| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash37284a837312d6586460a3b86bbe7bd0 6ac0847abd48eb8607597218aaa2cb2d434c012b 6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9240
Expires: Thu, 19 Jan 2023 16:20:50 GMT
Date: Thu, 19 Jan 2023 13:46:50 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash6c8239f3894cfba54d1f3a9ea1c85db5 a70f2b3bf79f2aa26b0cc0340dd182565c3eb946 64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10705
Expires: Thu, 19 Jan 2023 16:45:15 GMT
Date: Thu, 19 Jan 2023 13:46:50 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /5lnRj8iGGSRJd6xhyKNPPpWXYUx7eRwzfPtZiEwjBLhgr3zJSwmUmJLAoE7kh1WssdLap+MPjw=
x-amz-request-id: RGBA7D16K028W8ZF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 13:45:55 GMT
age: 55
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasheaf1f44fcb81815facd31962247c00c0 2b8e91b75626cf6dffbf350b96849fb0fa98479d 6bfaa8c90e9c1f651466da0e43951f7e9852477629acb96f03f095dccd3535b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BFAA8C90E9C1F651466DA0E43951F7E9852477629ACB96F03F095DCCD3535B1"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3845
Expires: Thu, 19 Jan 2023 14:50:55 GMT
Date: Thu, 19 Jan 2023 13:46:50 GMT
Connection: keep-alive
|
|
| getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 | 34.120.5.221 | 200 OK | 45 kB |
URL HTTP/2getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 IP34.120.5.221:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash057d2fe7616872f195f7b5bba2506264 661774511f6900fe0f71d760174a186093f4cfc6 95b62c76ae978e10efd5d3df59647d98ffdd07a4b9563c3ab4107ca78f9f9641
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: jNcFxE5SIKMe07-2odRvEOh9kVfQavzsT1-jUXw3UJ0QbE-qERG17w==
content-encoding: gzip
via: 1.1 1f8eeeb66cf69eb3f901d42ffcb25050.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 13:34:51 GMT
age: 841
content-type: application/json
content-length: 44853
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashcc07d664b5dadee6f9120d54904dfa57 df75a55b0b2019684a6c512bee528c51a2c4a756 14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11775
Expires: Thu, 19 Jan 2023 17:03:05 GMT
Date: Thu, 19 Jan 2023 13:46:50 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 13:46:50 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 13:34:32 GMT
content-type: application/json
age: 738
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 13:17:27 GMT
age: 1763
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashdce4a8be753d4a93db03ffca50421c43 068040a8f69777484e545c0053ad54f273710797 7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4332
Cache-Control: max-age=160327
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 13:46:50 GMT
Etag: "63c90825-1d7"
Expires: Sat, 21 Jan 2023 10:18:57 GMT
Last-Modified: Thu, 19 Jan 2023 09:06:45 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
|
|
| www.spm.life/so/c9ON6zCYR/c?w=f9SGhrYb_fGMz9LLZV0pCz2fRiLA_nKbX6JJS5IgRhA.eyJ1IjoiaHR0cHM6Ly93d3cuc3VydmV5bW9ua2V5LmNvbS9yL1daR1FMSzUiLCJyIjoiZmU3NmRlZDYtMjE0MC00OGQ3LTgxZGUtYzk4MjAyNzZjNWRlIiwibSI6Im1haWwiLCJjIjoiNmFmY2FkZDMtZmZiNS00YTRlLTk5ZTgtYTQ2MGZiN2U1OTljIn0 | 34.117.168.233 | 302 Found | 0 B |
URL HTTP/1.1www.spm.life/so/c9ON6zCYR/c?w=f9SGhrYb_fGMz9LLZV0pCz2fRiLA_nKbX6JJS5IgRhA.eyJ1IjoiaHR0cHM6Ly93d3cuc3VydmV5bW9ua2V5LmNvbS9yL1daR1FMSzUiLCJyIjoiZmU3NmRlZDYtMjE0MC00OGQ3LTgxZGUtYzk4MjAyNzZjNWRlIiwibSI6Im1haWwiLCJjIjoiNmFmY2FkZDMtZmZiNS00YTRlLTk5ZTgtYTQ2MGZiN2U1OTljIn0 IP34.117.168.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to Suspicious *.life Domain |
GET /so/c9ON6zCYR/c?w=f9SGhrYb_fGMz9LLZV0pCz2fRiLA_nKbX6JJS5IgRhA.eyJ1IjoiaHR0cHM6Ly93d3cuc3VydmV5bW9ua2V5LmNvbS9yL1daR1FMSzUiLCJyIjoiZmU3NmRlZDYtMjE0MC00OGQ3LTgxZGUtYzk4MjAyNzZjNWRlIiwibSI6Im1haWwiLCJjIjoiNmFmY2FkZDMtZmZiNS00YTRlLTk5ZTgtYTQ2MGZiN2U1OTljIn0 HTTP/1.1
Host: www.spm.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 19 Jan 2023 13:46:50 GMT
Content-Length: 0
location: https://www.surveymonkey.com/r/WZGQLK5
X-Seen-By: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMeeETSv/Qfkdn7yvYMGZYzC,qquldgcFrj2n046g4RNSVFU+wIjSmTlxqMUV00MvxJE=,rXUceJIlvIg2Ftogbhjv0C+XeJ+Qa/A1iH/73LeWXfF1mrWkT5f8KW7OmiDenZF6hBcmxbMvc+FZp56e10byNg==,7npGRUZHWOtWoP0Si3wDp7zT5RIk4Gbggt5/mHmXvRE=,sQ19iEk473qMiaixh4sATvO3HARY49+g/5ROKN2d9t0=
X-Wix-Request-Id: 1674136010.2842360452219831
X-Content-Type-Options: nosniff
Server: Pepyaka/1.19.10
Via: 1.1 google
|
|
| push.services.mozilla.com/ | 35.165.41.15 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.165.41.15:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fWIRXZ+1oMAj7qWOkGdhHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 65mfcJuXScI7v5osiP4rOhFsmDA=
|
|
| www.surveymonkey.com/r/WZGQLK5 | 54.230.111.91 | 302 Found | 138 B |
URL HTTP/2www.surveymonkey.com/r/WZGQLK5 IP54.230.111.91:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /r/WZGQLK5 HTTP/1.1
Host: www.surveymonkey.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_JMDBBLT4C7=GS1.1.1654133888.1.0.1654133888.0; _ga=GA1.1.729600766.1654133888
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html
content-length: 138
location: http://no.surveymonkey.com/r/WZGQLK5?
date: Thu, 19 Jan 2023 13:46:51 GMT
server: nginx
x-nginx-pool-override-enabled: 1
access-control-expose-headers: Server-Timing
server-timing: traceparent;desc="00-65fd8300e50660cb7ea1affc9f4fa809-009eb1d8e50a4e18-01"
sm-request-id: yBL8j_ZmyAjVkEQcNITcGe5rmvTWFxaRFf51d_GOBOuC-XoB6RaCgg==
x-dns-prefetch-control: off
strict-transport-security: max-age=31536000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
vary: Accept
rexr-request: next:22edaf9ecf1e754845650e7b4bb766dd:1674136011.299:7
content-security-policy-report-only: default-src https: data: blob: 'unsafe-eval' 'unsafe-inline' https://www.google.com https://www.gstatic.com https://www.recaptcha.net https://api.amplitude.com wss://*.hotjar.com wss://*.qualified.com 'self'; report-uri https://csp.surveymonkey.com/report?e=false&c=prod&ar=true&a=rexrouterapp
content-security-policy: default-src https: data: blob: 'unsafe-eval' 'unsafe-inline' https://www.google.com https://www.gstatic.com https://www.recaptcha.net https://api.amplitude.com wss://*.hotjar.com wss://*.qualified.com 'self'; img-src https: http: data: blob: 'self'; script-src https: 'unsafe-eval' 'unsafe-inline' http://www.google-analytics.com http://ajax.googleapis.com http://bat.bing.com http://static.hotjar.com http://www.googleadservices.com 'self'; style-src https: 'unsafe-inline' http://resources.monkeytest1.com 'self';report-uri https://csp.surveymonkey.com/report?e=true&c=prod&ar=true&a=rexrouterapp
x-xss-protection: 1;report=https://csp.surveymonkey.com/report?e=false&c=prod&ar=true
referrer-policy: strict-origin-when-cross-origin
set-cookie: ep201="ap0s1wFnjjALh36eF6tKVg3iakA="; Domain=.surveymonkey.com; expires=Thu, 19 Jan 2023 14:16:51 GMT; Path=/; SameSite=none; Secure
ep203="B0LJbzuXaIDdN/PynFQWdBikByU="; Domain=.surveymonkey.com; expires=Wed, 19 Apr 2023 13:46:51 GMT; HttpOnly; Path=/; SameSite=none; Secure
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yBL8j_ZmyAjVkEQcNITcGe5rmvTWFxaRFf51d_GOBOuC-XoB6RaCgg==
X-Firefox-Spdy: h2
|
|
| no.surveymonkey.com/r/WZGQLK5? | 54.230.111.91 | 301 Moved Permanently | 167 B |
URL HTTP/1.1no.surveymonkey.com/r/WZGQLK5? IP54.230.111.91:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashf5d40b7259645010f9a248858ad14178 b3051d17a6ec8c9e166bf09a62b48261ab86957b 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /r/WZGQLK5? HTTP/1.1
Host: no.surveymonkey.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 19 Jan 2023 13:46:51 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://no.surveymonkey.com/r/WZGQLK5?
X-Cache: Redirect from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2U6owf6OIeCV1ZKBLTWYYUYwUdwNpYf7my5TdZCr12DIHUcSTczM4A==
|
|
| d2wy8f7a9ursnm.cloudfront.net/v6.4.1/bugsnag.min.js | 143.204.42.57 | 200 OK | 41 kB |
URL HTTP/1.1d2wy8f7a9ursnm.cloudfront.net/v6.4.1/bugsnag.min.js IP143.204.42.57:0
File typeUnicode text, UTF-8 text, with very long lines (40843) Hash626dfd70d57bf161520c21b1a8bb3c9d 6979c241cdf5088907e281a09ed6145dc47f5154 42c932ec7d981bd06fd5b2a73597e0d38b78067e331854a4aa0fdca5a80bc11a
GET /v6.4.1/bugsnag.min.js HTTP/1.1
Host: d2wy8f7a9ursnm.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Length: 40889
Connection: keep-alive
Date: Thu, 08 Dec 2022 02:28:03 GMT
Last-Modified: Tue, 24 Sep 2019 11:07:05 GMT
ETag: "626dfd70d57bf161520c21b1a8bb3c9d"
Cache-Control: public, max-age=315360000
x-amz-version-id: null
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NCdlMRuTVWhuvcZkenIgItgyOt374upvuQEviqWs-iHgeQmbT7l68w==
Age: 3669530
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10774
Expires: Thu, 19 Jan 2023 16:46:26 GMT
Date: Thu, 19 Jan 2023 13:46:52 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10774
Expires: Thu, 19 Jan 2023 16:46:26 GMT
Date: Thu, 19 Jan 2023 13:46:52 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10774
Expires: Thu, 19 Jan 2023 16:46:26 GMT
Date: Thu, 19 Jan 2023 13:46:52 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8656702f08344d3a4658bc43a9074a1f fba424e1d09cbdc839ca320458b51715dafbbccc 0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 8f28f676-7971-49c4-bca8-8db297de1865
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BQWGyXoAMFk_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7159b-5bb0584376739e964f1ae784;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:39:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cc5hg9p-WtHM1KKV4bVl3aPycf1urUaOkatp0wXPce_cB7RJSgggEQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 22:34:53 GMT
age: 54719
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg | 34.120.237.76 | 200 OK | 3.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb1b47910c4f71976f73a884bcae6f9bc 26c0d42fddb2a02d9878c34a76874710c92a9d30 9c5ce4945939b126cd36202f5afb8009ce790a792270ec31cc22099e4cd12a24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3861
x-amzn-requestid: c8fbb2e1-9ec6-42c0-8030-9be785e8913e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9TegFNEoAMFwqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c865f6-04a9e7db684e88ed69e1bd43;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0vlLtF3fPmIBiYrKVY8qBwVvS7PMn3OTGpu6C0umuCqXdzYxsF-xgQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:53:12 GMT
age: 57220
etag: "26c0d42fddb2a02d9878c34a76874710c92a9d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash511bbd0c410838e4a978d471d361d876 706be1b2636ad65bf5fe78ef7301af472c015275 e124c1ba6059fb613d0ab8f7ad37f4524323e7bbde851f78e9e5727c7d20f19f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: 42bb326d-889c-4b91-b989-47c1fd650afa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e96pVF61oAMF76g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8a4a1-2f33e6be45e298a7120d1119;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 02:02:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 68BfqCCeDzqQURstD87lSuWaXjwrqVQnXX8ws6EeFfQtbu_ad9JEgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 02:14:04 GMT
age: 41568
etag: "706be1b2636ad65bf5fe78ef7301af472c015275"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash159d5f1e013b1a3b713aeadad55e3e1c 98eb5bdc0c81a275f6f113f07f93bd280fb933b8 7e9222460265eb1ae26bcc75a29d3034a6533738fd1ed0586ea37614e11b9085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f36bdc-5e1d-4c19-960b-eda2a1687afa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10394
x-amzn-requestid: 31cafa1a-501c-4347-a64e-984a2c3df11a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1qRGscIAMFnRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1030e-4bdd7dbc09e29be46b33ac4e;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:06:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R9m9g6G6801QNfbVSwwoDAOk9nV3UHWAV4bw6JwxaSv79LtXdqV8zQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 17:34:11 GMT
age: 72761
etag: "98eb5bdc0c81a275f6f113f07f93bd280fb933b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg | 34.120.237.76 | 200 OK | 6.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb015242ebdda9cc22cfe6741d2e926f1 76072223007cd11c6f7b9fda8f01818ab0fea740 b7a72c737cac91c83c39718de999bc6ff0ec4ede63342e86407190d95e60d9a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6908
x-amzn-requestid: 5f0a0b3b-1d4c-450e-bcd5-481bda79f4e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1qQHwYIAMF-IQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1030e-62d053e35c8ab2374fd2fe35;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:06:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1eiEXaC2jHawVVHg6KAlFvdV7ZMpXdCaN8o36sbYL9WwPvXejGobKA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 17:36:56 GMT
age: 72596
etag: "76072223007cd11c6f7b9fda8f01818ab0fea740"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f0e28e6-b0e8-4d6a-86c1-1fc0c9c5513e.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f0e28e6-b0e8-4d6a-86c1-1fc0c9c5513e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7f69a0610e549f99b84e2ac1355ec1d6 c957e6d925e932c8f4939b5b723bccb532b5bf44 0304ec77a98bcd152446d03f4d630304bb6362d3ff99c58c883ebeb3f1448130
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f0e28e6-b0e8-4d6a-86c1-1fc0c9c5513e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8665
x-amzn-requestid: d4ef9b00-3cff-4ca0-be67-39074ca71996
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewYQuE1NIAMFymQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c33a6a-57f41f0a286ffffd2ca5ee8b;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 23:27:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ESbnZ69JgaSSqmynXtDLCCkPi9I3KeFPISrQUr1WMJWQBIyxhTHW5w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 17:37:08 GMT
age: 72584
etag: "c957e6d925e932c8f4939b5b723bccb532b5bf44"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdn.polyfill.io/v2/polyfill.min.js?features=Intl.~locale.no | 151.101.193.26 | 200 OK | 126 B |
URL HTTP/2cdn.polyfill.io/v2/polyfill.min.js?features=Intl.~locale.no IP151.101.193.26:0
Hash73facef13260d15915b31c39a22317b8 2e0d6642d943b6bba33c14ed89db6ca0d98e7844 fe0e7a42051b9bde30f5d3f6679756e2aad5814be1914d6606d961f6e15f07f7
GET /v2/polyfill.min.js?features=Intl.~locale.no HTTP/1.1
Host: cdn.polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=UTF-8
last-modified: Mon, 16 Jan 2023 13:35:35 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Thu, 19 Jan 2023 13:46:52 GMT
vary: User-Agent, Accept-Encoding
server-timing: PASS, fastly;desc="Edge time";dur=14
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 126
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 IP104.18.21.226:0
Hashd89bcfc05208a8c8a121cdbb0d9044cb 11ef8fcc014870f4facb2cbde27e5cb74c884d4c 3e470cfc7f4ecad89a33ddbbdd5a9110836bee90700663ba217f6290ec37972d
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 13:46:52 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B6859BE330C541C283D82227D96447137AB8F3AA"
Expires: Fri, 20 Jan 2023 00:00:00 GMT
Last-Modified: Thu, 19 Jan 2023 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3010
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78c004dffb01b523-OSL
|
|
| cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Medium.2.woff2 | 143.204.55.57 | 200 OK | 37 kB |
URL HTTP/2cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Medium.2.woff2 IP143.204.55.57:0
File typeWeb Open Font Format (Version 2), TrueType, length 37339, version 1.0\012- data Hash1ebab08781dd6eebbe312e6f97f6e26a e70a14ebabe5d90f7c1f06fb6a91e787575a6268 9d1ac6865e4ba78d64acb5316f123a17a0840cbd8439415a8a66440697524e99
GET /assets/wds-core_4_20_1/fonts/National2Web-Medium.2.woff2 HTTP/1.1
Host: cdn.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://no.surveymonkey.com/
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37339
x-amz-id-2: TmbMpK7zd3DI4Ug/R52MJfQR+sCZ3ObHJol0E1d5GHK8F9OoDqmFCdR7SdyNRb0dTjND1EYTHvY=
x-amz-request-id: P0YSA2KQGASC3ZV0
date: Thu, 19 Jan 2023 06:09:24 GMT
x-amz-replication-status: COMPLETED
last-modified: Sun, 01 Nov 2020 19:13:17 GMT
etag: "1ebab08781dd6eebbe312e6f97f6e26a"
x-amz-server-side-encryption: AES256
x-amz-version-id: vEytsnA7A.SksyBR2.aTRk0nGrLt9XvL
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T4UVUFlVjgOkRd9TWfzfBLEOzs6ibzgFvxyjP-ukK7E7DXxPInQlZQ==
age: 27450
X-Firefox-Spdy: h2
|
|
| cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Light.2.woff2 | 143.204.55.57 | 200 OK | 36 kB |
URL HTTP/2cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Light.2.woff2 IP143.204.55.57:0
File typeWeb Open Font Format (Version 2), TrueType, length 35935, version 1.0\012- data Hashe55198d6fcd57630f0617639e2f6da90 1d1910f8a407a0b33892ee14ea451943cc7c9c9f 8924a5e7cde8b8cfd7fb9b9540e794993ba9dcbbc371ce9ca7c91924ef2d73b1
GET /assets/wds-core_4_20_1/fonts/National2Web-Light.2.woff2 HTTP/1.1
Host: cdn.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://no.surveymonkey.com/
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 35935
x-amz-id-2: L4wdKQX9+3PrCUjSnz3F8HC0aZt31uFSxhntNvHWQFSi9QbkKjgYnc7nj5lR/ITf+vnf7jQYUek=
x-amz-request-id: WAVAZ5XPMJQM4MMD
date: Thu, 19 Jan 2023 01:34:41 GMT
x-amz-replication-status: COMPLETED
last-modified: Sun, 01 Nov 2020 19:13:21 GMT
etag: "e55198d6fcd57630f0617639e2f6da90"
x-amz-server-side-encryption: AES256
x-amz-version-id: .b9d8NliPtRxSNLym_6cRZkpcjBu5dCf
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w2bUGeK2R_sluvTcaL1_6MVvbZEBREk9zjQrKW51PlaM6uKjAsIOyQ==
age: 43933
X-Firefox-Spdy: h2
|
|
| cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Regular.2.woff2 | 143.204.55.57 | 200 OK | 35 kB |
URL HTTP/2cdn.smassets.net/assets/wds-core_4_20_1/fonts/National2Web-Regular.2.woff2 IP143.204.55.57:0
File typeWeb Open Font Format (Version 2), TrueType, length 34775, version 1.0\012- data Hash13244bd99451605c61b32c9617162c1f 0e76a3a33245d9276580c0b4d8ecac07d9936e66 c7e022d03458278aabb7ce6892ddeef5736041de037d0d64adedc2eb1d82850b
GET /assets/wds-core_4_20_1/fonts/National2Web-Regular.2.woff2 HTTP/1.1
Host: cdn.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://no.surveymonkey.com/
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 34775
x-amz-id-2: y1IXLLcofFCznu63Ae+GWK54u5/5jwPEedbVGb63r6IwE325wWbRGhLTx5IOMLT66BcjXtYBbq4=
x-amz-request-id: 0K0YFYENQQJB09H7
date: Thu, 19 Jan 2023 02:28:15 GMT
x-amz-replication-status: COMPLETED
last-modified: Sun, 01 Nov 2020 19:13:20 GMT
etag: "13244bd99451605c61b32c9617162c1f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8ubqF9F2WDYjJ4epmpUioD.um_y63k7M
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J5pxCp--hJVfxGrnaHOElEWVLjrLVXlPLwZU8G7rmOvHoGc4CAP2kA==
age: 40719
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-app-smwebscripts.e2ba4bd4.js | 143.204.55.33 | 200 OK | 205 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-app-smwebscripts.e2ba4bd4.js IP143.204.55.33:0
Hashc5b6041acdc70fb39f000bc2228e38bb 9ba0d28ad00c3623e4d711f4b8c83affcbcb93ca 46794bca2995d7779a159d9cda88fbb7633276e24ec44b162d4907d9b4b97bac
GET /assets/smweb/modern/respweb/mntv-app-smwebscripts.e2ba4bd4.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 205
x-amz-id-2: edaELDU129DPDI0iF3KOt8D4PLRPcfSkRn5OyvgfwozADjyoD8oQy8y2IGmnEIpo8vmtoAmxa1s=
x-amz-request-id: A1CTWFXMP7KT1PQN
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 18:28:47 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: u6yKsnpKBLOR10henuxWJ4ZuWVxLJaHm
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
date: Thu, 19 Jan 2023 11:04:43 GMT
etag: "c5b6041acdc70fb39f000bc2228e38bb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EWw85bAV2yy1uqe2hEnHx7NJ1uDwc2HmXVR1BjMjOsI0jgk2lvefGQ==
age: 9731
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash1049779c8b75005665007abfddac3d4a 61a946fb532a3ac3abf63140bd99c5f02d358c80 e23ffa0bcc93f228394c466d265ffe0cbf1dd1ce7c72b17d0782148dffdad707
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 13:46:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 21:46:54 GMT
Expires: Tue, 24 Jan 2023 21:46:53 GMT
Etag: "61a946fb532a3ac3abf63140bd99c5f02d358c80"
Cache-Control: max-age=460199,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78c004e1dde9b529-OSL
|
|
| sessions.bugsnag.com/ | 35.190.88.7 | 200 OK | 0 B |
IP35.190.88.7:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://no.surveymonkey.com/
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Thu, 19 Jan 2023 13:46:53 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| sessions.bugsnag.com/ | 35.190.88.7 | 202 Accepted | 21 B |
IP35.190.88.7:0
File typeJSON data\012- , ASCII text, with no line terminators Hash1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Content-Type: application/json
Bugsnag-Api-Key: 121e799574fa66e51bb2e5abe07ae980
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2023-01-19T13:46:52.632Z
Content-Length: 398
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: b6c3e2bd-c960-4bfe-9b48-845c74ce546c
content-type: application/json
date: Thu, 19 Jan 2023 13:46:53 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash1049779c8b75005665007abfddac3d4a 61a946fb532a3ac3abf63140bd99c5f02d358c80 e23ffa0bcc93f228394c466d265ffe0cbf1dd1ce7c72b17d0782148dffdad707
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 13:46:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 21:46:54 GMT
Expires: Tue, 24 Jan 2023 21:46:53 GMT
Etag: "61a946fb532a3ac3abf63140bd99c5f02d358c80"
Cache-Control: max-age=460199,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78c004e44a75b529-OSL
|
|
| prod.smassets.net/assets/smweb/modern/respweb/i18n/no-NO.266c24fb.js | 143.204.55.33 | 200 OK | 5.1 kB |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/i18n/no-NO.266c24fb.js IP143.204.55.33:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (21223), with no line terminators Hashf25b8c0a64fcf7c6b39209d95f970625 b78312c3a736a95cb39b53f51221db11d9a6bb0d 7816e7adac792482092ffe0c4154acfcbb6e60c35e463468ad1d80d6821eb164
GET /assets/smweb/modern/respweb/i18n/no-NO.266c24fb.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: nZkuNG6Yms2OuF4PTzvN2mHGwozHHzrDMKundPb4X9hCOnkjt46c5RwCxK15An/wJQdiwiLgp0Q=
x-amz-request-id: 0TF9KMAMFXFEY66K
date: Thu, 19 Jan 2023 03:06:49 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:18 GMT
etag: W/"e62f52eb3c2f32ff357430be9ad7638c"
x-amz-server-side-encryption: AES256
x-amz-version-id: _XDKIrL2xGId3_0t3FrWeEjoEjzovahN
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7meeqfSErUALRz6iPi_3-QcaOsOJzob70fvgY8IRrfCaRRw34PW1Vw==
age: 38405
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/static/styles/mntv-vend-sm-webassets.9ffe3aa5.css | 143.204.55.33 | 200 OK | 3.5 kB |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/static/styles/mntv-vend-sm-webassets.9ffe3aa5.css IP143.204.55.33:0
File typeASCII text, with very long lines (24234) Hash2cc20dcbfeb8014259e009d3830c9cdc e8ed4ca3ca3f566a62f00abb2f9b58e8869b3417 7c7be1d35258369c20e812c98a79e24ec657141f4fce44d3ca50fe6c280496b9
GET /assets/smweb/modern/respweb/static/styles/mntv-vend-sm-webassets.9ffe3aa5.css HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
x-amz-id-2: ly1qiIVexpckQYJnEARBrypaNieqCPTeGANSQdwRaTZNAn5ez0C8IRz3WhKQhfsJhRzkHMw4w3U=
x-amz-request-id: 6WYP6R98YJVD2Q8T
date: Thu, 19 Jan 2023 03:45:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:19 GMT
etag: W/"f748f6386cd1f257287734dac917a6e0"
x-amz-server-side-encryption: AES256
x-amz-version-id: s8R4Nppq119cD_D.iVSrll_ohQBl1U5z
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PTvoaYYS9XbU_QDMx-EcpPLcCNIn9q1hZZH3w3YsYnQx91Kdh2qXww==
age: 36058
X-Firefox-Spdy: h2
|
|
| no.surveymonkey.com/apple-touch-icon-180x180-precomposed.png | 54.230.111.91 | 302 Found | 138 B |
URL HTTP/2no.surveymonkey.com/apple-touch-icon-180x180-precomposed.png IP54.230.111.91:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /apple-touch-icon-180x180-precomposed.png HTTP/1.1
Host: no.surveymonkey.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/r/WZGQLK5?
Connection: keep-alive
Cookie: _ga_JMDBBLT4C7=GS1.1.1654133888.1.0.1654133888.0; _ga=GA1.1.729600766.1654133888; ep201="ap0s1wFnjjALh36eF6tKVg3iakA="; ep203="B0LJbzuXaIDdN/PynFQWdBikByU="; _splunk_rum_sid=%7B%22id%22%3A%2254ca5ed8df29da6474bfc06ab272d213%22%2C%22startTime%22%3A1674136012402%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
content-type: text/html
content-length: 138
location: https://cdn.smassets.net/assets/cms/cc/app/static/apple-touch-icon-180x180-precomposed.png
date: Thu, 19 Jan 2023 13:46:54 GMT
server: nginx
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
set-cookie: ep201="ap0s1wFnjjALh36eF6tKVg3iakA="; Domain=.surveymonkey.com; expires=Thu, 19 Jan 2023 14:16:54 GMT; Path=/; SameSite=none; Secure
ep203="B0LJbzuXaIDdN/PynFQWdBikByU="; Domain=.surveymonkey.com; expires=Wed, 19 Apr 2023 13:46:54 GMT; HttpOnly; Path=/; SameSite=none; Secure
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1DQDCDxTjd0xd5QkLxSoClP2UiTRgeH35d2GbHhmAVBwFDsYwCTAEQ==
X-Firefox-Spdy: h2
|
|
| cdn.smassets.net/assets/cms/cc/app/static/apple-touch-icon-180x180-precomposed.png | 143.204.55.57 | 200 OK | 9.5 kB |
URL HTTP/2cdn.smassets.net/assets/cms/cc/app/static/apple-touch-icon-180x180-precomposed.png IP143.204.55.57:0
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash8b0ed9ad5ca155f0d74b02c5f58e3c12 e4ce82e523ff4636669f3c4a704b1b29c850f75c 5e64641c02e4bb8478f55869eeccfa279fd798af0d72767c1e2cf4df9f44650d
GET /assets/cms/cc/app/static/apple-touch-icon-180x180-precomposed.png HTTP/1.1
Host: cdn.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9548
date: Mon, 16 Jan 2023 00:44:12 GMT
server: nginx
last-modified: Thu, 18 Jun 2020 21:02:36 GMT
etag: "5eebd66c-254c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=315360000
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wSIchDOHy_4GZ4Ff0GsPvRC9AhtZW91-8fi4LURuU3QiBYAzgL7Q0Q==
age: 306162
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/static/images/surveymonkey/favicon.ico | 143.204.55.33 | 200 OK | 15 kB |
URL HTTP/2prod.smassets.net/assets/static/images/surveymonkey/favicon.ico IP143.204.55.33:0
File typeMS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Hasha6067504c77a4b664f99053cc97b2d61 172d55c94e6034b72b1928ccd4af7e2a2ee37ad7 5966dc861723432715747cca5f811f4ddb7ca67314a76f447bb553973f10dcf8
GET /assets/static/images/surveymonkey/favicon.ico HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 15086
x-amz-id-2: 3ltHFrcwaMTNsCc3TxUuwBdhMmgL+0IW6AN8DG5HtknGFRibqoduHLqF0yitnzCHTA8ohCpHC+tgrSbeBo111g==
x-amz-request-id: HS5FBEYEMV00WYJ4
x-amz-replication-status: COMPLETED
last-modified: Thu, 25 Nov 2021 02:04:03 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Q3FsCPn41jLhSlXW67nFM3KaDllFKg5d
accept-ranges: bytes
server: AmazonS3
access-control-allow-origin: *
date: Thu, 19 Jan 2023 09:57:22 GMT
etag: "a6067504c77a4b664f99053cc97b2d61"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kn2gk3jnEWkBdZhsaNotHhAawgjYWpakdyvlIhqpJJLYN-aE8sgfjg==
age: 13773
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-wds-icons.cbe1d502.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-wds-icons.cbe1d502.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-wds-icons.cbe1d502.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: kB0bjKR/LDQhWDmQgVfUW9aXjHJdEO6bPJcF4TH8Rltdnz1kAiXC/Xx75B7OV6vDMLD9TAwFmwY=
x-amz-request-id: TWWXNY2NJQBHCAQ2
date: Thu, 19 Jan 2023 05:15:37 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:20 GMT
etag: W/"b199ca70d2ebeb810233042dd7320787"
x-amz-server-side-encryption: AES256
x-amz-version-id: OUQy.jvJ8rHF34UC3P_FVuKvvS._OgbM
server: AmazonS3
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zGv-BZJ4eL8DFoTqHWLBwOKGTtO-rKNKmQYu1LRWyxMV2OeF8_gZdg==
age: 30677
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-wds.f8e80b52.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-wds.f8e80b52.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-wds.f8e80b52.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: l3Wbx1DPSgYeGwZLd9OfrM/NPrJhriM+LJS5TdHorY0lwM9Z49GOoASrRtMlciZm5il3or0Agh0=
x-amz-request-id: C802W724TET3CMA0
x-amz-replication-status: COMPLETED
last-modified: Tue, 17 Jan 2023 18:10:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: tyX6OKkdtSrDhOsdC.Xv4EypcedBmUAg
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
date: Thu, 19 Jan 2023 01:05:34 GMT
etag: W/"0ff46d0fb251d038e64913af8f54f639"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZkmC2oxTI8O0MTNc7UTUVIYeT6G7lb7ifH4naulIsf6ZkUlbosGVxg==
age: 45680
X-Firefox-Spdy: h2
|
|
| cdn.signalfx.com/o11y-gdi-rum/latest/splunk-otel-web.js | 54.230.111.101 | 200 OK | 0 B |
URL HTTP/2cdn.signalfx.com/o11y-gdi-rum/latest/splunk-otel-web.js IP54.230.111.101:0
GET /o11y-gdi-rum/latest/splunk-otel-web.js HTTP/1.1
Host: cdn.signalfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Origin: https://no.surveymonkey.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 11 Jan 2023 12:50:19 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Thu, 19 Jan 2023 13:29:22 GMT
cache-control: max-age=3600
etag: W/"930f1bc3802a070e5d8cdd0e8cc223e8"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TKwuhOjR5k4pg_mtbeD3mwP-_TiCQ0NUjXmfMayTgNyp4zHa7oPgNg==
age: 1051
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-default.8d60a775.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-default.8d60a775.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-default.8d60a775.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: 5vICVRjQpjIeH1TloM0cCxMEDojq2PfN0ZigkVEPt27jTU0MbRnyqLo3tVK32it+uExQVWk6fpo=
x-amz-request-id: FCRA80SDC514REH0
date: Thu, 19 Jan 2023 03:17:42 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:20 GMT
etag: W/"1f7e4cb8fff111dc59b72f514e49a470"
x-amz-server-side-encryption: AES256
x-amz-version-id: tNuSQeSiTKKN..LTskaqq1Lg4C9ChPXr
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: piCeNwOnHrZN8GUCMU0WFjuGAm-PT_-N2xwQHj39ixh69B8AsZOyTQ==
age: 37752
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-sm-icons.605ed782.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-sm-icons.605ed782.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-sm-icons.605ed782.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: GXXIqM+GjdB9fumiIhgOpEl7wJkyTkUdg7zLHKMn9SZmnAE+mrxEWdzpFobLYKgGALQo6Iek2mU=
x-amz-request-id: XFEKKB2STHNS322C
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 19:59:05 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: byGiw_IFhOawnPYfecbTLnxUiEKZii8F
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
date: Thu, 19 Jan 2023 00:23:48 GMT
etag: W/"55f2aaad5cf17d13afad6c3f648f28cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LrLq5MHfVSRgu8ZWj51FtoqouzZZPExvwMQz9eIdVY2f9KO0E3gYgQ==
age: 48186
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-sm.629bd739.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-sm.629bd739.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-sm.629bd739.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: QCtgapaWRiwH5mII7upPppuNCOj9wvAwo1WWghJer+JAQ4Mh6TvTkkmIXMeHs7EE1h3+o91DQhw=
x-amz-request-id: 29WWHEK47QAG1XWY
x-amz-replication-status: COMPLETED
last-modified: Tue, 17 Jan 2023 18:10:56 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 3ouXyhV6IJ.w7pi9X9cyKzyzi.XItcJg
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
date: Thu, 19 Jan 2023 01:05:21 GMT
etag: W/"4c4829201592d464a2d57c433e9c1da3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M6keuV7AASLwVgFwvJTE-8HQgu41mIuP1Eh5N-tQ0dHqVn5wONfOhA==
age: 45693
X-Firefox-Spdy: h2
|
|
| unpkg.com/react-intl@2.7.2/locale-data/no.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/react-intl@2.7.2/locale-data/no.js IP104.16.126.175:0
GET /react-intl@2.7.2/locale-data/no.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 13:46:52 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"45f-QZee2sF0Km71XRsfVXcfWi7dpVw"
via: 1.1 fly.io
fly-request-id: 01F529TQF5BZK1MV8V6XJ92Z9T
cf-cache-status: HIT
age: 22241665
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 78c004df6e2cb505-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-frameworks.9f902f11.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-vend-frameworks.9f902f11.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-vend-frameworks.9f902f11.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: kUOPw5W68qz/C8wPn47m6hqOsv/JSpO5izy8HKh4XILVy4TT99d/P7MMt+7jwPfh6Bs34xGTuJw=
x-amz-request-id: K7MM1BHFPX9ATS4M
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 18:28:47 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: W1_p0QhiHIUvxhNIkrSxfWyKTLhKGFhp
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
date: Thu, 19 Jan 2023 11:04:39 GMT
etag: W/"de29940a7c96f367c98290a632ecda7a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vI90XL802sELEu71zLoKsfoXO_zFQUMrBf4SCGF8Ns0t_o13Y7YkOw==
age: 9734
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-app-respweb.10b081d8.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-app-respweb.10b081d8.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-app-respweb.10b081d8.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: Q3WzvH4rYjSgKB1QOHWrBX2s0Vw/sArOJq2rX4LUvXRWjxxhhOL11kM1YKFodT0yFgWai15gb3E=
x-amz-request-id: YT31KCV7B5S216JP
date: Thu, 19 Jan 2023 02:47:17 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:19 GMT
etag: W/"2f831a9243f392f85f92f6d3178e6ce3"
x-amz-server-side-encryption: AES256
x-amz-version-id: KwW3nZa_vgAGIoyNxf2cKWfSuCxSenfh
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jie_NOBl_Q9dWqampw1a5nbG1kAE0kfAyy8QPKsQoGIbOz463S3sig==
age: 39577
X-Firefox-Spdy: h2
|
|
| no.surveymonkey.com/r/WZGQLK5? | 54.230.111.91 | 200 OK | 0 B |
URL HTTP/2no.surveymonkey.com/r/WZGQLK5? IP54.230.111.91:0
GET /r/WZGQLK5? HTTP/1.1
Host: no.surveymonkey.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_JMDBBLT4C7=GS1.1.1654133888.1.0.1654133888.0; _ga=GA1.1.729600766.1654133888; ep201="ap0s1wFnjjALh36eF6tKVg3iakA="; ep203="B0LJbzuXaIDdN/PynFQWdBikByU="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 19 Jan 2023 13:46:52 GMT
server: nginx
vary: Accept-Encoding, Accept-Encoding
x-nginx-pool-override-enabled: 1
access-control-expose-headers: Server-Timing
server-timing: traceparent;desc="00-7a42f2a94eb9134fc4f399e0b83a9264-bdc4d29d9320b73d-01"
sm-request-id: 7GDoxjQSf6p8W-o91Y47T0CdPke015CIEUmGqO7WWjR5LCvPxacN7A==
x-dns-prefetch-control: off
strict-transport-security: max-age=31536000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
content-security-policy: default-src https: data: blob: 'unsafe-eval' 'unsafe-inline' https://www.google.com https://www.gstatic.com https://www.recaptcha.net https://api.amplitude.com wss://*.hotjar.com wss://*.qualified.com 'self'; img-src https: http: data: blob: 'self'; script-src https: 'unsafe-eval' 'unsafe-inline' http://www.google-analytics.com http://ajax.googleapis.com http://bat.bing.com http://static.hotjar.com http://www.googleadservices.com 'self'; style-src https: 'unsafe-inline' http://resources.monkeytest1.com 'self';report-uri https://csp.surveymonkey.com/report?e=true&c=prod&ar=true&a=rexrouterapp
x-content-security-policy: default-src https: data: wss: 'self'; upgrade-insecure-requests; style-src 'unsafe-eval' 'unsafe-inline' 'self' https://*.trustedshops.com https://*.smassets.net https://*.surveymonkey.com https://fonts.googleapis.com https://fonts.gstatic.com; script-src 'unsafe-eval' 'unsafe-inline' https: 'self' 'strict-dynamic' 'nonce-24a143b5ee80b6ef9451fe3fb19f83f1'; object-src 'none'; base-uri 'self'; report-uri https://csp.surveymonkey.com/report?e=true&c=prod&a=respweb
x-webkit-csp: default-src https: data: wss: 'self'; upgrade-insecure-requests; style-src 'unsafe-eval' 'unsafe-inline' 'self' https://*.trustedshops.com https://*.smassets.net https://*.surveymonkey.com https://fonts.googleapis.com https://fonts.gstatic.com; script-src 'unsafe-eval' 'unsafe-inline' https: 'self' 'strict-dynamic' 'nonce-24a143b5ee80b6ef9451fe3fb19f83f1'; object-src 'none'; base-uri 'self'; report-uri https://csp.surveymonkey.com/report?e=true&c=prod&a=respweb
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
sl_notranslate: 1
etag: W/"363b9-1Zwr4xrrKGtbfftJL1IrXnzQSAQ"
rexr-request: next:01e180884a341c8a392b7cd33db9f5fb:1674136012.341:794
content-security-policy-report-only: default-src https: data: blob: 'unsafe-eval' 'unsafe-inline' https://www.google.com https://www.gstatic.com https://www.recaptcha.net https://api.amplitude.com wss://*.hotjar.com wss://*.qualified.com 'self'; report-uri https://csp.surveymonkey.com/report?e=false&c=prod&ar=true&a=rexrouterapp
x-xss-protection: 1;report=https://csp.surveymonkey.com/report?e=false&c=prod&ar=true
referrer-policy: strict-origin-when-cross-origin
set-cookie: ep201="ap0s1wFnjjALh36eF6tKVg3iakA="; Domain=.surveymonkey.com; expires=Thu, 19 Jan 2023 14:16:52 GMT; Path=/; SameSite=none; Secure
ep203="B0LJbzuXaIDdN/PynFQWdBikByU="; Domain=.surveymonkey.com; expires=Wed, 19 Apr 2023 13:46:52 GMT; HttpOnly; Path=/; SameSite=none; Secure
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7GDoxjQSf6p8W-o91Y47T0CdPke015CIEUmGqO7WWjR5LCvPxacN7A==
X-Firefox-Spdy: h2
|
|
| prod.smassets.net/assets/smweb/modern/respweb/mntv-webpack-runtime.5f0086ab.js | 143.204.55.33 | 200 OK | 0 B |
URL HTTP/2prod.smassets.net/assets/smweb/modern/respweb/mntv-webpack-runtime.5f0086ab.js IP143.204.55.33:0
GET /assets/smweb/modern/respweb/mntv-webpack-runtime.5f0086ab.js HTTP/1.1
Host: prod.smassets.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://no.surveymonkey.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-id-2: zyj7Mlze2HhVyIxqU/MPQvBj8u9WsrmtMhu4THNwWPCUI5nJxYAGDGHjOJRowCcD0+lk6InSem0=
x-amz-request-id: EG7362WR6GRYNYD1
date: Thu, 19 Jan 2023 00:14:53 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 18 Jan 2023 17:07:15 GMT
etag: W/"e9d3d6d03812698100af11c80f8ac0b6"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4LhhYho_BgTJfl5MRKor8fy35sORaSzW
server: AmazonS3
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kK_j969DA1hX3BQ-TyUTGE9gxNsN_btSlwd6qJS89YFA2ZQaNyoe-g==
age: 48721
X-Firefox-Spdy: h2
|
|