Overview

URLclk.flexdirectpath.com/c/c=1787734/s=289339/m=334003_900004889_25565/?email=
IP 3.20.165.90 (United States)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-09 13:40:40 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (18)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
performance.radar.cloudflare.com (3) 0 2022-06-29 10:44:51 UTC 2022-12-08 13:20:24 UTC 104.18.30.78 Domain (cloudflare.com) ranked at: 342
clk.flexdirectpath.com (1) 431498 2015-06-20 20:25:15 UTC 2022-12-08 08:55:25 UTC 3.20.165.90
ocsp.pki.goog (1) 175 2017-06-14 07:23:31 UTC 2022-12-09 04:10:05 UTC 216.58.211.3
ocsp.sca1b.amazontrust.com (1) 1015 2016-02-14 02:37:56 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-12-09 04:10:42 UTC 104.18.20.226
valid.rpki.cloudflare.com (1) 79201 2020-04-18 13:41:52 UTC 2022-12-09 01:45:36 UTC 104.16.0.16
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-12-09 04:09:12 UTC 23.36.76.249
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2022-12-09 04:09:32 UTC 35.241.9.150
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-09 04:11:36 UTC 34.117.237.239
consumerdigitalsurvey.com (4) 228087 2015-12-28 00:26:29 UTC 2022-12-09 05:14:10 UTC 172.67.27.14
fastly.cedexis-test.com (1) 11512 2015-03-12 02:39:16 UTC 2022-12-08 22:59:54 UTC 151.101.128.65
benchmark.1e100cdn.net (1) 10208 2016-02-04 20:53:58 UTC 2022-12-09 01:17:08 UTC 35.190.26.57
p29.cedexis-test.com (1) 11105 2020-07-30 11:41:39 UTC 2022-12-08 23:00:00 UTC 54.230.111.12
cedexis-test.akamaized.net (1) 20968 2020-08-26 07:30:59 UTC 2022-12-08 23:00:00 UTC 23.73.4.196
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-12-09 04:09:09 UTC 34.120.237.76
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-12-09 04:09:19 UTC 34.160.144.191
ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-12-09 10:54:32 UTC 93.184.220.29
ptcfc.com (1) 9736 2017-02-06 23:13:51 UTC 2022-12-09 01:17:08 UTC 104.16.53.99

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-09 2 clk.flexdirectpath.com/c/c=1787734/s=289339/m=334003_900004889_25565/?email= Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 3.20.165.90
Date UQ / IDS / BL URL IP
2023-01-08 00:16:14 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.20.165.90
2023-01-07 17:49:34 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.20.165.90
2023-01-06 05:51:25 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.20.165.90
2022-12-28 06:42:12 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.20.165.90
2022-12-27 07:41:00 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.20.165.90


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-01-29 16:31:57 +0000 0 - 0 - 1 bitbucket.org/lucianoeasy1/whythefuckareutryi (...) 104.192.141.1
2023-01-29 16:31:16 +0000 0 - 2 - 2 ww38.v2lae5wnauto.top/youtube-mo/tb.php 76.223.26.96
2023-01-29 16:28:19 +0000 0 - 1 - 2 v3.dev3.test.mioweb.cloud/wp-admin/2022/nflx2 (...) 18.185.193.181
2023-01-29 16:27:17 +0000 0 - 2 - 0 ww25.whatsglese.icu/?u=ntn15&r=A7vp42EGBC8u0f (...) 199.59.243.222
2023-01-29 16:26:39 +0000 0 - 1 - 2 v3.dev3.test.mioweb.cloud/wp-admin/2022/nflx2 (...) 18.185.193.181


Last 5 reports on domain: flexdirectpath.com
Date UQ / IDS / BL URL IP
2023-01-22 11:19:58 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.136.80.112
2023-01-22 11:19:49 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.131.108.243
2023-01-21 07:51:47 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.131.108.243
2023-01-20 20:52:03 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.131.108.243
2023-01-19 22:23:34 +0000 0 - 0 - 1 clk.flexdirectpath.com/c/c=1787734/s=289339/m (...) 3.136.80.112


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-29 08:51:30 +0000 0 - 1 - 2 ibeji.freeiz.com/ibeji/gate.php 153.92.0.100
2023-01-29 01:21:50 +0000 0 - 0 - 5 breakablecrocodile.build067.wpsandbox.app/dhl (...) 104.22.66.134
2023-01-29 01:02:13 +0000 0 - 2 - 0 storageapi.fleek.co/1000e057-888f-4e29-9037-1 (...) 104.18.7.145
2023-01-29 00:59:57 +0000 0 - 0 - 3 storageapi-stg.fleek.one/d03f83d2-06dd-4b4b-a (...) 172.67.143.96
2023-01-29 00:46:52 +0000 0 - 0 - 5 breakablecrocodile.build067.wpsandbox.app/dhl (...) 172.67.4.87

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (39)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8751
Expires: Fri, 09 Dec 2022 16:06:20 GMT
Date: Fri, 09 Dec 2022 13:40:29 GMT
Connection: keep-alive

                                        
                                            GET /c/c=1787734/s=289339/m=334003_900004889_25565/?email= HTTP/1.1 
Host: clk.flexdirectpath.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         3.20.165.90
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 09 Dec 2022 13:40:29 GMT
Content-Length: 293
Connection: keep-alive
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate, proxy-revalidate, no-transform
Pragma: no-cache
Expires: 0
Location: https://ConsumerDigitalSurvey.com/?config=9300&src=FX-289339aaa334003_900004889_25565:1787734:&email=
Server: Microsoft-IIS/10.0
P3P: CP=NOI OTC OTP OUR NOR
X-Powered-By: ARR/3.0


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   293
Md5:    75e5033f3067ad63bc7b5eb5a2b63e5d
Sha1:   0c20f7db6057d3e571c6877b7acf94fbe2bdfaca
Sha256: 932dab705273414e78dc92b883579802171314eaac56c978967779b9965c55b0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Fri, 09 Dec 2022 14:32:14 GMT
Date: Fri, 09 Dec 2022 13:40:29 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 13:33:14 GMT
age: 435
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    bf0c602d32b3c14606f22a86183b5e3c
Sha1:   6eabd8d83475eba731968abe1a05a8bfd272f160
Sha256: 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8521
Expires: Fri, 09 Dec 2022 16:02:31 GMT
Date: Fri, 09 Dec 2022 13:40:30 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: r/H8IqvRIYeXrVw3H5ZWhB9RA4eDr1pNwKoSTipgdhz9yy3MDNq3Ln+15qQOvWLJ/Ok6KNqtrFs=
x-amz-request-id: STEHBF74DJSXN3ZB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 12:48:20 GMT
age: 3130
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    53341dea33f4f3d9b4966f80589f429a
Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Dec 2022 13:40:30 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 13:40:30 GMT
Etag: "6392a38a-117"
Server: ECS (amb/6BBA)
Content-Length: 279

                                        
                                            GET /cdn-cgi/images/external.png HTTP/1.1 
Host: consumerdigitalsurvey.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consumerdigitalsurvey.com/?config=9300&src=FX-289339aaa334003_900004889_25565:1787734:&email=
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.27.14
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
content-length: 265
last-modified: Fri, 02 Dec 2022 17:55:18 GMT
etag: "638a3c06-109"
server: cloudflare
cf-ray: 776e27293b1b0b59-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Fri, 09 Dec 2022 15:40:30 GMT
cache-control: max-age=7200, public
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 4-bit colormap, non-interlaced\012- data
Size:   265
Md5:    cb09a55c92c63ed227cf14f2b7f23601
Sha1:   a97780adf99f6dcc0e88dba36cd11df267098271
Sha256: 9f03b2b292f718119a8203689d05692e054f1059112c981c1e20dec82e9f2ddb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5861
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 13:40:30 GMT
Last-Modified: Fri, 09 Dec 2022 12:02:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /img/284/r20-100KB.png?r=30031803 HTTP/1.1 
Host: ptcfc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.53.99
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
content-length: 102400
timing-allow-origin: *
access-control-expose-headers: *
etag: "5668b8ac-19000"
cache-control: public, max-age=31536000
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e2729c808b515-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 310 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   102400
Md5:    f134fda98a277b1c8f20ab8fbe2fbd58
Sha1:   a922796190a1f5bbb3c410c6ec591502050df04e
Sha256: 27bce9e85eaf3567a4695ba2b612e32615394d80d0a3a2dcb07b1fbfdfababc7
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 13:40:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8ABC48C5D74797EB75B944D7D71105E6F76765B8"
Expires: Sat, 10 Dec 2022 00:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2724
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776e272a1dc1b50c-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    a25cf54d69a83f177cd324a331aa6c59
Sha1:   bc38ce95633f70657be86ea53f55f9780ffbd5cf
Sha256: 2609ce1514977a2846b9824211e16491c33fa4c7718a6758d668e9a2c7785de5
                                        
                                            GET /img/20367/r20-100KB.png?r=62377109 HTTP/1.1 
Host: fastly.cedexis-test.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.128.65
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Connection: keep-alive
Content-Length: 102400
Server: nginx
Last-Modified: Wed, 07 Sep 2022 08:47:01 GMT
ETag: "63185a85-19000"
Access-Control-Allow-Origin: *
Cache-Control: max-age=2629743, public
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 13:40:30 GMT
Age: 1853305
X-Served-By: cache-dfw-kdfw8210038-DFW, cache-bma1675-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 6, 207401
X-Timer: S1670593230.432306,VS0,VE0
X-Cedexis-UNI: BMA|{"pop":"BMA","sip":"151.101.128.65","ip_ver":"v4","info_state":"HIT","server_name":"cache-bma1675"}


--- Additional Info ---
Magic:  PNG image data, 310 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   102400
Md5:    f134fda98a277b1c8f20ab8fbe2fbd58
Sha1:   a922796190a1f5bbb3c410c6ec591502050df04e
Sha256: 27bce9e85eaf3567a4695ba2b612e32615394d80d0a3a2dcb07b1fbfdfababc7
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 13:07:55 GMT
age: 1955
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /s/gts1d4/xZ_GeMyMCZg HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 13:40:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /r20-100KB.png?r=62847641 HTTP/1.1 
Host: benchmark.1e100cdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         35.190.26.57
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 102400
timing-allow-origin: *
via: 1.1 google
date: Wed, 30 Nov 2022 22:51:54 GMT
cache-control: public,max-age=31536000
age: 744516
etag: "5939ad35-19000"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 310 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   102400
Md5:    f134fda98a277b1c8f20ab8fbe2fbd58
Sha1:   a922796190a1f5bbb3c410c6ec591502050df04e
Sha256: 27bce9e85eaf3567a4695ba2b612e32615394d80d0a3a2dcb07b1fbfdfababc7
                                        
                                            GET /cdn-cgi/styles/errors.css HTTP/1.1 
Host: consumerdigitalsurvey.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consumerdigitalsurvey.com/?config=9300&src=FX-289339aaa334003_900004889_25565:1787734:&email=
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.27.14
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
last-modified: Fri, 02 Dec 2022 17:55:18 GMT
etag: W/"638a3c06-184d"
server: cloudflare
cf-ray: 776e27293b160b59-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Fri, 09 Dec 2022 15:40:30 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2332
Md5:    c0eec89f4fe5757de6e5a7e689d3d5f5
Sha1:   9bbb9472faea92abbd09d4d26f223eb19493f442
Sha256: bdaf05e6ab9260837fe85e5fa6294f644bd8676ec70bbe67e98402b2ebba43d0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5891
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 13:40:30 GMT
Last-Modified: Fri, 09 Dec 2022 12:02:19 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /img/r20-100KB.png?r=13093958 HTTP/1.1 
Host: p29.cedexis-test.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 102400
Connection: keep-alive
Date: Wed, 30 Nov 2022 04:20:29 GMT
Server: nginx
Last-Modified: Wed, 07 Sep 2022 08:46:26 GMT
ETag: "63185a62-19000"
Access-Control-Allow-Origin: *
Cache-Control: max-age=2629743, public
Timing-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: LedNgWBz7OKqAdUmWDeNIBGYoCKty1riC0-KXD8SwT0bSnWzC0Q2rw==
Age: 811201


--- Additional Info ---
Magic:  PNG image data, 310 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   102400
Md5:    f134fda98a277b1c8f20ab8fbe2fbd58
Sha1:   a922796190a1f5bbb3c410c6ec591502050df04e
Sha256: 27bce9e85eaf3567a4695ba2b612e32615394d80d0a3a2dcb07b1fbfdfababc7
                                        
                                            GET /img/r20-100KB.png?r=77609918 HTTP/1.1 
Host: cedexis-test.akamaized.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.73.4.196
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 102400
server: nginx
last-modified: Wed, 07 Sep 2022 08:46:26 GMT
etag: "63185a62-19000"
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
cache-control: public, max-age=2629743
expires: Mon, 09 Jan 2023 00:09:33 GMT
date: Fri, 09 Dec 2022 13:40:30 GMT
x-cache: RequestInfo=3378497917,23.73.4.196,1e0b981e,1670593230,42541,9
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 310 x 205, 8-bit/color RGBA, non-interlaced\012- data
Size:   102400
Md5:    f134fda98a277b1c8f20ab8fbe2fbd58
Sha1:   a922796190a1f5bbb3c410c6ec591502050df04e
Sha256: 27bce9e85eaf3567a4695ba2b612e32615394d80d0a3a2dcb07b1fbfdfababc7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1502
Cache-Control: max-age=115044
Date: Fri, 09 Dec 2022 13:40:30 GMT
Etag: "63925354-117"
Expires: Sat, 10 Dec 2022 21:37:54 GMT
Last-Modified: Thu, 08 Dec 2022 21:12:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171133
Date: Fri, 09 Dec 2022 13:40:30 GMT
Etag: "63932661-1d7"
Expires: Sun, 11 Dec 2022 13:12:43 GMT
Last-Modified: Fri, 09 Dec 2022 12:13:21 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DByKa8lYvgO9g0ixbfLbOjattMW4VRYQyMUYLIrB9GolLDCJW9ipiQ==
Age: 3562

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6589
Cache-Control: max-age=170181
Date: Fri, 09 Dec 2022 13:40:30 GMT
Etag: "639316d7-117"
Expires: Sun, 11 Dec 2022 12:56:51 GMT
Last-Modified: Fri, 09 Dec 2022 11:07:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /beacon.js HTTP/1.1 
Host: performance.radar.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.30.78
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
access-control-allow-origin: *
cache-control: no-store, max-age=0
access-control-allow-headers: *
access-control-allow-methods: *
referrer-policy: no-referrer
timing-allow-origin: *
set-cookie: __cf_bm=r2DBzpmGgyP0Cop703c8aymh_gHw0kjgFfs2WLTcinY-1670593230-0-ARnIWm4Fq0F6PL6t6XIKbBOVtl7G1pd1eIPf6eoxbfGfL7G8nlAeXKqeG++h4Etr7q4+8UASR7EXScUpOuVF58M=; path=/; expires=Fri, 09-Dec-22 14:10:30 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e27297bfeb529-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15057)
Size:   5377
Md5:    31372474fd38bb9de0b2e5af1d2c5b68
Sha1:   7f900df7ee17cf8ffa29b0a1160c1eda366232cd
Sha256: 586d59fd08baf8872458acd8aca7eab7e2ed7a669078b73aaec83bd8584483ca
                                        
                                            OPTIONS /api/beacon HTTP/1.1 
Host: performance.radar.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,authorization,content-type
Origin: https://consumerdigitalsurvey.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.30.78
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 13:40:31 GMT
content-length: 15
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
timing-allow-origin: *
set-cookie: __cf_bm=SmJgbEQ8cFrq7o_urlJcZu6MDJJLs4hDURh.X_QOtwY-1670593231-0-AW+8+esV8Ie/6+E0CyFMyW0Mxh+pJC9/BSlRQAim7bIIAM78k1Zrbfq5U2f+EuWQuTy3aOzWBwdf49yAGL8PpMw=; path=/; expires=Fri, 09-Dec-22 14:10:31 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e272dcfd0b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   15
Md5:    e60e0a9845110894b19d227227207fd5
Sha1:   9c4dff4af95346f1fcf0abbf53c78274f86a4b89
Sha256: 5c89330e2abcf8d6ce4e0aa3ed13147c90e8998810e9b9d827d928982cf6210b
                                        
                                            POST /api/beacon HTTP/1.1 
Host: performance.radar.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json;charset=UTF-8
Authorization: Bearer 1670593230-0fe50136f3c9e532e1ab0d1d9d32f3c6fffa7b53f19d5582236cadf70850e95a
Access-Control-Allow-Origin: *
Origin: https://consumerdigitalsurvey.com
Content-Length: 3174
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.30.78
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 13:40:31 GMT
content-length: 15
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: *
timing-allow-origin: *
set-cookie: __cf_bm=8d7I1O2QmQ38xV65yQ.LwDk8CTawXXiSxmkYKdQhufk-1670593231-0-AWILn2PDGjXaU+pKuCKqGY9Q8bZzpQQJwbdO31lMZLbuNRfwduG/+bfOA4gdFE2hnasfAbMfByIAnsQBAorrqx0=; path=/; expires=Fri, 09-Dec-22 14:10:31 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e272e0838b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   15
Md5:    0f0479874bf6f4a7281099b15df27c27
Sha1:   55a490e280d48996e564d00492437eb17faadd28
Sha256: a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6521
Expires: Fri, 09 Dec 2022 15:29:13 GMT
Date: Fri, 09 Dec 2022 13:40:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6521
Expires: Fri, 09 Dec 2022 15:29:13 GMT
Date: Fri, 09 Dec 2022 13:40:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6521
Expires: Fri, 09 Dec 2022 15:29:13 GMT
Date: Fri, 09 Dec 2022 13:40:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.249
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6521
Expires: Fri, 09 Dec 2022 15:29:13 GMT
Date: Fri, 09 Dec 2022 13:40:32 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5245
x-amzn-requestid: 9770ebcd-fb1e-4b81-bb87-1e98ef024741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy-E8HugoAMFsKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911085-54eb7a48323113d52329abf5;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:15:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d2DHUS5fGT4uoPPdjDXmHUOQVF93ULtO4zSHRmrx7KMu3lO0y0K9ag==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 01:23:35 GMT
age: 44217
etag: "27f558d5cdc150a50f080c054423500666b63d74"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5245
Md5:    43fdc85bfd574fa803f0bcdc216ef622
Sha1:   27f558d5cdc150a50f080c054423500666b63d74
Sha256: fafd2a81cddacdb4e5fd7c9963a784e6e56d06ac98f0bd4124fd74fa3ba015e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 36126
etag: "7558222788f06623ddae6e883413e38e1146281e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7897
Md5:    8c3214044657f3b876d1f1848bca5684
Sha1:   7558222788f06623ddae6e883413e38e1146281e
Sha256: e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 23237
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7557
Md5:    5de5d319f43d9c9c641419d96655541f
Sha1:   cde4c7fa0145d3645af17e34c83c63c08f76a076
Sha256: fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 23193
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6578
Md5:    8546542f00ea29ef4df6ab8d3c7c2164
Sha1:   5c8ffe91490006a9890188b53f875568c2b6bd8f
Sha256: 7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 56948
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5188
Md5:    fba9a3854df65740512f96efe7442e58
Sha1:   8fbff7725c842d70e047c635a725723a9dc9c55a
Sha256: 6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 32057
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5169
Md5:    06514ce96ae21cb01f526a5febdcbeb4
Sha1:   ebb97e5b97f394e8c67098f55581d5329ce819a2
Sha256: 4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
                                        
                                            GET /?config=9300&src=FX-289339aaa334003_900004889_25565:1787734:&email= HTTP/1.1 
Host: consumerdigitalsurvey.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         172.67.27.14
HTTP/2 403 Forbidden
content-type: text/html; charset=UTF-8
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e2728aa5e0b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /?r=40451588 HTTP/1.1 
Host: valid.rpki.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://consumerdigitalsurvey.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.16.0.16
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TTLUb0ki5%2BwjROomnm8PFoG4HNbSfgMPXx%2B79voOZA0jC5oFVP57gxT0Mc7wOl34kJcxS9hvIjaVhRs4Kg9w9MKEor7kMaG30Vi25XTjqrrWpXPi0snpostfmdjUN9is9zbREFILd8NNq8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e272ccefcb4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: consumerdigitalsurvey.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consumerdigitalsurvey.com/?config=9300&src=FX-289339aaa334003_900004889_25565:1787734:&email=
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         172.67.27.14
HTTP/2 403 Forbidden
content-type: text/html; charset=UTF-8
                                        
date: Fri, 09 Dec 2022 13:40:30 GMT
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 776e2729db990b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---