&urlref=http%3A%2F%2Fcaresyncsilver.com%2F&_id=5d4ea503f89e6f82&_idts=1669542090&_idvc=1&_idn=0&_viewts=1669542090&send_image=1&cookie=1&res=1280x1024>_ms=895&pv_id=gzJnqR
200 OK 43 B URL HTTP/1.1 www.rumiview.com/ppms.php?action_name=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&idsite=f583e4ed-db1e-48e1-9929-67ca888013c7&rec=1&r=561754&h=9&m=41&s=29&url=https%3A%2F%2Fwww.vaticahealth.com%2F&urlref=http%3A%2F%2Fcaresyncsilver.com%2F&_id=5d4ea503f89e6f82&_idts=1669542090&_idvc=1&_idn=0&_viewts=1669542090&send_image=1&cookie=1&res=1280x1024>_ms=895&pv_id=gzJnqR
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ppms.php?action_name=Vatica%20Health%20%7C%20Risk%20Adjustment%20%26%20Quality%20of%20Care%20Coding%20Solution&idsite=f583e4ed-db1e-48e1-9929-67ca888013c7&rec=1&r=561754&h=9&m=41&s=29&url=https%3A%2F%2Fwww.vaticahealth.com%2F&urlref=http%3A%2F%2Fcaresyncsilver.com%2F&_id=5d4ea503f89e6f82&_idts=1669542090&_idvc=1&_idn=0&_viewts=1669542090&send_image=1&cookie=1&res=1280x1024>_ms=895&pv_id=gzJnqR HTTP/1.1
Host: www.rumiview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 27 Nov 2022 09:41:30 GMT
content-type: image/gif
content-length: 43
content-encoding: none
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3092657&time=1669542089028&url=https%3A%2F%2Fwww.vaticahealth.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vaticahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&add67c35-4dd4-4423-8f92-d740d3c1948f"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 27-Nov-2023 09:41:30 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2378:u=1:x=1:i=1669542090:t=1669628490:v=2:sig=AQElXC9HK-Cf4_bu6t2LYgmQVPSZ_Gyf"; Expires=Mon, 28 Nov 2022 09:41:30 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXucI863A+kN1SyID1QDQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: EFB443DEF0D340B98D378383A26D6391 Ref B: OSL30EDGE0219 Ref C: 2022-11-27T09:41:30Z
date: Sun, 27 Nov 2022 09:41:30 GMT
content-length: 0
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2967594.js?sv=7
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2967594.js?sv=7
IP
GET /c/hotjar-2967594.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 09:41:29 GMT
cache-control: max-age=60
etag: W/a16761ad483967886fbced9085370af7
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I0JfeA872a9sw7pv8ALxETdChTlRnaTWgIDhHxMSs1O0i3Rry8IhYw==
X-Firefox-Spdy: h2
www.vaticahealth.com/
200 OK 0 B IP
ASN #209242 Cloudflare London, LLC
GET / HTTP/1.1
Host: www.vaticahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://caresyncsilver.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
set-cookie: hencove=103; expires=Tue, 07-Mar-2023 08:53:59 GMT; Max-Age=8640000; path=/; secure
x-powered-by: WP Engine
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:
link: <https://www.vaticahealth.com/wp-json/>; rel="https://api.w.org/", <https://www.vaticahealth.com/wp-json/wp/v2/pages/17>; rel="alternate"; type="application/json", <https://www.vaticahealth.com/>; rel=shortlink
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
x-frame-options: ALLOW-FROM https://static.hsappstatic.net/
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zaDwx3wlb2j6s48MMLUa%2FlCxLClZesqrLIs4TxsLvIb1p9I5DSgDkARRNLNk%2BblIPcUmgtBE63KfoQoV%2FY5eDOy0FiF88a2ra2yyFdwF6VAAJcME7rrR4ryGrVrtH7KLu%2B%2F4xDIM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7709e86d78e50b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/react@16/umd/react.development.js
302 Found 0 B URL HTTP/2 unpkg.com/react@16/umd/react.development.js
IP
GET /react@16/umd/react.development.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vaticahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /react@16.14.0/umd/react.development.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJW6XYXVYBGFHRTAHQC1D9R3-fra
cf-cache-status: HIT
age: 493
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e8738f55b51e-OSL
X-Firefox-Spdy: h2
js.hs-banner.com/6311499.js
200 OK 0 B URL HTTP/2 js.hs-banner.com/6311499.js
IP
GET /6311499.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: rYSAS5ptDWpz4kXu3nhcWcds8k29YqyZ1p7h28l98mMzXR49zf2fJbZgAN8zidyfcrGbNt/w3+E=
x-amz-request-id: ADMBMMJVV7NG63DA
last-modified: Tue, 25 Oct 2022 20:51:54 GMT
etag: W/"dfda81e08c8e67873398ae53c01aa2da"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: .90c.DUUZQhdYH1U9rLEqOtAOtqcxKZj
access-control-allow-origin: https://www.vaticahealth.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sun, 27 Nov 2022 09:46:27 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7709e87d9e82b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=6311499&utk=
200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=6311499&utk=
IP
GET /collected-forms/v1/config/json?portalId=6311499&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:28 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 06962483-c6a1-4de9-aaa5-1881617610a4
access-control-allow-credentials: false
access-control-allow-origin: https://www.vaticahealth.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=CTZEz.dUPVMnMDjV17otgShxTKm2hakXRxqYH2OArZo-1669542088-0-Af+A5x+zjzjAy7a1+4ERsbYXHsZ/VhYlUuha8RS67oZoZXMr8Tdq6nVvAT1Ab8PmUOIjHrJ1FmQ7PHXFhBhf0nE=; path=/; expires=Sun, 27-Nov-22 10:11:28 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OHWuTZR9vcBoZw%2FYCVKhuQsDPjzBXpfdEBl2h4uzwAYdUCWYKvSnsz9mwVNOno7ei4oHH5rr53OOMJ%2FHp5t0fwfJ2EQdhGzCYNT7%2FsZS%2B6LZ3PdvREceXLIGSMIePAm1Jaj0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7709e8835a29b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2967594.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2967594.js?sv=6
IP
GET /c/hotjar-2967594.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 09:41:29 GMT
cache-control: max-age=60
etag: W/a16761ad483967886fbced9085370af7
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TKFkbwZ4URLX4Vx8PrjbFzmGLvLkjqYXovVyG6wVwGb51Mr2VZnnXA==
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2967594/visit-data?sv=6
200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2967594/visit-data?sv=6
IP
POST /api/v2/client/sites/2967594/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:30 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/react-dom@16/umd/react-dom.development.js?ver=6.0.3
302 Found 0 B URL HTTP/2 unpkg.com/react-dom@16/umd/react-dom.development.js?ver=6.0.3
IP
GET /react-dom@16/umd/react-dom.development.js?ver=6.0.3 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /react-dom@16/umd/react-dom.development.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJW7D104N7SVF1MWZYMXS1SJ-ams
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e8731ed0b51e-OSL
X-Firefox-Spdy: h2
cdn.leadinfo.net/ping.js
200 OK 0 B IP
GET /ping.js HTTP/1.1
Host: cdn.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 10:11:50 GMT
x-amz-version-id: 1nxpdTzCyJ_sIAuIDK5m_GlZE_sh9FQV
server: AmazonS3
content-encoding: gzip
date: Thu, 20 Oct 2022 11:23:52 GMT
cache-control: private, max-age=900
etag: W/"e9d23815b541934c4bf60ebcb7c4c581"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sWzAK64gaHIhbr9GTxKTx7Vzih1ym7XRCcr23UuKgiLUT3cenvnErw==
age: 3277055
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 16 Nov 2022 03:41:33 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: _5EZs_H26Fc6JgVRh7ahoi0orqifRkcW
etag: W/"59a69a76233d8365d7266548d5703c09"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6324c5a68bac8fd8e6eead6a5b73f2.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P4
x-amz-cf-id: s0SmEZfDRR86m_SrmVVnLuRd0M7HakWUUtPFJ0zX2RnuUsrHrlHRCw==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.311/bundles/project.js&cfRay=7709e87d8c71b506-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.311/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 7709e87d8c71b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=3o7w61j&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&upid=ntpb6j1&upv=1.1.0
200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=3o7w61j&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&upid=ntpb6j1&upv=1.1.0
IP
GET /track/up?adv=3o7w61j&ref=https%3A%2F%2Fwww.vaticahealth.com%2F&upid=ntpb6j1&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:30 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3092657/domain/vaticahealth.com/token
IP
GET /partner/3092657/domain/vaticahealth.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 27 Nov 2022 09:03:12 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NKDGlywuqOaE-HzBsstxjbxXBnI2TAN5P3aBCAzoiK4Yo_o1bSTOjg==
age: 2297
X-Firefox-Spdy: h2
unpkg.com/react@16/umd/react.development.js?ver=6.0.3
302 Found 0 B URL HTTP/2 unpkg.com/react@16/umd/react.development.js?ver=6.0.3
IP
GET /react@16/umd/react.development.js?ver=6.0.3 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 27 Nov 2022 09:41:25 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
location: /react@16/umd/react.development.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJW7D0ZEWNEKSE1TW4E68N26-ams
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7709e872fea7b51e-OSL
X-Firefox-Spdy: h2
www.influ2.com/tracker?clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8
200 OK 0 B URL HTTP/2 www.influ2.com/tracker?clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8
IP
GET /tracker?clid=c5cee6e5-7d91-4245-94c2-b0680d5f53e8 HTTP/1.1
Host: www.influ2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:27 GMT
content-type: application/javascript
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ws26.hotjar.com/api/v2/sites/2967594/recordings/content
200 OK 0 B URL HTTP/2 ws26.hotjar.com/api/v2/sites/2967594/recordings/content
IP
POST /api/v2/sites/2967594/recordings/content HTTP/1.1
Host: ws26.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 361960
Origin: https://www.vaticahealth.com
Connection: keep-alive
Referer: https://www.vaticahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 09:41:30 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
50.28.1.193
52.215.128.208
23.36.77.32
104.17.25.14
31.13.72.12
93.184.220.29