| manylucksurvey.top/js/v-react-dom.production.min.js.c3329619.js | 104.21.44.8 | 200 OK | 48 kB |
URL GET HTTP/3manylucksurvey.top/js/v-react-dom.production.min.js.c3329619.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65440) Hashf5e47be85ac64238a6511377c99bef6b 14202f5ec5092ffcb622a84db5877f1c99493b4c 198b63ec93086fb7042c6052dc6558626c506852de0903547cd1b2d52780839e
GET /js/v-react-dom.production.min.js.c3329619.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: W/"661f9116-1f94f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HJXpKavo11mufHczUgVj6lwjfhIVVichs7iUOhw0vrOrmH65ISxOM1GnlmDjdD4zm9NFq9sYfaU7iN3AmCjFuE2sKBd3G0rskYMXS0UpXA6L9piJ1b24QhTnkeXYHrzOQDKQiVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89facb56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/css/sweeps-survey.f5ae42b0.css | 104.21.44.8 | 200 OK | 34 kB |
URL GET HTTP/3manylucksurvey.top/css/sweeps-survey.f5ae42b0.css IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash895c99e8dc2cac2fe41b6e4623314c0e aa530776c5425e3f15a8ad66ee1bc43840172ac6 bb88f272fbb80a919f86655f6cffff6d8419f09b60e279c9727d904f16d73d9c
GET /css/sweeps-survey.f5ae42b0.css HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=93694
etag: W/"661f9116-16dfe"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xbotKaloBh4YindRtE93rkFSspGf%2BylW2m8dj96s1BMmHzHF%2BDpc5gCTK2xPU3kxp2KEarGDj5WwmRcurTfqUE0x3%2FWadAtcYvSF%2FQppJHQrV1IQI2%2B5kS%2BstHwAiJfnIBgy9%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8a0ad656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/SurveyContainer.e2959212.js | 104.21.44.8 | 200 OK | 15 kB |
URL GET HTTP/3manylucksurvey.top/js/SurveyContainer.e2959212.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (57003) Hash1716bf0d79004adf0eb2cdcd64159891 67852b096bcc8817fb0b9b98abf264e40a59310c 56cd17eb9def743ef4bc4909a6eacb77266b749181cfcaec4d478336b1c6ff21
GET /js/SurveyContainer.e2959212.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: W/"661f9116-defd"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BMcgmQm4sHXhC8dQbU3%2FPvgMX4UP4uceOQ%2FOXH8Aj8wl7tdikg4K6OP4g1aPzGuLAxfyQJ6KUlDrZD9M3gXGu86RenoRp7T9eA3oON6SXxAd36mruAc7Rnc1bRNQ3Dv1pGTdhZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c6cc456a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-4.webp | 104.21.44.8 | 200 OK | 800 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-4.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hashb1c95558f71bd6614c52433c225b6a28 7c903c12b48199ac1e1b3c8846baf12693b97a28 8e5987af9fd886b03617f6e4980035a877697b9ccdeb9f002c41baa1d6ee8912
GET /img/comments/person-sweep-4.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 800
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-320"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AGqI%2FolJcr1fvC%2B1Ucsy5xEf68qrrAdTLOrfTIKQq6l3V746zEADdYczYQikbzJraPqDId%2FUjd3HUsRF3AzpB8u0oTE0w8IdUBcWJS8tnI21BP7X8xZrWoeBuQ9rGTtoekgicl4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5356a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/config/sd/sd-2755-en.js?v=10 | 104.21.44.8 | 200 OK | 3.5 kB |
URL GET HTTP/3manylucksurvey.top/js/config/sd/sd-2755-en.js?v=10 IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (6124), with no line terminators Hashbd31942fdf7b7c72a6c515cb6ba97649 a435973c510b908086a8986ff9635c12e1b9f4a9 c54b10f926167c51201e86f32ca575b5a64880f9c3be43f7ebae2740f5ebf9cd
GET /js/config/sd/sd-2755-en.js?v=10 HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9116-17ec"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jxuy54tP2JEZNYACFTbHrojDvzCeE7RP6xSCIf%2ByGgeBSI%2F8Noy1NKiJFyJZIMnohPImBrajXDNHYoNx42MZQyf0%2FpBQDdMdl6qccUnuEGeV2rcqtI9yPqD3ARGMYAb%2FnYYxX64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8b3be656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-1.webp | 104.21.44.8 | 200 OK | 862 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-1.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x52, Scaling: [none]x[none], YUV color, decoders should clamp Hash384118eb5e49870ad443d90051c692cb 35a73704dcf55b3232f2e9cfc333ff2ecfdcc19f 1ae21006f04f15e16a8057644615cdf8a8a9b39db706f53ba9a925327a6a1635
GET /img/comments/person-sweep-1.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 862
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-35e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZBfJjbH1rWGCNYxdDBNapf9i403Wqy0%2FV7KNmhxVF6iep2IoNsuipQJ5ghedQGGm53K95HtdAF6%2BhiMJqvsmKHwqK5w9kdney6OsYrYZIMZtlP4utT63DiaBAqAGdDMU4go1MZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d1d4156a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-3.webp | 104.21.44.8 | 200 OK | 582 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-3.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash8347ebfbfa18beba17d356a3dbacb100 f1d66a05e07953cea27fe277e72a495a8e3de2e7 318e494a7bcf7cb28173e54feebeb44ba93b4c17a423c7036d2fcac40e4db6cd
GET /img/comments/person-sweep-3.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 582
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-246"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9qqEdq5xa%2FzNPy8pG4X%2FP0r8%2BmMJFoqmvQPrCLIsZ3R3gviQK9t3pyQ8j5LPt97kAZFrO7lNZBBmWC%2FyanJQ3RQpaZjpkKrvFunYG%2B2b3szlJEIIJzVhjvzX%2FDd72e6yyPjx9q8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d1d4556a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-2.webp | 104.21.44.8 | 200 OK | 538 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-2.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hashe4d97f0d392aca4fa78b0928438d0168 55f713d8826a9a65e11fddf4c5fa4ea5939953b2 7058be64334990621fbc8cc06782aac5116c6e8a6d7700d892cb8b36f06c5866
GET /img/comments/person-sweep-2.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 538
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-21a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8LLzA%2B3JTj6aiT%2Fn0SrhYRF8KDmc4hjJEWfa%2FTGz0ymZn4GgZtYKthudOXcewKt6Z%2Bx2sszscIxEXd3LOo%2FfNjGCvKpxFQ%2Fh9yAZRa1fUG0oAn%2BwegrxVSFTUASTy1t2Q%2B3M5CQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d1d4456a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-5.webp | 104.21.44.8 | 200 OK | 588 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-5.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash25e1107a0e365082ccd6093e0073f05c 7b0d3c741f2bbabbcac99f29bee8cf2f9eaa1841 935ec86b128c0bb7bfafc5915a46c0c3709c47b90509e26e4c994d8ef5587cf2
GET /img/comments/person-sweep-5.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 588
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-24c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DeE57QczxcfrsdYbw8w%2FbetaPnTRfKdlandj9uHemKtuuKJMk7ZgjbWqyoiJpSgq2cg703E5aAtOxXP2No6ijN5kDVoIdZfUIswIfSpyxko0nMHcb%2BOFIcZp7i9Bf%2BsDykHB7QY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5556a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-index.js.da9f7529.js | 104.21.44.8 | 200 OK | 14 kB |
URL GET HTTP/3manylucksurvey.top/js/v-index.js.da9f7529.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (40985), with no line terminators Hash47a5b821c80a532b5e989cf87d451283 c0f9e87128e1d7d634649fb3c7b6c08f714e79bc 2526538666fe9c7811b9afaf71794b4f8cb4f0751f62872e1a0d8c3a6c131f07
GET /js/v-index.js.da9f7529.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=40988
etag: W/"661f9117-a01c"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=109Wc6nGvnM%2BXGPpy7nJIH0%2FpGuaim3wxgO2hlDU6lnx05Wf85xQvsxLaZGHlXcoYIHf8KJPj4uIl7Alo2wUtFF3Fzi7h%2FYQajzCPeNawEjO1b1IzPEZvF%2FmQRNPiGXMybgv9M8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-8.webp | 104.21.44.8 | 200 OK | 696 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-8.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash6a6742fef0cd1bd74f6da94e9fb833e1 ccaae2ff48574bbb04072b2efc5864b9177017a5 96bf5ed5aa8149269a215cf19a17889c762b8cddb2fe36229849c8379c2d4aa6
GET /img/comments/person-sweep-8.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 696
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-2b8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Brhg5McVSzWZjVZxJaiK7%2FUvStEFlENatQhvt5s8hyuhKdC9MmcV6HB7gO%2BB6TK%2Fv91%2Bb40v%2BMYT18BsQA8QvdPKCwmnHKIxFyCP0HlNk4aqXcA4aMBUx%2FynjL%2Blm7j%2F%2FFrNW8I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5856a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-index.mjs.19622407.js | 104.21.44.8 | 200 OK | 8.6 kB |
URL GET HTTP/3manylucksurvey.top/js/v-index.mjs.19622407.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (35287), with no line terminators Hash1de1ec2d8e7940b88970d8fbce40ed6d 510aa24127fb8bc3578d9ca4628b2eea5a84ce01 b473156bef833bcfb2e84658093f1ebc1e64011dcba904e26ccb31f1cad8b762
GET /js/v-index.mjs.19622407.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9117-89d7"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Chc601HjyesccYnkk8NlufLxl5AWSJLzufN%2FCHSmMpC%2FlSqUyiDjflEdPK%2BdQ2NTH%2BnInq9gXUu0uuTrLR7GcqRJYhDjHa0sq2dTBQfX67%2BNEjs7pfHwa0%2Bz2H7SapBxkRzMPAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cb856a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/config/dict/cookie-consent-1.json?v=10 | 104.21.44.8 | 200 OK | 3.8 kB |
URL GET HTTP/3manylucksurvey.top/js/config/dict/cookie-consent-1.json?v=10 IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
Hash4f1c632e971c4261f927ed0cf67bfdee 18c72b10719ca98b61b1f1f84e4b01f0ed8b3763 2bfa8e9b4326caea44f0d0c0345a31f34f19d47ae2e60fbc7c557df9ceffdca6
GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-1a65"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5UEb0e2LP8VS%2BFarJH209A2IgVghtSICOfOUE1QGYwYvSdQgUEzjfvheAqChZn%2BnjEG8G5S4TneuqJXL5XJN0oqwKJy%2BFXybm6TNfCpX5kxdT7E51OXW3fF6JwyU7uyoccPjehc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8b6c0056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/s-storageService.js.bb9f7a22.js | 104.21.44.8 | 200 OK | 3.2 kB |
URL GET HTTP/3manylucksurvey.top/js/s-storageService.js.bb9f7a22.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (2170), with no line terminators Hasha804db09269d602a8a7a50877b60fc86 7aa84eb6c94037c3bfabdf407060ba7b9ca73ff3 f5e3a988f32cdcd8ccdff165e33a1807acdde6426cecbb464c315306ff5e6f6f
GET /js/s-storageService.js.bb9f7a22.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
vary: Accept-Encoding
etag: W/"661f9118-87a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JjL4c4IWUDYrgyXnG3GiYJ2QsCpg4vC6y%2Bm1vd2Xe3Z2sVTV5o97oGxsHrmJRVbL6sp2s7imZ9roehU6t7aAwmvYTwVib1dSQ65rVy2%2FZFyjwp%2FwgGdsNZEf8VFS3g9fwFZCLL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac256a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-12.webp | 104.21.44.8 | 200 OK | 668 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-12.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hashc57b8a772545ee6e05fedb58c143beb1 6cb5aef79f86275a725cfdd406c7038b24d80aa9 03389ef007f0fd3486a5c71848fd2b67cc05341cf449bcdd34a81a1d4048b090
GET /img/comments/person-sweep-12.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 668
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-29c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sXVW%2F4sK86xxX0js1mGbly%2FwUnzcAtoDQ8xyp19dlytC8hHGFi8sG%2Fw1uklVYl99u4qavAJFjSIjuDU%2FvUh1Hrx2%2Fs11qDvUQ2SO3THSJK0fNZlxQqldFo5FnBOIs%2FGgUpTF34A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5d56a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/_rtc.f86a36d7.js | 104.21.44.8 | 200 OK | 16 kB |
URL GET HTTP/3manylucksurvey.top/js/_rtc.f86a36d7.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (12222), with no line terminators Hash128d6eec0793a7e02c314d2f6245f260 c9f09311c3f229b770f38d0cc69b422430f1c748 bf1606ac64db254cc565a094e7162a96f31f7e48ddece56fc92c654559e5abb8
GET /js/_rtc.f86a36d7.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-2fbe"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DoOzrw6Sd5v66SDfxKQFBtfgxzIyD0pNeaNJRZRtzm91GNP2xC2N%2FDuldMGWfLScdR0QvCrU2oDAc9Waz1%2BLK8iNPi0Pe9cMgTtUoyQEomjxEPN65RJ2CXM9n0cVsHDX0OBA8uA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| offpichuan.com/track?offer_id=2755&z=4526262&request_var=2&variable2=1h2fgbik555fd&oaid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf | 139.45.197.237 | 200 OK | 182 B |
URL GET HTTP/2offpichuan.com/track?offer_id=2755&z=4526262&request_var=2&variable2=1h2fgbik555fd&oaid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf IP139.45.197.237:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectoffpichuan.com Fingerprint8B:DE:51:B7:81:9E:EA:DE:73:A4:3D:67:F9:5E:6F:7B:F4:D6:77:5A ValidityMon, 15 Apr 2024 21:54:27 GMT - Sun, 14 Jul 2024 21:54:26 GMT
Hash518fbbd5a95951cd6212498955368d69 f6b781a48dee7d09f5b29745c4ced1397642bbe1 f8c19e1cf3423fb386d154c3effb94bc2774d81de6af91588f731e2ce2b6a4f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /track?offer_id=2755&z=4526262&request_var=2&variable2=1h2fgbik555fd&oaid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json
content-length: 182
x-trace-id: fa641c6853b334fd6e6b25811db76aee
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/js/SweepHeader.b279c2bf.js | 104.21.44.8 | 200 OK | 1.3 kB |
URL GET HTTP/3manylucksurvey.top/js/SweepHeader.b279c2bf.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (1009), with no line terminators Hash0fe439de7df51eacd129903e89a15baa cd04958d3fa581e73b01c27ea41d97d5a430d75f b79bec35661387c45718f5592adf5634587c228d85d45c3b5139bac73214bdf9
GET /js/SweepHeader.b279c2bf.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-3f1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5wDKOyxaGndpIcJi7rJ9qOb07WWlSECVi5M5J1RBc7kzCvncAn%2Fep3veja1c%2BI9S1yL4P8%2BZHlCwNCOA3PCIf4G8ke6Xv0QTJbAe%2FVt4qN7MaJNnywCvilTnc8a4XZZ7xw%2FNSKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cb756a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-redux-toolkit.esm.js.fe3487ca.js | 104.21.44.8 | 200 OK | 5.7 kB |
URL GET HTTP/3manylucksurvey.top/js/v-redux-toolkit.esm.js.fe3487ca.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (11319), with no line terminators Hash5aa3676547abc9a38889c09e69ca968d d19ea919192e86f97c34c0a5959ad05c52299aec 21648e7ba668a077e403b6bd1a38f05d55d987737b959d57e3b3c53787107eb7
GET /js/v-redux-toolkit.esm.js.fe3487ca.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9117-2c37"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HhEkTWeDfdt691FzLCA5CcRZkhdq7rfAgLZQx7vMnRh863R2nWCpssFPEMH2GtbWzppV8ERvHrMNJcnLcYVF%2FiECvVNZL6iordiDMxjlJktKBjC5x2O%2BOVaPfD9iyM5n98r25qk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac956a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/s-checkSessionStorageAvailable.ts.e8412d91.js | 104.21.44.8 | 200 OK | 3.8 kB |
URL GET HTTP/3manylucksurvey.top/js/s-checkSessionStorageAvailable.ts.e8412d91.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (330), with no line terminators Hasha1707fb484c103f2351843fcfb7028c4 43d3d0c0563335d6a9ba13a8920bdf7b70cea7bd bec32703d77fa5a512dd84399bdd43cb32735e483476e66d0eeb957a403c790c
GET /js/s-checkSessionStorageAvailable.ts.e8412d91.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-14a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=grW92btHLj1Jn93YI2HNS0Q4zUjxrm3LNmAyM%2FeM23uvDW7MipMyLT47MzyWk2ik8r%2Fa%2FLK1MZ5kKJJuFE6uV3ggXl9eg2Ubb2pRBcNdkHIf9GTqAbbN05sm6MzvKDhxx4TMlFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac456a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-length: 0
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-do | 139.45.197.248 | 200 OK | 0 B |
IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-do HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-length: 0
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/sw/sw6163354.js?var=4526262&var_3=null&var_4=null&ymid=2&ab2_ttl=5184000000 | 104.21.44.8 | 200 OK | 812 B |
URL GET HTTP/3manylucksurvey.top/sw/sw6163354.js?var=4526262&var_3=null&var_4=null&ymid=2&ab2_ttl=5184000000 IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
Hashb38cab4fbe36705bf212b9969f9f7b85 10109ad7c532c143f32f1176619a46b3bfc7f669 cb33af3f65a7fe5aca2f9bb1c7cdf968e4b01a5602c676087cc28d4f7e3d3fe0
GET /sw/sw6163354.js?var=4526262&var_3=null&var_4=null&ymid=2&ab2_ttl=5184000000 HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1321
etag: W/"661f9116-529"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ySYTVCTbbKoGiufdJQa%2Fn0q5YyVnc69eD8ptPmko1Z2I4%2FDKSUIY8fhTxomg%2F9HXw4OjT0Zp7Yf0LMCheF%2FBevzSZ2TVOxAf6zal6a0sRAliI0IeQfuDS0tDM%2BgQN05KGp2y9Ks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8dadfd56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-length: 0
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-length: 0
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 722
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: ce028f0cfe163d1ca438dd8a3ab90c6e
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-do | 139.45.197.248 | 200 OK | 175 B |
IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hasha7fbccd9aed97a405c912f014e54e33d d1f5a4e6a184f566d272fb282c7719dac8da4d38 27abda38a3b61986ba145f4fc9a02407cc4649fb26b3cec1a4bda41b7cba21c3
POST /sync-do HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 153
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json; charset=utf-8
content-length: 175
x-trace-id: 90d98450a30d67c125c22382cfec7b1a
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 803
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: 2031e8648e59087c383ac0a74fd38a8c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ofklefkian.com/zone?&pub=0&zone_id=6163354&is_mobile=false&domain=manylucksurvey.top&var=4526262&ymid=2&var_3=null&var_4=null&dsig=&tg=1&sw=3.1.472&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2ofklefkian.com/zone?&pub=0&zone_id=6163354&is_mobile=false&domain=manylucksurvey.top&var=4526262&ymid=2&var_3=null&var_4=null&dsig=&tg=1&sw=3.1.472&action=prerequest IP139.45.197.251:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /zone?&pub=0&zone_id=6163354&is_mobile=false&domain=manylucksurvey.top&var=4526262&ymid=2&var_3=null&var_4=null&dsig=&tg=1&sw=3.1.472&action=prerequest HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-length: 0
x-trace-id: b41781bcde3ec6b6193eda76e96899d6
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2573
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: 9058cdea50b2df3ce64fd5f910bd8b39
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/img/sweep/tokens10k.png | 104.21.44.8 | 200 OK | 82 kB |
URL GET HTTP/3manylucksurvey.top/img/sweep/tokens10k.png IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typePNG image data, 480 x 500, 8-bit colormap, non-interlaced Hash10337a4976db716ba3b8cad1f0f1f736 788015c74e561249cc5318fc178e564b68bce44d fef211dba7465da86e75019f78dcdf59af496394963b0bc6cc78b02286effe58
GET /img/sweep/tokens10k.png HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:33 GMT
content-type: image/png
content-length: 82163
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-140f3"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=riNKTEx3aAMCr57FzuHD76TnpX9sdyDCkiluiQ8nfUz1aeDwl93GMXv3vGjs5JX%2F9km0nSGDI8tzPpNm8E4wRH6DLiWF2cQwt7mRFCC4dKhKP4hj2%2FggPkPPRNvEODwfseuKTvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8f3f1b56a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=edba270b-222b-430b-a89d-c0b5b0cbe183 | 139.45.195.253 | 200 OK | 12 B |
URL POST HTTP/1.1datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=edba270b-222b-430b-a89d-c0b5b0cbe183 IP139.45.195.253:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerSectigo Limited Subjectdatatechonert.com Fingerprint3F:E1:50:2C:9F:FC:F9:37:03:E3:B6:34:00:06:89:69:01:E7:C3:27 ValiditySun, 10 Dec 2023 00:00:00 GMT - Mon, 23 Dec 2024 23:59:59 GMT
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=edba270b-222b-430b-a89d-c0b5b0cbe183 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1454
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Thu, 25 Apr 2024 05:59:33 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://manylucksurvey.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| manylucksurvey.top/favicon.ico | 104.21.44.8 | 200 OK | 1.2 kB |
URL GET HTTP/3manylucksurvey.top/favicon.ico IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash668ba1a9fa1890ba16cb8adc28d3dad8 5e35223b2541265114eaf61b9da2556c812fea17 7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2
GET /favicon.ico HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:33 GMT
content-type: image/x-icon
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: W/"661f9116-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h51wbjh6PLn1jE5Jw%2FAczjgCQDragyYUjh%2BERqbA3JvXilJ7aOtzsjy%2FQBg6cKEOy0bEm1qJY5JmUxTI6PDMNxBmaWaWoH4Juu2bhSNGgZXRvLbeP7UhRGBbRwlpJHRqK8k%2FP6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b91390156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-attributes-to-props.js.a2e7cd04.js | 104.21.44.8 | 200 OK | 3.7 kB |
URL GET HTTP/3manylucksurvey.top/js/v-attributes-to-props.js.a2e7cd04.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (702), with no line terminators Hasheb57bdb06e45aff1918587283bf415aa 27d660f01e5c888c9d38a6f784ee2f4458d7d89f ecdd5f30b2bd16e4aa0274c6fce3d598419837aa257c285f2e6d18ac5df9ce0b
GET /js/v-attributes-to-props.js.a2e7cd04.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-2be"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TqIdcH57LAygLEvuLU9vEXpSyUnTKG6G4PhYCFRd8Dv9M80mqcKPgN9ccf%2BTl5fQ0FGtYloJyKoETsbcYSXYYnntiANVabevoMM3vH7tzQXC77W9%2BWED5eOMchKCaYt4yuTCZ8c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c6cc156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/css/_core-survey.d3ac2ee0.css | 104.21.44.8 | 200 OK | 8.6 kB |
URL GET HTTP/3manylucksurvey.top/css/_core-survey.d3ac2ee0.css IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with no line terminators Hash30d726a40ffe74d794b282ca1795b44c b43155653a1b9cc8d257687df9a75e0f204db348 4916da6d6e00e0e6681cccaf9107eb45fdfc78fe2e476444623c30a64959b5e4
GET /css/_core-survey.d3ac2ee0.css HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=84
etag: W/"661f9116-54"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=weXla1dF%2BMFE8EdOHz3MQJ%2FNeto8S9PFndrlbbDxdd5cyNHqAbyUMKFP1fwMnzisleGoNpp%2FUUi6NE5eQrcqNtu2t9xfwZH0zVPQJ%2Buv00lXxzfpwVZRNk4NdKHWBg4SvlXmfRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8a0ad456a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| offpichuan.com/rotate?zz=4599387;4599749;4702124;5426181;5426173;5428099;5426182&var=4526262&ymid=2&uid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf | 139.45.197.237 | 200 OK | 7.5 kB |
URL GET HTTP/2offpichuan.com/rotate?zz=4599387;4599749;4702124;5426181;5426173;5428099;5426182&var=4526262&ymid=2&uid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf IP139.45.197.237:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectoffpichuan.com Fingerprint8B:DE:51:B7:81:9E:EA:DE:73:A4:3D:67:F9:5E:6F:7B:F4:D6:77:5A ValidityMon, 15 Apr 2024 21:54:27 GMT - Sun, 14 Jul 2024 21:54:26 GMT
File typegzip compressed data, max speed, from Unix Hashe75572b1b5d4e9d1826db5df458888a1 415440831868ac80e508aeb9c938dc578c8ea889 a8b5caa998a77905ee355ff94771ff92da2163e1c0717739b139ea6486c1063a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rotate?zz=4599387;4599749;4702124;5426181;5426173;5428099;5426182&var=4526262&ymid=2&uid=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:33 GMT
content-type: application/javascript
x-trace-id: c944f277e056fac6e000448ca4fb193a
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
vary: Origin
access-control-allow-origin: https://manylucksurvey.top
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
set-cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; expires=Fri, 25 Apr 2025 05:59:33 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 5.8 kB |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typegzip compressed data, max speed, from Unix Hashaa33725c2d0a3d1c2f9c878d64914807 6e83d13ec860384a977738b04ff0891a01ab519a fe412eadb3dc9820ec6cab7cb62349be057c509e34f7e2de6d23b28eacc98bfd
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:50 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=kDKvhfaLYtx4yuDws-ENP1_lsLRJ8XSdInVPyOyjSOFRza6H74i8MxxdTFxQ9RQ76L6UDSJij2SfTO_iq0v11UFYxbIhmUR8GhFrCssfE8fXIvlRNs37RGah1vRApAEO
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd | 104.21.44.8 | 200 OK | 7.9 kB |
URL User Request GET HTTP/2manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd IP104.21.44.8:443
CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeHTML document, ASCII text, with very long lines (8134), with no line terminators Hash9489864144c2456d7a8bd8e35e73cffd 2d59a9a5a5efcca5a81f0ce7930b8b468131902b 87fc0adc6ad3b5c908c755f0615c6147aaaf3d9ffe7763f4de9f5e2f72ee3741
GET /sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:59:31 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sYeoSqkK2nUcCXeyYyZmnbl5HA1wZrM%2FqxICec78GbHrWtf3sQg%2FfJsp12bzjjTiiL7xZgguu5GdTy7o6bkC0L80CS7wR4VFcDKq3JGSyGs6XrDTI0W88KDvte9rX7puP8rQRIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8788105693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/js/s-checkLocalStorageAvailable.ts.f2fef93d.js | 104.21.44.8 | 200 OK | 330 B |
URL GET HTTP/3manylucksurvey.top/js/s-checkLocalStorageAvailable.ts.f2fef93d.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (338), with no line terminators Hash9a78659da737fccc89546e61f0eb6213 84e705584bdbc81715e0326742f426c2f472d3a9 bb46fe2e65cc91e5a01a8e731754fdc9b8f30813835a673bd96b48672ac82d60
GET /js/s-checkLocalStorageAvailable.ts.f2fef93d.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9117-14a"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E3jyVEBiGeePS1S%2Ftcx6HYdW17%2FqnxmPdvidCHHiaCDypV9hANqn8esUZt%2BM8MCePnvfTr%2F33ldcBc%2FQmT1tCgO8zzUrrbhv5EwYo5JhLyi4Y%2FOGRqQmfU%2FXR2yqqwEB8RQnEe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89fac656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-html-to-dom.js.ff1ae7e0.js | 104.21.44.8 | 200 OK | 364 B |
URL GET HTTP/3manylucksurvey.top/js/v-html-to-dom.js.ff1ae7e0.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (373), with no line terminators Hash57f543d4f79657dc92755e2f2031da65 4884f924743049d7812b58958633a40f65e159b5 0fcc39a4a2b765b1ed92a6093fe6dc70e0a886914746f5af6fda6e3d1dc7417d
GET /js/v-html-to-dom.js.ff1ae7e0.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9117-16c"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Npe6hXECPVT5Rg9BeyV%2Fr6xwhiDHmA1V3kO%2BuOym0BCdcD4jHKk218bm49tc0pyifbluFP057MzbMRvpo47YXMw2PnvIy6QS2NJaBnJxHxoIjhOCeeB9qXnOONzYc2y8S0pNTVI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c6cc256a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-11.webp | 104.21.44.8 | 200 OK | 502 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-11.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash7ec874233fc75e1ec8df712b7ebbd7d2 cc219fb2b7e6057a8303283023dd1aa09a082455 9bb6b14a5a503d3c52bc6fc2e7c236a90e7971ceb41cb99e5245fcfc39ef328b
GET /img/comments/person-sweep-11.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 502
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-1f6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lbIeSie2xhcRsd2p%2BMtSjX7rJncQEpS4Z%2B1OgWSrHDlGGiTSh%2F4a%2Fc5IlfxgVG2I%2B784%2FTG472YTQ%2FsCGXmurvgUPfNKWD3qz37O6zW0O0fg1o5OqQ1NsVcGG%2B5gJHcm2pf8CKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5c56a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/config/comments/en-sweep.json | 104.21.44.8 | 200 OK | 4.9 kB |
URL GET HTTP/3manylucksurvey.top/js/config/comments/en-sweep.json IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (5602), with no line terminators Hashe365b2a50ff785aa57118984ebc86b5d 0cf187164eaa42ff7e244ba653bbde659feaa5bc 3094a84e8e909474fae4e0db6685d9b407d4493efd9389efe35caf326c95a6f0
GET /js/config/comments/en-sweep.json HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-12f9"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gF6yPgwIzD0UM5wSUJD0lJKaa65ajRJkSBu0KYAtg0pSeUz16LtlY4w%2BD8nT7L2d%2F3Jmts4mnLpRDSZ0yASsr9svLFdC5QrE8oLpKcBtALMKvDXUbF2p9tY%2BUW9%2FYHzTz2mEBQY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cb556a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-domparser.js.97173b2e.js | 104.21.44.8 | 200 OK | 1.7 kB |
URL GET HTTP/3manylucksurvey.top/js/v-domparser.js.97173b2e.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (1772), with no line terminators Hash46dd2964e007bc585a8f72ed695089e8 d02de9abf34cf05d707899e2562c067a8e5326bc 96d95d967e2f5ca4a1be19cf0d21f756ba2d0295ad5f4e967048054e85f6072f
GET /js/v-domparser.js.97173b2e.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9116-6b8"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Fx4vVvMingxy1H8gmW4sKI5UV0kRMdVzX2OWA%2FIxc1HHH7CCiw6pIcuf9f5Jx3HLaMwIA34b7WG4XxDRPXZDwNpgWQFI1ItLYXtNYmlDc9PJ7qbOL9umkt7qI8h22scnI1qkNM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cbe56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/css/SweepHeader.8e7220ee.css | 104.21.44.8 | 200 OK | 369 B |
URL GET HTTP/3manylucksurvey.top/css/SweepHeader.8e7220ee.css IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (369), with no line terminators Hashb3e63dbf70b8e4ad7c5ec23726112e15 e083def5d026fb5bc171c3043f714fd5d859f82b be1433fba47a27551a04629ff55f1a1d944922016569342433d79f0200d8959d
GET /css/SweepHeader.8e7220ee.css HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=370
etag: W/"661f9116-172"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uH0HiF7ZVCFEfS1%2Byewg7Hk%2B%2BJ3XosAir%2FcnTYZSpmGbQFlzeg33SbdwuC1jmD%2FYYzdwk6FXqhxKHfuqzMmRTwgGIChClHBcLCSwt4pHHfAlpDh6C3Zr3zwHEP5HYhk8dvPPb9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cb656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-dom-to-react.js.26fdf751.js | 104.21.44.8 | 200 OK | 1.1 kB |
URL GET HTTP/3manylucksurvey.top/js/v-dom-to-react.js.26fdf751.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (1101), with no line terminators Hash5693cb2629dd3231ce6fed788c41b150 872d71cae7dddc37389be6bae0fc4a5b611ec9c0 b312636bf1d349d818517865e89c22f8b9ef9e61d1805cf315e44241ccc05d26
GET /js/v-dom-to-react.js.26fdf751.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9116-43d"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OatQOPArAGvT8Oc1oka7W%2FuH6jWY9Tbh4EXmnFOxMdadqnXmCGaLGulxCskZB3HQ4zvOgN97GyXdIKf%2Fmukrj8kCfIiEcHnbOLufVxrjyIEWCS6WalJQfqMPwAdMIVsCq%2FKQlyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cc056a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-15.webp | 104.21.44.8 | 200 OK | 576 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-15.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash6c0726564aa84c5f1161bd0051e0c5e0 6df7e7122e0d007e7ea187c3c35fbc869f8ef8e5 98ff0218f67c0bce5c834a0145c686f56d3a7ca1b948341a3181739da66883b2
GET /img/comments/person-sweep-15.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 576
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-240"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=32BfvktSD3roTIV%2Bj4YxUhzy0yL4cir2SCls3Kasux5fojBWj7m4NqGIVytez2XWZYtJbxXdf5Bf4k3yRRJIm5gCzUPRAMCtyFde%2FDNdaXzUEYJu8AnscrNfWKjtvfwA%2Bu3Xzbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d3d6456a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-node.js.28d8082c.js | 104.21.44.8 | 200 OK | 6.3 kB |
URL GET HTTP/3manylucksurvey.top/js/v-node.js.28d8082c.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (6337), with no line terminators Hashb11cf8c1d8d8183e4d11a8f17a41189c 2f912e66ec3992d21e66e7c8e4ff40a2142a4d64 9e69f7af4cfb7fa8b5eb0d67ed8a36f5d23c276ba29b7209565faefab84b71ba
GET /js/v-node.js.28d8082c.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9116-186b"
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nyktJGJit1S1zlacIUz%2Fso5%2BH620GqmfiW%2BzRCD5jf1SCXMhGSI4N%2FL8x0Q0AmgzPqT9kIqiM%2BlCDEEvIIZXRqQPs2MabahU%2B01eOJEARViXEb6UGWWVRR62C1o5LNn8scfzCI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cb956a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-7.webp | 104.21.44.8 | 200 OK | 610 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-7.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hasheb52e160b8ea5a1e0de8b2453f46d642 4d28311b4ca822a0a74e318c9d1f54def088b509 2e9c67781abf2cfbabb240bfd08ca836658063849f3303b85027203eec1d37c5
GET /img/comments/person-sweep-7.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 610
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-262"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VTXMwqLTW1OnAZa2Zk3fXEiQW3Ifpw7AujvZi9NT8h5GQYNeF6aMkLFTCiAs%2BkcLWyjEb8%2BQPmNEezv9m1IlJwTDpeYUJQKTkXqsRZE5AYrseD32HSX3Kz7j2zJ6KrhqgPlaoK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5756a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/_core-survey.1b09882a.js | 104.21.44.8 | 200 OK | 170 kB |
URL GET HTTP/3manylucksurvey.top/js/_core-survey.1b09882a.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
Size170 kB (169673 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/_core-survey.1b09882a.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=169676
etag: W/"661f9118-296cc"
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=chQP3cKFLBJ1QqW4iPvCYH8L7qseli1iKRvXKCnKt0%2F%2Fi0LsDAwNzaJfCzK8APr3sXAvrr6JayzNhq1xoRvYchyR23ysFQV9vG%2FeThAifQTjtDH1cVF6U30Y6e6XeqpKwxp3HTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8a0acd56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| my.rtmark.net/gid.js?userId=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf IP139.45.195.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashf796bde75a110221d95c1fee7c5ceeec c39864aea6e7141f82897377007ce4212628d512 45668e701a03b74943f8694673e5c5cd12e715d261b54a74ffb27f17659816c9
GET /gid.js?userId=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manylucksurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://manylucksurvey.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; expires=Fri, 25 Apr 2025 05:59:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| manylucksurvey.top/js/v-possibleStandardNamesOptimized.js.205abacb.js | 104.21.44.8 | 200 OK | 7.6 kB |
URL GET HTTP/3manylucksurvey.top/js/v-possibleStandardNamesOptimized.js.205abacb.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (7923), with no line terminators Hashf80cb2aef29b4a80d135d1a598ce1dfa 0653306df1fd8d8591f84661643825e41684d3f6 43c16ae11cea687efa4ca55dec516b23257c3fcb22c9d3541041f1816aaa7b5b
GET /js/v-possibleStandardNamesOptimized.js.205abacb.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9117-1d99"
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R01WeNcdS%2F3cXxQa5wXteSOYfXeJux1tuLKtNYIHSEjgVsZIyhX%2Fr9SGNDAwxx1Zc0GOxWrJLaaRrycyL4%2F%2FtHbT0LFUqpX%2BLubpIygA1br2cNJkxsMOLHLWpXBbizrULeC9W4I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cbc56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-utilities.js.d1112fc4.js | 104.21.44.8 | 200 OK | 2.6 kB |
URL GET HTTP/3manylucksurvey.top/js/v-utilities.js.d1112fc4.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (2645), with no line terminators Hash3f45699a0edf3555d230727e3e1ba866 f30b9f52153e77b9ce60a30ecb15f36657792908 1b312ac32a5c37ffe1c4bf861a048a76d807155fe494adf5dd356d067367f488
GET /js/v-utilities.js.d1112fc4.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
vary: Accept-Encoding
etag: W/"661f9118-a11"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ke0mZ%2BRdb%2FFFB1%2FZ63bQSXPYBvBqXHWqHrQ11XNOTLkzKZi7hdYANSNyZ21e1BB8f8Kkf6RO52PLphmxOnu47sI%2B%2Bi%2BmfawYzQBwKoCZ1%2BgIm0n%2BD2LEdRSlnWSh1rwHHqmTKwQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c5cbd56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-6.webp | 104.21.44.8 | 200 OK | 462 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-6.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hashdfb961fdb848e75591268fde9c186902 2218e96a5c5081f5bef43fda74fd8f0cbb025003 4cf92de9b24fb1484bc1d97880c20589e113b9b1f065df1963e0648f3a38474d
GET /img/comments/person-sweep-6.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 462
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-1ce"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2FYXwKE8ubMqFJFVMXECAQwge3xG8AaKcGL%2BL9Zh51Cn83KBeVhxO70nUcODp08CdNPw5FOwGxPzWUrhftR919lNDomdt1e2SPO%2FVQ8DHEZPYC6c1KxbRxOckFiR%2FUcOxfDrkx0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5656a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-14.webp | 104.21.44.8 | 200 OK | 626 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-14.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash7c494127025f1ec09a96c16bf0531a36 0c2f9302c41f99da9fb5eead2c364bdbdf435156 e6443a7cdcc5ee11ece88ce10824fd79851700e4bd3dc6259d1a816182b82e5b
GET /img/comments/person-sweep-14.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 626
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-272"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ft02s0AQpy7PSrbcWBbBce1TJmZj2rw3%2B2MORgno79ajk0TWJMoMxdXlwIC5GIMZFIhEuzhiaLmUHu7pCK%2FcAdRewBbn05zFOK4N2LgNLedId7PkBfdrPUJKoFITswwZ%2BwgTpcY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d6356a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/pfe/current/micro.tag.min.js?z=6163354&sw=/sw/sw6163354.js&var=4526262&var_3=null&var_4=null&ymid=2&cdn=1&domain=ofklefkian.com&ab2_ttl=5184000000 | 104.21.44.8 | 200 OK | 27 kB |
URL GET HTTP/3manylucksurvey.top/pfe/current/micro.tag.min.js?z=6163354&sw=/sw/sw6163354.js&var=4526262&var_3=null&var_4=null&ymid=2&cdn=1&domain=ofklefkian.com&ab2_ttl=5184000000 IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (27174), with no line terminators Hash75c26ccd65e96e912725399ff3ce66e9 d300939979d2048844dc5ac80c51ed8121126f4e c9db5c92934b273ad485c58710d6fbc2d580c2923a99bb456b18cb5e1465f5cf
GET /pfe/current/micro.tag.min.js?z=6163354&sw=/sw/sw6163354.js&var=4526262&var_3=null&var_4=null&ymid=2&cdn=1&domain=ofklefkian.com&ab2_ttl=5184000000 HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
vary: Accept-Encoding
etag: W/"661f9118-6a26"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZBtTjIdOeNTjJYFmeM%2B%2FkXNuyU%2F0ojrL%2F%2FSZ6%2Br%2FNt9nodJDMFGoaF2YgzH8s1UZClFuOUkifaZHKyCBP27TwQWZEVvW0b0prIzmn7g6NIbJxlPEuabo%2FyX2LYUUmeDFjGq%2FAPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c3ca656a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/sweeps-survey.724f05c4.js | 104.21.44.8 | 200 OK | 5.8 kB |
URL GET HTTP/3manylucksurvey.top/js/sweeps-survey.724f05c4.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (6111), with no line terminators Hash8f7b854a31f40bf9be7af8ea81b5f176 bd2ea265c24d6147930a142b34527dcb4d55879e 0f7d320f1c7de2e4777cf2a8c99fb464188c4d196fb82c640f6d1b3d6f592cce
GET /js/sweeps-survey.724f05c4.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-16d0"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LTk7ruVEwlxlPzwr3NTMItJ041Q3J%2BoRSN3ukzZ44IK5bn%2FEJQ5weffYsw1H42SNTIC4sfb1goTNJcMKi2kB9Njh0Vc8LU1Thd2J1NsTzG2JM8zCksPJ8TiPTk%2Fb4OhwhWamdUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8a0ad156a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-10.webp | 104.21.44.8 | 200 OK | 572 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-10.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash206819c13484a7a818f1e4499be3704e ada2f34308d6eaa0d004ed0c732e5a3aa7fda1db f4eed862cbcf8f9ce2bde63cf3e13e73ed3e58ac93ec4bb14301b248c4d58e1f
GET /img/comments/person-sweep-10.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 572
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-23c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sa9dRPy45%2BtTFOwmdnOf8q%2FGP2qfcfhJlXp5R5SLKUymNqPPKdjJdIMwAICtXxVNSCf1yw3LjBUQMVSsTekOHaTVZi90N%2F5zLkq7JviU53GW9owBTJjhd8F%2FPogVsbrt5YMP%2BuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5b56a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-9.webp | 104.21.44.8 | 200 OK | 818 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-9.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hasha61b1f29004e5a54130bc57051a49c0d 7f60eef07e311b3598895343111d90282a002ea0 b3de11ad2ace70aa9786af4a9e65db774466fe25aca16e16dabdfa7ec76b0a53
GET /img/comments/person-sweep-9.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 818
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-332"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QEdR77GxlrHwtCS4lzAiIQa40tXZPQAlIl8KkE6I%2F8el9IojEt2xsm7uV%2FMUs2PkK409zxWVue3tE7qGkMwNbHw7yzaVPTMDROg8cCH3s3%2FHqxMnrYJwIUbZm9anyYYcMlM85HU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d5956a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/v-constants.js.49317f47.js | 104.21.44.8 | 200 OK | 600 B |
URL GET HTTP/3manylucksurvey.top/js/v-constants.js.49317f47.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeASCII text, with very long lines (664), with no line terminators Hashcf8c486ed295e4a6a30f4fb155bf9fd3 9942a3d40672242af15f2d5cc95df2c06872914f 83c4b13e336b66f673d082c8b9b2b20fb98772916cb5da52f9e48c929cafc9cb
GET /js/v-constants.js.49317f47.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
vary: Accept-Encoding
etag: W/"661f9118-258"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oOHgdXB5l4UQ%2Fyg8R4AH%2Bb2nW%2BOGoxbNc1LUdFz%2F5VWv9zPg5sBUgigBBDlFpBxcuRe1SLQ9seXhqbgqTwWKmj4lTdNu82Vjd9%2BMeFPfOiXzBmlo3YioKcd2ZWKpNGqjfX96cOg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8c6cc356a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-16.webp | 104.21.44.8 | 200 OK | 734 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-16.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash0e8c55db8fda61ba2565a293b72e36e1 ef9deaad0f8a71da57252bcf543ea369673d39ff 79b1a144ec7d571b7a155cd2852da72e89b2954affca1448001e3fed2227cb34
GET /img/comments/person-sweep-16.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 734
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-2de"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cxBS21PzqI6rHjMUodvlpt76qGU3KIcuASRnTFpYBT2Dr41rBRRxDRBYVDBMMyyTb52b8VtsvrrsutP7gXnoBlbBJc2KzGITgDJ%2FuwKrSWx1Me12RTY4cuzyQMEWUopFDr4OQBw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d3d6556a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/pfe/current/stattag.js | 104.21.44.8 | 200 OK | 19 kB |
URL GET HTTP/3manylucksurvey.top/pfe/current/stattag.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (19053), with no line terminators Hash3a74216e872211a9c770302bb7d4a63f 7e63556174a7d66eee407218e503ec0aae2c0f9e 03405209d89a927b81d53eb13968663069760776389c5400bb79d11bd9f78f78
GET /pfe/current/stattag.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"661f9118-4a6d"
last-modified: Wed, 17 Apr 2024 09:06:32 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RxV5kJsLBQf%2FVYoHF%2F9FvLFrADdBTt%2FNW5uDsEZ%2BgFaTSMPIfvxhZMM5jvdIq09zg19GpMWtHojWEfzwbXHpcOrbwC9oZvOGYeRD%2B87kuw7UgChiTQ6uXph9Wp3gZ1wlWZmDt80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8e3e5e56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/js/_each-land-config.3299fec3.js | 104.21.44.8 | 200 OK | 72 kB |
URL GET HTTP/3manylucksurvey.top/js/_each-land-config.3299fec3.js IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65452) Hashe50959a36d50199dd1e5357099e71a21 e9bde06c83f10ac6300701792180dc50c298e79b 231a989a44135e73887bfa3a1a56a6205e7e00a00f746976bb4bc0601125ab77
GET /js/_each-land-config.3299fec3.js HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 09:06:31 GMT
vary: Accept-Encoding
etag: W/"661f9117-1196b"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OVfvuWzzT%2Fg%2FB1nCz2Rx%2BojT7UMod93MRG6M44XNGVDAASQboeG4FMtZHKQ7gOIIWfyetHVV5LvIsncMsn3kqVv2R2OB9h5qOe6HXiSZL5LMwualRA6hQi7F1EsjMrPXzBwAodg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b89faca56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| manylucksurvey.top/img/comments/person-sweep-13.webp | 104.21.44.8 | 200 OK | 640 B |
URL GET HTTP/3manylucksurvey.top/img/comments/person-sweep-13.webp IP104.21.44.8:443
Requested byhttps://manylucksurvey.top/sweeps-survey.html?z=4526262&offer_id=2755&var=2&ymid=1h2fgbik555fd CertificateIssuerGoogle Trust Services LLC Subjectmanylucksurvey.top FingerprintAC:69:C8:E1:04:12:CB:C9:C1:1E:B9:A4:38:CF:5B:C5:36:50:CF:6C ValidityThu, 28 Mar 2024 03:03:06 GMT - Wed, 26 Jun 2024 03:03:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp Hash8532ec97225298a9c3ae5e393f62e462 fc26fa010830045fa91a16ac9b8c89c45bb35232 9c45568c99b7782b240341ba6729ecacc59d41a8ced9b9846ca4ac51e50c5320
GET /img/comments/person-sweep-13.webp HTTP/1.1
Host: manylucksurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf; syncedCookie=true; oaidts=1714024772; ID=kr389hu3bw8fxkl0ikxd1zzgsbdiauaf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 05:59:32 GMT
content-type: image/webp
content-length: 640
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: "661f9116-280"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mUcWu4LXJAxDujAKn%2B0pIgoQpytvMAywP90jGeAlcX5cabNHWneYEtdNoST2ZbBaaZ1JfMza0QrsAysk93P0vFczv7mYO8ygHlAYnU2i%2BvwXo8RIKLAZfoQTs%2FeCYaGB3e2ZOUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c1b8d2d6256a4-OSL
alt-svc: h3=":443"; ma=86400
|
|