275free.com/
162.255.119.51 88 B IP 162.255.119.51:0
File type HTML document, ASCII text
Hash 33b5eddad3c75509b87bc7d0419b05f9
1f21227076572f0fcd14d2e3a36a63f158cc1106
c74022e285f0e57fe7304d00574c6888cd3896d28ddae93b1f1643034dc249fb
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: 275free.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 26 May 2023 18:37:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 88
Connection: keep-alive
Location: https://trkrspace.com/show.php?l=0&u=957841&id=48866&tracking_id=
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
275free.com/
162.255.119.51 88 B IP 162.255.119.51:0
File type HTML document, ASCII text
Hash 33b5eddad3c75509b87bc7d0419b05f9
1f21227076572f0fcd14d2e3a36a63f158cc1106
c74022e285f0e57fe7304d00574c6888cd3896d28ddae93b1f1643034dc249fb
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
suricata low ET INFO Namecheap URL Forward
GET / HTTP/1.1
Host: 275free.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 26 May 2023 18:37:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 88
Connection: keep-alive
Location: https://trkrspace.com/show.php?l=0&u=957841&id=48866&tracking_id=
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 2ff80993eb1d6edb059a8d42f9a07e60
6c138c27e8a79546c10ad9b018d4249780ebcbd4
93cf160110e5816a7406e425af0cf4744fa02a1c3e8a18088acd453f849bda3f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 18:37:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 04:29:03 GMT
Expires: Wed, 31 May 2023 04:29:02 GMT
Etag: "6c138c27e8a79546c10ad9b018d4249780ebcbd4"
Cache-Control: max-age=380692,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cd82199799db500-OSL
m.mbuncha.com/click?pid=701&offer_id=73824&sub1=1207034808&sub5=957841
34.90.81.51 0 B URL m.mbuncha.com/click?pid=701&offer_id=73824&sub1=1207034808&sub5=957841
IP 34.90.81.51:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=701&offer_id=73824&sub1=1207034808&sub5=957841 HTTP/1.1
Host: m.mbuncha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trkrspace.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 26 May 2023 18:37:45 GMT
content-length: 0
location: https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6
x-adjust-use-original-forwarded-for: 1
referer:
referrer-policy: no-referrer
set-cookie: afclick=6470fc79e2e9d80001dce7b6; expires=Sat, 25 May 2024 18:37:45 GMT; secure; SameSite=None
afoffers={"73824":1685126265}; expires=Sat, 25 May 2024 18:37:45 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
veftaunysurvey.top/js/_each-land-config.54074582.js
104.21.93.116200 OK 18 kB URL GET HTTP/3 veftaunysurvey.top/js/_each-land-config.54074582.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (53476), with no line terminators
Hash 3c743a1d77ca476d8a23dc0d410cd878
265b043769eadf58f04bd20cb2ef370965e25009
c0e0853dc478ea2079e1c47da36f31f8fedb37c503a6ee574bd6290fc11ab939
GET /js/_each-land-config.54074582.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-d0e4"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 5990
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2BxTo4kRg%2FUAMN%2B5%2BB7M1fsi598sjOBtUCbyCBWOo%2BzMjotxWpq0KtZJngbXxGBfcDGFRrKehmUudJxnsn8fbFVfEH16zhi5HwBkiWhFedmZaJzivXK8dhFIAIv5cwlraVV%2BeV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219becfb0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/css/_core-survey.26c0898c.css
104.21.93.116200 OK 995 B URL GET HTTP/3 veftaunysurvey.top/css/_core-survey.26c0898c.css
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (3187), with no line terminators
Hash 2e6143d07cb0a0273cd0fded0cd7b430
4853285adf3a468cc8a42b1c6f17d8353cfef896
f2690b871425a66071365ba5be475a5089e8074dbdab7df95a71bbee62e2f5fb
GET /css/_core-survey.26c0898c.css HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3194
etag: W/"646f514d-c7a"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f34o2%2B2STB2WMSwubBg3EQfTnemjmBC9c5ecd4859t0SWIzjYL4z%2BFvrVFtzUoNBTc5oaJydmdKfU1GgjhVf29QNV6skuJB4%2FaB48eYws1ux58Z5lLjAee8GJNlrup69HCgHnS8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219bfd420afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-react-dom.production.min.js.6effe279.js
104.21.93.116200 OK 42 kB URL GET HTTP/3 veftaunysurvey.top/js/v-react-dom.production.min.js.6effe279.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 925bb81eaa725b80e8dce9ade125a94b
29e32bc68e79dad785e94113e1402d700c3dd133
2ea31962a5f2df9665ffcd095d704efb79003916cc395ea967807ee7edef56e7
GET /js/v-react-dom.production.min.js.6effe279.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-1f8eb"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pu1%2FwpSKBlmbEEDYk9VyuIPh1FbkiFU4NmoOmvXTj8QLB6xPlW35uzBmfAyhOdft66WVURwYMJm%2F%2F760liTlowNKaZszLzc7zy36EdL2QXhdcMx0MoV3g0UpaN%2F1M3OKfTQlxks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e28590afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/survey.1f8ac4cf.js
104.21.93.116200 OK 4.8 kB URL GET HTTP/3 veftaunysurvey.top/js/survey.1f8ac4cf.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (5437), with no line terminators
Hash 48add5936233e26f2c4fb0e785af2ad9
9f690ff2248b60a45cfd1959c221a11315eb1d1b
73083c2cb02b6e0247202a0057d5d607c08e5ec1f79ec2abd21476345881661f
GET /js/survey.1f8ac4cf.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514c-153d"
last-modified: Thu, 25 May 2023 12:15:08 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2FjyeyVyQjEUXj07%2BZTEs1s5i498yq5Ah7%2BIjZgVynclT74F57DTu4Xb%2BZ0lNWodk4ZRCo5FP0vSDpmwIb3f%2BQZvR7rIiXkUqCaMlm60HWCsXKUDCipgxEUrQ4WULxnEb8Y49b4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219bed170afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/unnamed.jpg
104.21.93.116200 OK 1.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/unnamed.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 449aaf5a54e3fe3aa4f0f5875bede090
b2b897362626700277b7f8baca8b1f292d08b7e5
4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59
GET /img/comments/unnamed.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-562"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nt5nxJXNVnfGEjZeDPp0%2FGj5pzAIRGH%2Bg8xdOeBMb%2Bknm6szKoqtU6r%2BuLknVYLfo8tPTCLo8FWqkrmYGTT4Tdkjm77nVhghSCeFvkvJoxLQoAmn7ZtRD9ODVPXOW8vijoQnSbo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a0db9d0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-1.png
104.21.93.116200 OK 6.6 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-1.png
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 8f9a954bf05965bb41cf97a7ddb7a375
de9db936bbea75043e08a55d1f371678fca2270c
a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d
GET /img/comments/person-1.png HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/png
content-length: 6577
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-19b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dgpyh65XD6xC0nMKON0OhnB6dunzOJmYOf5hR56DcGdvnnSSRoRVW2Ho1DN6HIJrqAUGeLI1Fd0UoNXhUSNoW7mj2oogGPmihUmye3qCze2%2BxvI11%2FBJ%2Bkv0vAnaaI2gzggv40I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a0ebbe0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-14.jpg
104.21.93.116200 OK 5.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-14.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6012ff0d59aa6a34aaca1ea8f2fa88fc
ef59662c9b666106486039e9f1deb40fb4a8ff77
2c020310e91430067c7128425f14ac0ff1710aea5e67c144a8fceac46311182d
GET /img/comments/person-14.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 5392
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: "646f514c-1510"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x2sFkyGgHLAgSp9%2FttaKJfL%2By6mDb8piYjEdNYVuhlWVifKKhK4GMxmAKzqdaZrxsxwrKSKMIc%2FcBA%2FdP0HsOUtcKDViVoYcL3MubCzZF1%2B%2Byk0hWHZ7D9jur8R2fAYtnZGjYqU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a0ebc30afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-2.png
104.21.93.116200 OK 6.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-2.png
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 3e6eaea87b2891590972dd11373b09a3
f038c6e6306ca708defa2b601bf9477f0cf78a3d
15aadd2e7f4f83e79f35e760da382fb8b5045d2cf506f531bdc15b7b27f699a5
GET /img/comments/person-2.png HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/png
content-length: 6428
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-191c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gCUlRjzn3oU2t8WrTV0cGGv%2FckjOpQrbfLKhWinKO%2Fngjnp%2BPXbdu2mmo9e20dS5vunNSuJAAWKwRkHMsncPwFSkzKJ%2FXpeE%2FIEYzuorDBtIHONrxrRxJoRt8vQdRj7RAMMmeIw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a0fbe50afa-OSL
alt-svc: h3=":443"; ma=86400
www.google.com/recaptcha/api.js?render=explicit&hl=en
142.250.74.132200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=explicit&hl=en
IP 142.250.74.132:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash 6eb227f49545693ff09e7e868952f4af
dc2cfcf4a5d33b127c8c5d18dbe577c1e690dfa9
0a22aef6916a4504fc4c1b3f83cf9ad8dec879e875888b7598ee8edde393d86d
GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 26 May 2023 18:37:47 GMT
date: Fri, 26 May 2023 18:37:47 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
veftaunysurvey.top/js/v-index.mjs.84459691.js
104.21.93.116200 OK 15 kB URL GET HTTP/3 veftaunysurvey.top/js/v-index.mjs.84459691.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (35051), with no line terminators
Hash 605e628e434cc33f498d5cdf36ce6ee6
21115523910906a041b0e8611aed2222cb1b7782
e7676f8c16879d9ce22f17a7d0cd1ad93d43f00a487d71798ed02f7a683d615e
GET /js/v-index.mjs.84459691.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-88eb"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jyoZ%2BcrStuhjGS24NjA3Bd4uX9p5V3hSEBre8nM9LKz%2BClGWn8LTI1uADz2ge8bPqfPdpfZ13uWxk3q5sRajNIayUqoFkOayZD0J%2Ft0UUGu%2F2vtVXO5X0Psvz45FCMEashJlxZY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219becfe0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dortmark.net/sync?userId=6fd4bc1736d78d929fb6ac2d0bd06a6d&partition=finance&duration=5184000s
139.45.197.248200 OK 45 B URL GET HTTP/2 dortmark.net/sync?userId=6fd4bc1736d78d929fb6ac2d0bd06a6d&partition=finance&duration=5184000s
IP 139.45.197.248:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectdortmark.net
Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52
ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash c4dfb3f977d8ec652ff156e27d386f5d
e1d4f91e6c10f802a887b376a3917bbe54b7e591
f56230db12931379f259a9a208cf0bbc6c36fc46937b535b55dc8d40c5672930
GET /sync?userId=6fd4bc1736d78d929fb6ac2d0bd06a6d&partition=finance&duration=5184000s HTTP/1.1
Host: dortmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 18:37:47 GMT
content-type: application/json; charset=utf-8
content-length: 45
x-trace-id: 76c9eb3eec67b2182ae3dc9567c58f8e
access-control-allow-origin: https://veftaunysurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: finance_ID=6fd4bc1736d78d929fb6ac2d0bd06a6d; expires=Tue, 25 Jul 2023 18:37:47 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
veftaunysurvey.top/img/comments/person-1.png
104.21.93.116200 OK 6.6 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-1.png
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 8f9a954bf05965bb41cf97a7ddb7a375
de9db936bbea75043e08a55d1f371678fca2270c
a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d
GET /img/comments/person-1.png HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/png
content-length: 6577
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-19b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QGO9btH3yo5DwCnZxR0nArVdBD2iN34lJis2rBE6woTl%2BfVSIlAfM0e9ex9CgTFe00IvCCFXHssom495aRtHMe2TBOM9LUqhVo2RUjSA1VchLT%2FUNtviNEoSwTTUBE24GFToJbo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a1fd060afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/unnamed.jpg
104.21.93.116200 OK 1.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/unnamed.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 449aaf5a54e3fe3aa4f0f5875bede090
b2b897362626700277b7f8baca8b1f292d08b7e5
4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59
GET /img/comments/unnamed.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-562"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AMUwlkWknjhQw1nBzwd5M47tYQ5ZLC9GkFeENuVO6pBtTlnrmDbXiKQ8sBE97R1a9WfDh5mSje2oQj1haPX8K4I3R4Cn2eAiwSOVco0vvUAmCmRwojp9%2FZRPlQeRLUhXClfrBvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a1fd050afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-redux-toolkit.esm.js.84f60255.js
104.21.93.116200 OK 7.0 kB URL GET HTTP/3 veftaunysurvey.top/js/v-redux-toolkit.esm.js.84f60255.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (11317), with no line terminators
Hash a5270a375315257104f71750f409c0fd
69563034f666621e05c9d68ef10c9f39b264feb0
f2508629d82e4f362ffe474facab978e128e8151dfe13e209c444bfe12b50753
GET /js/v-redux-toolkit.esm.js.84f60255.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-2c35"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UKj0bhFEDNALuGBAUobVLdUhwGWlSMAam12IKBfBGXrHFQaY%2Bo9Cx64Uvge%2Bt58X4N4IlDkssNMYSMNRN8mGGtt9a1SqwJHtp6eIDm3Q1IiGHjDunOXltqky0FmN72vDViy9CWo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e18460afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-index.mjs.84459691.js
104.21.93.116200 OK 12 kB URL GET HTTP/3 veftaunysurvey.top/js/v-index.mjs.84459691.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (35051), with no line terminators
Hash 605e628e434cc33f498d5cdf36ce6ee6
21115523910906a041b0e8611aed2222cb1b7782
e7676f8c16879d9ce22f17a7d0cd1ad93d43f00a487d71798ed02f7a683d615e
GET /js/v-index.mjs.84459691.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-88eb"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=du2LOq5B%2FIeKGbrNTq7fzIetkeTYJ63gkYE0eo6BrHtPEeleJtycn3vDHP1VFyXsiO2hTq1eQysZPknLbeUgyNcN7veV8zc8%2F3RGfntfYkye%2Bwl%2B2agQub0nV3k0lGtBHvSLHgw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e285d0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/s-storageService.js.24e15119.js
104.21.93.116200 OK 7.3 kB URL GET HTTP/3 veftaunysurvey.top/js/s-storageService.js.24e15119.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (2572), with no line terminators
Hash 4816f938e9d10c0caa7cd06c6a9b4795
ad3bd074f4b8b7550d6f9563e5097683a2dc76c2
36c9a2201b667c84dbecb7415e6fc6b9697ce920edaf258db96831ff284177b0
GET /js/s-storageService.js.24e15119.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-a0c"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=14HXNysfNDkWcEytYAYM9Ezp4v5t9DriAUzW9Z76rAcGM6G9qDsRZNT6DHxDHrLq%2FtClJbEFRXO4oKJKSkHu3M9uZB%2FjEjQbqTERNpc7DvE%2FbZtHacF%2BFhPQmZ%2BqxnuOrBMvv6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e18360afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/_each-land-config.54074582.js
104.21.93.116200 OK 20 kB URL GET HTTP/3 veftaunysurvey.top/js/_each-land-config.54074582.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (53476), with no line terminators
Hash 3c743a1d77ca476d8a23dc0d410cd878
265b043769eadf58f04bd20cb2ef370965e25009
c0e0853dc478ea2079e1c47da36f31f8fedb37c503a6ee574bd6290fc11ab939
GET /js/_each-land-config.54074582.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-d0e4"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 5990
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wRX9ygKnOU51fJ8WztIKMqPn1f2niDiG6XS%2F9L96BDIejccqKERsRBOiA4aL7EsyknbCGG3BDouW4CQIx0xUN2cuaq8K8hhhCeCZMIhCrSTIP4E1e8I1M3mxh97KpK4pha0X08%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e285a0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-index.js.5d90fc84.js
104.21.93.116200 OK 19 kB URL GET HTTP/3 veftaunysurvey.top/js/v-index.js.5d90fc84.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (40269), with no line terminators
Hash afc495189442bdabb9e5b67ac3c078ff
f9c9d7548d2b0df9f21f99c47daf8c3c7f84e2b0
803c7de2a9b0aee6ddb09e05dfb538b78081d7447ba041b11f4901fd17e803b6
GET /js/v-index.js.5d90fc84.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-9d4d"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FkogJSXydp2UX4YwFHL4yDTQlwSoZrc4akQx5OOfiPZZENDCMzh7rMCAVigX7BaloPMOdwSaOOMUGyL8yoTl889WJO12Gb9ZyJTZcN73y42vu98X0N5A3K3WRG%2Bjl6guR2kGb6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e183d0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-9.jpg
104.21.93.116200 OK 5.2 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-9.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 529370f9fd3b0f4da6c81ca91a931155
1a4c3e0e7af1ce30dc2ca18d48b5fc3f1b40aad3
cdf1b8dcdce4e9b76157ce90e086ebafb100063eaeb091e97087d97f5d0fb50b
GET /img/comments/person-9.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 5190
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-1446"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPNIBkCR9PtXaqxHtd9pl9SVOHx3bKVR1IDUraRbJy9llX4QO070RTe0PFVOJMOwMTUf3uP5OiMwjEM%2FFSLOSHhA8XKCBkrfU3Mrhi8%2Fu5Xm4MKsu0d2Z7QtU3jr4Tmfa4U6w%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d3f0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-10.jpg
104.21.93.116 6.2 kB URL GET veftaunysurvey.top/img/comments/person-10.jpg
IP 104.21.93.116:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 044ab37551bfe632f53b8f15d991f36e
77fdc6210608e5e36e1d36ac7fd867104cb20d9e
36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91
GET /img/comments/person-10.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 6178
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-1822"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cVT6SEbxQrN7vv7hY0Ncu6qAC3ZkSw5PlOmZrOn3QTerOk9yHizH9S5sps9Tz4yu4oAVkQ7JDsya5ngst4%2BdaQYff3S9amSy8NHA3zgkapPF7q8fvTf0NvtjYU0TAluZgssjIOc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d3a0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-11.jpeg
104.21.93.116200 OK 4.2 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-11.jpeg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 3924bdc784dc4947f52b779aa4d5a0aa
1e3f3fdd99490addd60014aa7327fe27c6bd5589
b3f882f57f9a213d85eb1c5c6a8a1451bd16dfcd9e4bd00e0a74584422dbd950
GET /img/comments/person-11.jpeg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 4175
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: "646f514c-104f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zDqvrlhzF4L8HanXDfyhM%2Fh9Sm%2FEL8ycLjQ3oZafjWGEvC4ZB9Eu5R9pcozGnCGdBzSI4UATIeng5dsoVklmCd4tJQLnUBIhIWrULPtuoywbMCGo9g1gzdfrC8aUpF5gOuK4wIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d3d0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-8.jpg
104.21.93.116 5.7 kB URL GET veftaunysurvey.top/img/comments/person-8.jpg
IP 104.21.93.116:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 6b10e71656e51e27520e854712b44f1c
f78b92dded977e9f275aba726453138155420bcf
64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc
GET /img/comments/person-8.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 5748
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-1674"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WtB7fUAwoNcpmxcuah6uxln65hC0Wq%2FNcCG7zQAB%2BWXfcmf3mEFIjnponf0j1EPw0UjizXf7dGuYQYhy5m%2F%2FVf6OS3IeGblD1lBX3uPXTC4Dva82IvoWPDy7HJk%2BK8KSyF75T5Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d400afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-12.jpeg
104.21.93.116200 OK 3.5 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-12.jpeg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c937339f4ba54ff7dc150b9865c29084
44206828ca23cbed303193bde1dfe47bdc532972
8e872daac17de58d352c9f4082e6e35af76a8b2138c142a8cf0fbacea195c73e
GET /img/comments/person-12.jpeg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 3519
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: "646f514c-dbf"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2F64xT6JLYlnT09DvtMJOhRDlfp%2BSR%2BILcrAmXhJqnMLPSTpDwcy9HWys%2BBaDJMlisz68DhxwnNJvSzMC5UsMtSPXS65XFyudplv6LRXta94F0nIRVXztDcJpjfHZCn012NRWvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d410afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-13.jpg
104.21.93.116200 OK 3.2 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-13.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a3364ed9e772ae6f696b814072001bf8
b8f34c657c31bf1e4d42b5d864b2519493d80e92
88f30b8552d0ab928d895390b337a0049405f3b1e8446631e606ba787e1205e1
GET /img/comments/person-13.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 3172
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: "646f514c-c64"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NBhO1oMeBIcek%2B6zOa94n%2FiIRkAZedBRmI0OWAIOIxM3Y%2FLkTUyF8O17iFmFjdWReN%2Bb0B7ceVtPGwWa730Ial0UKoS5NhJeMWDHst5MLbSzVsox8IrMZ91%2BU%2BplKBh9dFjPm18%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d420afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/_core-survey.973e410f.js
104.21.93.116200 OK 66 kB URL GET HTTP/3 veftaunysurvey.top/js/_core-survey.973e410f.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4ebce00740af8f91c6e702c957c579ec
afb6f6f79744e8e7aaf1eebb29dea2434f18a893
6936c3b7d62bf6983365d21a1f2e462b7a831f41bc8b9503eb9b797ecaeb9644
GET /js/_core-survey.973e410f.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-3602b"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 5608
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B1tD0WaNbQAWQK7x8Dz4BR%2FHCZ0FqRo1hycVtkczox2hrPwIZBUDpXA00AMmKio4T3HjNXLi%2FcNP9Qy1lsXz1j4wf%2FNBnmE1sj8VBt3ro4fL5w86MDFeRT7%2F1j4TqFtnOXI%2Fvak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e285c0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-redux-toolkit.esm.js.84f60255.js
104.21.93.116200 OK 4.7 kB URL GET HTTP/3 veftaunysurvey.top/js/v-redux-toolkit.esm.js.84f60255.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (11317), with no line terminators
Hash a5270a375315257104f71750f409c0fd
69563034f666621e05c9d68ef10c9f39b264feb0
f2508629d82e4f362ffe474facab978e128e8151dfe13e209c444bfe12b50753
GET /js/v-redux-toolkit.esm.js.84f60255.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-2c35"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jUQDhjOxxOm1o5ts9202CK24DTxb9hB8IyQplSA4rUXrlnuCIVhAx3VGh%2BZvVp0hiWoMhAaVt0EdVol28Wgup2VJEK79sV2Dp3mEF08lFM9HuYvV%2BtRYtBXFL5lnw4jg1YhFq2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219becf80afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
laugoust.com/zone?&pub=0&zone_id=4842618&is_mobile=false&domain=veftaunysurvey.top&var=4493500&ymid=701_957841&var_3=null&var_4=null&dsig=&action=prerequest
139.45.197.250200 OK 0 B URL POST HTTP/2 laugoust.com/zone?&pub=0&zone_id=4842618&is_mobile=false&domain=veftaunysurvey.top&var=4493500&ymid=701_957841&var_3=null&var_4=null&dsig=&action=prerequest
IP 139.45.197.250:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectlaugoust.com
Fingerprint99:7C:6B:09:6A:A1:BC:70:53:D5:2F:97:56:F3:C0:A5:06:9F:80:C9
ValiditySun, 19 Mar 2023 05:11:02 GMT - Sat, 17 Jun 2023 05:11:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4842618&is_mobile=false&domain=veftaunysurvey.top&var=4493500&ymid=701_957841&var_3=null&var_4=null&dsig=&action=prerequest HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 18:37:47 GMT
content-length: 0
x-trace-id: 8d9e2a805d1a167f42aabd1b4e96ba57
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 18:37:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 326898
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 18:37:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.15.101 471 B IP 104.18.15.101:0
Hash 329d2fdeb6faae323b672824323f1e8f
034f8214df486538936ceec2fa30fa52f939d8c3
d2d6f3b0ef3034770be7099a695f7895294b8d06298fdaa48b248a3d935c6f54
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 18:37:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 05:19:52 GMT
Expires: Thu, 01 Jun 2023 05:19:51 GMT
Etag: "034f8214df486538936ceec2fa30fa52f939d8c3"
Cache-Control: max-age=471631,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cd821a508e1b500-OSL
datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
139.45.195.253200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
IP 139.45.195.253:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1479
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 26 May 2023 18:37:47 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://veftaunysurvey.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
veftaunysurvey.top/js/_global-config-sd.6c57bf6e.js
104.21.93.116200 OK 1.2 kB URL GET HTTP/3 veftaunysurvey.top/js/_global-config-sd.6c57bf6e.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (1216), with no line terminators
Hash a6d0cd1e59a9153917d7b1f955df03ba
8062cabc3e39bfa8c0a7d12109ac3bb174cbdf9d
e4e8ac53c3f131032d88c852c1c2f6cf04dcd0b64c2368830d746648200fbea9
GET /js/_global-config-sd.6c57bf6e.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-4aa"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wxuTAoNn8Z6CFHOowVOgnzsrMmtbCmjxQIqF78dF%2BdzRtj0X6O0LqU89GuC7orPs4VgqdkWD%2F9uTP6UW04a7NgCCJzQTU11E0jLucO5qQN5%2BmyWnaTFUrPGh6%2F7J%2F2c9bWMV58Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e182d0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 1df2fcb08c85a8147c470b28a5f4526b
d8024d1fc0ce548ff58c2f74b016c6f8ce0c6416
f59db5f6dd04dc271e191e5055eb25831c6c88b24b111002b2fe4f1500140dda
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Cookie: ID=8b8c37b045a4457e84724a8ad868061d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://veftaunysurvey.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=8b8c37b045a4457e84724a8ad868061d; expires=Sat, 25 May 2024 18:37:46 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
veftaunysurvey.top/js/config/comments/en.json
104.21.93.116200 OK 4.5 kB URL GET HTTP/3 veftaunysurvey.top/js/config/comments/en.json
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type Unicode text, UTF-8 text, with very long lines (5176), with no line terminators
Hash 0f8a677240ca082b8875f3c8d3bf5c42
19641ee3e340098b44d1d248e7c1a99dd0daafdf
2f5cff997105c8b995ec55f36e2656e14e1676f23244471f6115bc1d04c821c1
GET /js/config/comments/en.json HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/json
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: W/"646f514d-11ad"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IiDEXmCX5Qek%2BK5MGc8r9ItdzT2km2HsqY9KM%2BNLvGjt4Edk0SfLu1FSvZV8xDjDuK8nxjMo3wGwTQBQMNqrNOGVRDKt2Z8MdDSCOZKRKqPnRYPsqyaF7JYaFnh%2BlbOtgd%2Be%2Fn8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a00ab90afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
offpichuan.com/rotate?zz=4292527;4326653;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=4493500&ymid=701_957841&uid=8b8c37b045a4457e84724a8ad868061d
139.45.197.237200 OK 7.3 kB URL GET HTTP/2 offpichuan.com/rotate?zz=4292527;4326653;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=4493500&ymid=701_957841&uid=8b8c37b045a4457e84724a8ad868061d
IP 139.45.197.237:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectoffpichuan.com
FingerprintDF:FD:C9:DF:54:1F:F8:D0:EB:70:9D:22:14:AB:31:A4:CA:18:1D:AE
ValidityThu, 30 Mar 2023 21:17:15 GMT - Wed, 28 Jun 2023 21:17:14 GMT
File type troff or preprocessor input, ASCII text, with very long lines (7341), with no line terminators
Hash dd9f536836c5fe6fecca9eed0cf34e3b
6d30ffe4f870019d8ac7c02c8ccdc40da3804497
d148f9653b3afb61f0ed66fe00587f9238401473e121fb88b579955d6ce7bc04
GET /rotate?zz=4292527;4326653;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=4493500&ymid=701_957841&uid=8b8c37b045a4457e84724a8ad868061d HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 18:37:47 GMT
content-type: application/javascript
x-trace-id: bd17173b3fd58ba6e076a3e08a553262
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://veftaunysurvey.top
access-control-expose-headers: Link
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
set-cookie: OAID=8b8c37b045a4457e84724a8ad868061d; expires=Sat, 25 May 2024 18:37:47 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
veftaunysurvey.top/img/comments/person-4.jpeg
104.21.93.116200 OK 2.7 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-4.jpeg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6cf64555e2de0ff8b5391081b648b89a
a32008bacf7f8cd3859eb86c6c8d36eeb15dbdf0
d4f513bf3a5691b900739cf79285d18ef09ef4b81eca648261b15a693d21818d
GET /img/comments/person-4.jpeg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 2709
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-a95"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bbsi%2BryDaG9vnaobwutGIeNen14bk%2B7ranW%2BlRLz4dV1CwMXYLYlpVdv8iY5mu0NRv1M5qs49RhMyukQgFrvmokPXuBABY5NoKR9toMAtk0M6jx76DzNmV5eTxm5igZcvl8iiPM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a20d0b0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/css/survey.2bfeef83.css
104.21.93.116200 OK 67 kB URL GET HTTP/3 veftaunysurvey.top/css/survey.2bfeef83.css
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ba8ddbfa60d2feec516710cd5de1746d
9ddfc2f60deda512e71fa888c546c4300e3a530e
04ea2783c47b74e28c9583983c12e1ea4ac25e5ab50f0270829687607a03a782
GET /css/survey.2bfeef83.css HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=66591
etag: W/"646f514d-1041f"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BuU%2FOweH644oTcwPvvqm57T3FXikw3CAJvaDH8Wi0YxSCA%2BO3q2XZohjXHK5BhDGDLZLYWrunrMWYNRB4HcCJz5Ab4zRn0macjcUyR7aE%2BgpZHlKlDY9Pfs2dulX0GN8cMU0Gtc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e28600afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
offpichuan.com/track?offer_id=2897&z=4493500&request_var=701_957841&variable2=6470fc79e2e9d80001dce7b6
139.45.197.237200 OK 173 B URL GET HTTP/2 offpichuan.com/track?offer_id=2897&z=4493500&request_var=701_957841&variable2=6470fc79e2e9d80001dce7b6
IP 139.45.197.237:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectoffpichuan.com
FingerprintDF:FD:C9:DF:54:1F:F8:D0:EB:70:9D:22:14:AB:31:A4:CA:18:1D:AE
ValidityThu, 30 Mar 2023 21:17:15 GMT - Wed, 28 Jun 2023 21:17:14 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 8df75c9ebe63f3abfbbacd050d35f8fe
95f31a6bcb0b92c10ae2953e2642ba875785a648
5c157878efdb931c8b5d42d90676a960a34264f25c5fc21543d602de6a958e2f
GET /track?offer_id=2897&z=4493500&request_var=701_957841&variable2=6470fc79e2e9d80001dce7b6 HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://veftaunysurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 18:37:47 GMT
content-type: application/json
content-length: 173
x-trace-id: c571a3844cfe9a6a148949709320d353
access-control-allow-origin: https://veftaunysurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
veftaunysurvey.top/js/_is-browser-supported.c49ec082.js
104.21.93.116200 OK 1.0 kB URL GET HTTP/3 veftaunysurvey.top/js/_is-browser-supported.c49ec082.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (1102), with no line terminators
Hash 347149a5f2db6ba9662854836bd194ba
dad9564747ff98e7449226386615f6846b11920e
c84c175bb7a22aee56cd585dfeec157387639c062a12b726f8f4dd3f0c36cc7a
GET /js/_is-browser-supported.c49ec082.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-3f7"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tnd3GsgJjY7Tnuf8qh3DQVUevUuOXSnY8QRBwFupyplChHDGk77rhREWgdW14ssVYJKE0SdW35RpidCcdmMww6De3m%2Bmek8qg%2FfPC55rNPsEt5cExzB9WOwq47arVSTD7aSm3i0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e182b0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/_rtc.1844c1d6.js
104.21.93.116200 OK 11 kB URL GET HTTP/3 veftaunysurvey.top/js/_rtc.1844c1d6.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (11189), with no line terminators
Hash 883b0649630864a2149008489d4ef7ec
7e59a27da52c8200f7c8d3718c5e88f9c6d40ecd
36b3238c01774500a75f9a44b860a700e713e89f103db5a915cd114f19dd9659
GET /js/_rtc.1844c1d6.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-2bb5"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MiE2dYsn2s8LAiR0TJ0w4gdD7M0VVef6B0VBLJffmNZDtHxPOe7vhBFbmt8GqUQky7opvSOeljdrYHy2Iya9TOKVdAG9zZ2WZR3U7bvljAqoa3ai4hW7UKGdhSuBsBKVs83pZVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e18310afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/config/data/sd-2025.js
104.21.93.116200 OK 9.2 kB URL GET HTTP/3 veftaunysurvey.top/js/config/data/sd-2025.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (9549), with no line terminators
Hash edcdb9407b2987df48166bfe2de6c40c
10d47a89a281d6fcfecd1f0d282af995d5bbcb8d
76279535713eaa977252ab71a88308fa2c09412cc6d22435c00b910565f2ab12
GET /js/config/data/sd-2025.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-2411"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4212
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QbSWHUn9dX2D%2BNhCDRntDlUGx0D%2FSgOECVaZR5t4Zq2bL4YszO5Uq60JlYHkUEGoIlm1FDLmEPhuvbiBQBM96MlkkCJX1zSDRhYo9YrPrzEfaSPMOwL7yBRDbwQUFHxzmCP1AwU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219f6a0c0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=4493500&var_3=null&var_4=null&ymid=701_957841&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
104.21.93.116200 OK 42 kB URL GET HTTP/3 veftaunysurvey.top/pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=4493500&var_3=null&var_4=null&ymid=701_957841&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type C source, ASCII text, with very long lines (41946), with no line terminators
Hash 9c1a21a7325f334b8f1115b7c6476950
6cbe8da2596f380db8bb7a40fb42c7958f357c6e
9243782de0a2103b4cb642615ede16afdb1cafcb6aab5eba687a796e44f0a84d
GET /pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=4493500&var_3=null&var_4=null&ymid=701_957841&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: W/"646f514c-a3da"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGXmzSR8XJFKoCNyDd8dOJ9pu1el5Sx3ce9zUyXXehBqsushRp%2FmiFscy2yRovcE7rcw%2Fw7h3Q%2BmZlVSkeOseNqMb7I3Wn18i3dpxXVgdmuPSsWy6ruMkIXIr7MfIiDjF5grfjE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219fca7c0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/v-immer.esm.mjs.d9bdbc14.js
104.21.93.116200 OK 10 kB URL GET HTTP/3 veftaunysurvey.top/js/v-immer.esm.mjs.d9bdbc14.js
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (10496), with no line terminators
Hash fb46146a17eb0c4a887b7df1f66f7fa7
4be05a7ad649b3b907cecb1e92262ef8eb849946
d326fd3d05fc533b5f383d2695e3c013e267d1de919a64c798b49c7f8f36b55c
GET /js/v-immer.esm.mjs.d9bdbc14.js HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-2900"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lBMygv2DyS1G2yDTZjK0wxPc2az1dKIma5HmDXPaWmD%2B%2BILLvilnQeprvwMISvbOmuZqTlBQXoT26l7m67zgoB2I233BcVnR568odHlZXRkx492PmdI0EI3pO8AnUJAK60NeInM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219e285f0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-4.jpeg
0.0.0.0 0 B URL GET veftaunysurvey.top/img/comments/person-4.jpeg
IP 0.0.0.0:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/comments/person-4.jpeg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
veftaunysurvey.top/img/comments/person-5.jpg
0.0.0.0 0 B URL GET veftaunysurvey.top/img/comments/person-5.jpg
IP 0.0.0.0:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/comments/person-5.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
veftaunysurvey.top/img/comments/person-3.png
0.0.0.0 0 B URL GET veftaunysurvey.top/img/comments/person-3.png
IP 0.0.0.0:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/comments/person-3.png HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
cdntechone.com/stattag.js
188.114.96.1200 OK 18 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP 188.114.96.1:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (17871)
Hash 0fdff67feab23cc69ecfb6800fc54cb7
eb84c650e6d27e290795207b1f37dd7b67f2aa06
456e420aecd5ac679cc2bcb33daf7c063f54894fd076e99e05c06629234d3378
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 08:43:53 GMT
etag: W/"646736c9-4859"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2268
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZdTtFqen%2FL6d%2FD8c14A1d3Bnq7WO9yTidvwCHRuBTK%2BsTm9Y5RkqitclL5OsLEp2eThnwgkIToAvGIoe2iB5p5h2AeUAnpC4d9mZ5Fsj7vRUFI67DKjuEGZxMOp9Wg7iDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd821a359070b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
veftaunysurvey.top/img/comments/person-3.png
104.21.93.116200 OK 7.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-3.png
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 2f62e53b6333bc904be22a37a1fd0ace
6e972fefcbe0193d9b28817c47c1ceab2a0235d1
9128194f1b1bf44435a3e80f994157b94a40a3365cd8f0794dcadb41a24c3b41
GET /img/comments/person-3.png HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/png
content-length: 7368
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-1cc8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fr7UW7o54Ym39jVYpdyWmhQgftwyPX0NTzmcNV7qx5MVB1vyOidXrblIR8CcvINax0D4zpeyhXt52BjP%2Fpjguhnn4v2e%2FnOWPC1olQ2KuR7FC7UsKO%2FmxMIq1ggsoZW%2BkOU%2FoB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a22d3c0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/favicon.ico
104.21.93.116200 OK 1.2 kB URL GET HTTP/3 veftaunysurvey.top/favicon.ico
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 668ba1a9fa1890ba16cb8adc28d3dad8
5e35223b2541265114eaf61b9da2556c812fea17
7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2
GET /favicon.ico HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1; finance_ID=6fd4bc1736d78d929fb6ac2d0bd06a6d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/x-icon
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: W/"646f514d-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1768
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fx3WEERo5nyJAUn0sRJx%2FSrDyfkazRoE5EPfTraA7yJdeebxCN5fThljS2oQs925793xWRM%2BXCiBHF5ae%2FXU7AVXqjZwQvdwom3E2ky6cZ%2BUYftAImOUIHAdF255VciA%2FPoJD9s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a3aebc0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/sw/sw4842618.js?var=4493500&var_3=null&var_4=null&ymid=701_957841&ab2_ttl=5184000000
104.21.93.116200 OK 1.3 kB URL GET HTTP/3 veftaunysurvey.top/sw/sw4842618.js?var=4493500&var_3=null&var_4=null&ymid=701_957841&ab2_ttl=5184000000
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (1381), with no line terminators
Hash 391176c8bd76a5856ba8000206199492
6cb137aed01a624e854904e2a6ae01033ec3d412
e154691950c0b3cb210001729b9d414ee23f96c1b28b36a91cffc8d5e5baf443
GET /sw/sw4842618.js?var=4493500&var_3=null&var_4=null&ymid=701_957841&ab2_ttl=5184000000 HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1; finance_ID=6fd4bc1736d78d929fb6ac2d0bd06a6d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: W/"646f514d-529"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blHZrZvs0%2Bqpw48Y2jIduD47LuGyf%2Bet9%2FZwYVQ2BIzoDMXwDogPRy5jdbvQrTHMvu6nCy9780chh2CA5gs6x2kY%2Fju6LIWpdXjGHwUEwnC89OIi8ylPypVh7iOsBDOckJzHTA8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a518aa0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-5.jpg
104.21.93.116200 OK 4.3 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-5.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 21fd6ef6d69b527c02e92a8c23d28d52
5980b75edc23f7fa2f57fa257cb67c9efb86fa58
f37490dbef620959d7124e3de027c5b5c43a57dc90737163947a6725444051eb
GET /img/comments/person-5.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 4333
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
etag: "646f514c-10ed"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TR48y6VGSXRbftThcmIzD0F%2BSpQI%2BHJAGyGtdbBMq%2Bv7W6BAwxzOXG1af5PX9PCzm8ibfwNvAhqUXK9SVlCjuXos1kaVY1thAxZ913uUJlCOpZV9Hje7E4%2BZMIgHgWusiNG4rDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a20d0e0afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/config/dict/cookie-consent-1.json?v=10
104.21.93.116200 OK 6.8 kB URL GET HTTP/3 veftaunysurvey.top/js/config/dict/cookie-consent-1.json?v=10
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (6009), with no line terminators
Hash 4b2ff958e811a50d2f641818590b443d
6abae297812bb55fad869e953e7fdf7469cbe1ae
9c77a5f3d0028d9ba122ed15728ee7b144619431f8302503a19c5785ddaa06b8
GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/json
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: W/"646f514d-1a65"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8d6Eq4wBDLvreUS2PZ7TPbrIlI%2F5p%2FlEGD%2B2My24FTI%2FVTEyrM3u4gCFUzSMxImTXUEh%2FKnUHe8uXHYpF81ovjPEs7Q%2B7ZDCM0dikGicHBuq8JskZVfsnc0pHuslWZPfcFaikGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219f6a0e0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/js/config/data/sd-1203000.js?v=10
104.21.93.116200 OK 2.7 kB URL GET HTTP/3 veftaunysurvey.top/js/config/data/sd-1203000.js?v=10
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type ASCII text, with very long lines (2839), with no line terminators
Hash 501882c63654cc39a921890ab999f9e8
0d1f94ce2336fcb0f5aa05e50ce579007d1d3eaf
70dfcfb1c3c467b41bb0e0bf33302cd6ce971a2d4e6227c7f9ca4be5b90072b1
GET /js/config/data/sd-1203000.js?v=10 HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"646f514d-aa2"
last-modified: Thu, 25 May 2023 12:15:09 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4212
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PQfmyZqe9drX46xOg6KExdzT1MuUKlh%2FNMEavegYhw7dxjhkPXDuFuTD09%2B8%2B9pgodtOMKlmKghbKPSF%2FRvFpRw4oDMK2yqVOBIKuTQVkeFtXwqu5W5WWXxh5SsDT9BFM8cOCG0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219f19bc0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/icon-survey.svg
104.21.93.116200 OK 3.1 kB URL GET HTTP/3 veftaunysurvey.top/img/icon-survey.svg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3164), with no line terminators
Hash be0098d1d8838c0172c3107086338256
924bedb900cfbbf46aee1acc68b09666d1cd08b0
cce75f9c57b1c4430adecff06f7575ac7316c3381477a841f557646d0ac6af8a
GET /img/icon-survey.svg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: image/svg+xml
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: W/"646f514d-c19"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ng%2BO2E3J8MpUDmU6wdlcS%2FWbPuYY1CnM3CfLq9U%2FruVP9t0uyl2fPoQBOzV%2FgWMsHouuDixqnYbNP12Z%2FmdFWueXYRSzDIJVl4rE9Gz9eRAvW%2FL23ieyz311FVLwIbWy9gbUSdU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219f19b60afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-6.jpg
104.21.93.116200 OK 4.4 kB URL GET HTTP/3 veftaunysurvey.top/img/comments/person-6.jpg
IP 104.21.93.116:443
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash be9ff88491a5bc0745579a3813eb2cbe
870f88a7fae9fdd928af33f47c5ffdddc6a4082b
698d413ddf6b2ec37acf0e982237d239bd912cb097e243cb355855ac2b8548d3
GET /img/comments/person-6.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:47 GMT
content-type: image/jpeg
content-length: 4392
last-modified: Thu, 25 May 2023 12:15:09 GMT
vary: Accept-Encoding
etag: "646f514d-1128"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2455
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cqbmx5oxEeWXR%2Fd2Gz8fqmVdXO%2FwsKOioK%2BdBKLW3wtpz3yrKEtr8B4hX0gaySRIGEaYedI8SMYynxoDeyxxUQmeXVv4NY5EFegKlc82sDqhX7s49PTZnwKKSnKFECf5qE0F%2BYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd821a20d120afa-OSL
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
104.21.93.116200 OK 4.7 kB URL User Request GET HTTP/3 veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
IP 104.21.93.116:443
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4929), with no line terminators
Hash b1a9cd89a9c8d90bc6a34ac1531e46e2
5f08db9b85b129e55566bafa881816a2675bc898
9ba092a7505cfc6b97afd58d27f9988d769c3a99fc39dbae1fc077d3622845ad
GET /finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2 HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 18:37:46 GMT
content-type: text/html
last-modified: Thu, 25 May 2023 12:15:08 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frOJaBe3xhGvMowGRR5kJInxwTa%2F9Tf4cbK9mgakVjx60I6sd8pHKmz7yHGTqHgW7WxhsGY75BP5OZRbZrZhsTrO%2BlSTUYGmXDLBMTFdjDZgKXRAgFcOtHMNWfBAOAlHwm%2FfkHQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd8219cfe690afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
veftaunysurvey.top/img/comments/person-6.jpg
0.0.0.0 0 B URL GET veftaunysurvey.top/img/comments/person-6.jpg
IP 0.0.0.0:0
Requested by https://veftaunysurvey.top/finance-survey.html?z=4493500&offer_id=2897&var=701_957841&ymid=6470fc79e2e9d80001dce7b6&utm_campaign=701_957841&utm_medium=4493500&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectveftaunysurvey.top
FingerprintCD:00:B7:98:7E:B7:F9:C5:C4:3B:77:0C:BE:B1:5B:B4:D3:52:0E:FE
ValidityWed, 24 May 2023 08:34:34 GMT - Tue, 22 Aug 2023 08:34:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/comments/person-6.jpg HTTP/1.1
Host: veftaunysurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache