| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/cur.png | 143.204.55.43 | 200 OK | 39 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/cur.png IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typePNG image data, 386 x 252, 8-bit colormap, non-interlaced Hashe7d48b1f27930b430307b639b920796c d05a8fc14ce59fce11a2493259d377a24cfdcfc6 f8930ab2b58928c913648d2c3c5cc5dbd2850a7ccffd714b0ef53208ffec3e37
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/cur.png HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 39113
date: Tue, 23 Apr 2024 17:44:12 GMT
last-modified: Mon, 08 Apr 2024 13:29:50 GMT
etag: "e7d48b1f27930b430307b639b920796c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vI4nFsmfVhIaZb5M-0SMtNkrqPI4wok-UKix_u3fEWCbitfLz1TEyg==
age: 82219
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.css | 143.204.55.43 | 200 OK | 33 B |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.css IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashc588c17324f2be0e0ec90a18f39e7d7c 69d360eddd15f527aac7f7e610346517732b7770 b83e8830b6b2f1253a78f90191cf1087e8fd7638831fd4c1376a7a6029297240
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.css HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 33
date: Tue, 23 Apr 2024 17:44:12 GMT
last-modified: Mon, 08 Apr 2024 13:29:56 GMT
etag: "c588c17324f2be0e0ec90a18f39e7d7c"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p4JSBvkyjS8HXXohTZ2nNeChZm6Xbvb4nENWjF7zFkPbEObTpH0p5g==
age: 82219
X-Firefox-Spdy: h2
|
|
| deehalig.net/zone?&pub=0&zone_id=7096317&is_mobile=false&domain=jinnianzhuanqian.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.503&trace_id=5c500eaa-fbb7-465a-965d-62e4d702f857&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2deehalig.net/zone?&pub=0&zone_id=7096317&is_mobile=false&domain=jinnianzhuanqian.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.503&trace_id=5c500eaa-fbb7-465a-965d-62e4d702f857&action=prerequest IP139.45.197.251:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectdeehalig.net Fingerprint25:FF:1E:CC:8B:76:CD:A6:0D:82:6D:B9:E2:3C:56:E1:BF:EF:70:AA ValidityMon, 11 Mar 2024 07:44:07 GMT - Sun, 09 Jun 2024 07:44:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=7096317&is_mobile=false&domain=jinnianzhuanqian.com&var=&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.503&trace_id=5c500eaa-fbb7-465a-965d-62e4d702f857&action=prerequest HTTP/1.1
Host: deehalig.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-length: 0
x-trace-id: 3accf3bcd873d695372c1c34e91df6f4
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| freemediabuy.com/js/funnel | 188.114.97.1 | 200 OK | 0 B |
URL OPTIONS HTTP/3freemediabuy.com/js/funnel IP188.114.97.1:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerGoogle Trust Services LLC Subjectfreemediabuy.com Fingerprint94:1D:40:7B:77:76:BA:6E:15:3F:5D:46:DF:B8:54:AF:46:E5:5C:4E ValidityFri, 05 Apr 2024 13:39:08 GMT - Thu, 04 Jul 2024 13:39:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /js/funnel HTTP/1.1
Host: freemediabuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://jinnianzhuanqian.com/
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:34:31 GMT
content-length: 0
x-lum-instance: edge-797c447bd4-nxj6g
access-control-allow-methods: POST
access-control-allow-headers: Content-Type
access-control-max-age: 1800
access-control-allow-credentials: true
vary: Origin
access-control-allow-origin: https://jinnianzhuanqian.com
x-lum-execution-time: 5.41µs
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cb%2F6rGaQqKMozjo5EhP29I6iekYBZejiER2MDGoWPUuaElPZDwV%2FelLsk9BmjCWA3FZxMfZb%2BG19HxcBJno%2Bxs2QWOMnXimcFvNuzS5QD%2Ficyh8kBi%2FvPv4EyfimkYtWkkc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797804fed4656b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jinnianzhuanqian.com/sw-check-permissions-e10e2.js?zoneId=7096317 | 143.204.55.43 | 200 OK | 566 B |
URL GET HTTP/2jinnianzhuanqian.com/sw-check-permissions-e10e2.js?zoneId=7096317 IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hashc00979626735e1e3b2831ef57cb8901a a70bec015c08edb60f4b5bfbc31507ad72eb31d8 8a7d16841517d3d99532914d0f023f0ce0f455a67efd0e2df891dcdc9111f6b0
GET /sw-check-permissions-e10e2.js?zoneId=7096317 HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 566
date: Wed, 24 Apr 2024 03:35:22 GMT
last-modified: Sat, 17 Feb 2024 05:37:23 GMT
etag: "c00979626735e1e3b2831ef57cb8901a"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NTQ4M1TXHpBwbanfMRFyMZ9VEt__z5zfwK4pIHtHOAbPLiGzPXaqdg==
age: 46750
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 352
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 4643ed1d587f969a8b3cfb87d5cc7a5d
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 349
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 72f7b1db53e582f4eaec38c2aa5f111d
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 351
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 35510a50d2bf860884e4ef18ed27fa83
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://jinnianzhuanqian.com/
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashe6b889087fb5a970be60f84be84fc57d 9430e91a9c9b395a434b0fedaf03efbb05f1b64e d51193531fa5108198475cd6a4c76ddf00cf3bde1b98f4f075d5d043c882a6ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jinnianzhuanqian.com/
Content-Type: application/json
Content-Length: 966
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://jinnianzhuanqian.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/favicon.ico | 143.204.55.43 | 403 Forbidden | 11 kB |
URL GET HTTP/2jinnianzhuanqian.com/favicon.ico IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hashcfce51e60e4975b039526f9126fd98c0 422a3e226b6aa711f1615b5413bfe12216d73cec 58daebf56d5bc8ae352b645a7b39ddd5a5510ca9d567d92fde11eab9a9ab548f
GET /favicon.ico HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
content-type: application/xml
date: Wed, 24 Apr 2024 16:34:30 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cA7zITuvHxm_uigKJUjbKDml2J1KAR9Y5JGqFWUNQXkK8CH7zQwO-A==
X-Firefox-Spdy: h2
|
|
| freemediabuy.com/js/funnel | 188.114.97.1 | 200 OK | 9.1 kB |
URL OPTIONS HTTP/3freemediabuy.com/js/funnel IP188.114.97.1:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerGoogle Trust Services LLC Subjectfreemediabuy.com Fingerprint94:1D:40:7B:77:76:BA:6E:15:3F:5D:46:DF:B8:54:AF:46:E5:5C:4E ValidityFri, 05 Apr 2024 13:39:08 GMT - Thu, 04 Jul 2024 13:39:07 GMT
Hasha4e7b7991c90df4eb977c1b19e1185fd e7cdbb8f4e263a0609602a65ff67aeec6ce1998b 9d5c81737a7133bab6e0aa9c34e0031700a7184193ea8f5968623e1241e59a50
POST /js/funnel HTTP/1.1
Host: freemediabuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 371
Origin: https://jinnianzhuanqian.com
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 16:34:31 GMT
content-type: application/json;charset=UTF-8
x-lum-instance: edge-797c447bd4-nxj6g
access-control-allow-credentials: true
vary: Origin
access-control-allow-origin: https://jinnianzhuanqian.com
cache-control: no-cache, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
x-lum-execution-time: 5.00677ms
set-cookie: vid=fM29YwlMyh2fhv2L9ulB9Ufz6x; expires=Thu, 24 Apr 2025 16:34:31 GMT; path=/; secure; SameSite=None
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wq3lHsI%2Faju1YMyu0%2FM1l69AC%2BJ7mUvN66KAnYUSLkQtsAov5AqPE%2FvRi0LcGAB0xebYNTKv8NU4kRYsd8sOJagUkNUMXBW%2Bds9WAeEeoNSce3FNL8cRMzwLE98K6KEb1YI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879780505d6856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x | 143.204.55.43 | 200 OK | 14 kB |
URL User Request GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x IP143.204.55.43:443
CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 08 Apr 2024 13:29:47 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 21:01:50 GMT
etag: W/"6eac5fdfe58a0e02a1eb72df509c0d72"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yRvA0i9x7wSHRSvpFwK5Tq9IaE1Zqx4toSoMhklkrQCmhBk_TZOwWQ==
age: 70361
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/jquery.min.js | 143.204.55.43 | 200 OK | 90 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/jquery.min.js IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash0732e3eabbf8aa7ce7f69eedbd07dfdd 4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/jquery.min.js HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 13:30:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 23:09:36 GMT
etag: W/"0732e3eabbf8aa7ce7f69eedbd07dfdd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hAP7Xj_NqzsjkKBfa8xydpWMBEDs64-gpQkCKpL1WsYqXncVGW3obQ==
age: 62695
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.css | 143.204.55.43 | 200 OK | 4.6 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.css IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeASCII text, with very long lines (4580), with no line terminators Hashec89a36f17ee49075e84ee5e8343ddc0 4d42bf6a0422d919a04c6f18566f34e857f61724 36cb0bf5438f47ba058ea211ec44f2f6310e4d276042be643ce841ca3949fa42
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.css HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 08 Apr 2024 13:29:58 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 23:09:35 GMT
etag: W/"ec89a36f17ee49075e84ee5e8343ddc0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m3ZVyEW0DjGfmmmXmr9qVmyjgqPUG-wzHmSieKUYGf2-T50yr7cswA==
age: 62696
X-Firefox-Spdy: h2
|
|
| deehalig.net/pfe/current/micro.tag.min.js?z=7096317&sw=/sw-check-permissions-e10e2.js | 139.45.197.251 | 200 OK | 37 kB |
URL GET HTTP/2deehalig.net/pfe/current/micro.tag.min.js?z=7096317&sw=/sw-check-permissions-e10e2.js IP139.45.197.251:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerLet's Encrypt Subjectdeehalig.net Fingerprint25:FF:1E:CC:8B:76:CD:A6:0D:82:6D:B9:E2:3C:56:E1:BF:EF:70:AA ValidityMon, 11 Mar 2024 07:44:07 GMT - Sun, 09 Jun 2024 07:44:06 GMT
File typeJavaScript source, ASCII text, with very long lines (37142), with no line terminators Hash8acf6198d81e7b03a7f405500e7ae7f2 9d1d750d53896ac2ddc64461938862f301773eed 68fbd570b73d292cf84bf733f4ada10f1f7bbe6ba5ad8043ee3e2f5d01278e02
GET /pfe/current/micro.tag.min.js?z=7096317&sw=/sw-check-permissions-e10e2.js HTTP/1.1
Host: deehalig.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 16:34:30 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 14:40:04 GMT
etag: W/"662919c4-9116"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| backunder.com/script.js | 188.114.97.1 | 200 OK | 911 B |
IP188.114.97.1:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerGoogle Trust Services LLC Subjectbackunder.com FingerprintF0:95:C2:A7:B0:15:EB:8D:1E:CE:36:6A:FC:03:95:FA:C0:07:37:96 ValiditySat, 30 Mar 2024 17:02:34 GMT - Fri, 28 Jun 2024 17:02:33 GMT
File typeJavaScript source, ASCII text, with very long lines (920), with no line terminators Hashf60d3d95ba5d3857d3acb6730f06767d 454bf6bf84fc040a03287bf1096d2669804627c8 5c501b55106f7ffe03902742af81cad54e109fec08e9dd005b13ecaa6cbb748e
GET /script.js HTTP/1.1
Host: backunder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 16:34:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1228
etag: W/"4cc-5f2f3364b2fe4-gzip"
last-modified: Mon, 23 Jan 2023 19:14:45 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 124
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jl8s4YHJREVWr7B21VrBDjtr7vMkD0pp6STRZJjDl8pcBSzxboE8KinubxsO2YM%2BweSC%2BtVk9vT3aLKclJpRcKaZgZCZVkGxRvqyiGOfc2OSlWV036vN%2B82BXxRwKuFZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797804dfb9db51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.js | 143.204.55.43 | 200 OK | 47 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.js IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app.js HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 13:29:57 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 24 Apr 2024 09:34:35 GMT
etag: W/"ca09b92422e460811cb5420bae7dcd21"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w3eE9ZSCGEC0fIcXqmA1yRRcrqUT6Zb5mayF8UsQ-QAzqYBjjPopag==
age: 25196
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/orange.svg | 143.204.55.43 | 200 OK | 2.9 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/orange.svg IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashb9c9a245cd475ef811de3a8e6ceef416 88c9cfc60cf353e51953eefa7d1f0d16d0161bfe 965948a5a294ba2a3a745959ca63cffe02a56bc90939d484a745192660e7ef3b
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/imgs/orange.svg HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 08 Apr 2024 13:29:54 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 23:09:36 GMT
etag: W/"4b289660adaec3ad254bc42cf76520b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xNnyK44XZ0347TwdGXtf3R2l2ipPbZ3UE53iNdlonXr2vHdFJP-dfg==
age: 62695
X-Firefox-Spdy: h2
|
|
| jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.js | 143.204.55.43 | 200 OK | 144 kB |
URL GET HTTP/2jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.js IP143.204.55.43:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerAmazon Subjectjinnianzhuanqian.com Fingerprint15:17:C4:1C:57:7E:F9:5D:E4:BB:D3:E3:F2:26:3E:34:D1:55:43:89 ValidityThu, 15 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
Size144 kB (143916 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/js/app2.js HTTP/1.1
Host: jinnianzhuanqian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 08 Apr 2024 13:29:59 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
date: Tue, 23 Apr 2024 23:09:36 GMT
etag: W/"bb0b927df7860bba642a28b60f038b05"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BiYEFs9HCkAIv9N31pEVQ6P9Ct5Q1FUsEMrdQOxE4ytznf_j6TIXQw==
age: 62695
X-Firefox-Spdy: h2
|
|
| freemediabuy.com/integration/lumetricv2.min.js?v=3.2.0 | 188.114.97.1 | 200 OK | 10 kB |
URL GET HTTP/2freemediabuy.com/integration/lumetricv2.min.js?v=3.2.0 IP188.114.97.1:443
Requested byhttps://jinnianzhuanqian.com/sweeps/TC-LP/cash/Cameroon-Isurvey-Orange-French-DX/index.html?vid=fM29YwlMyh2fhv2L9ulB9Ufz6x CertificateIssuerGoogle Trust Services LLC Subjectfreemediabuy.com Fingerprint94:1D:40:7B:77:76:BA:6E:15:3F:5D:46:DF:B8:54:AF:46:E5:5C:4E ValidityFri, 05 Apr 2024 13:39:08 GMT - Thu, 04 Jul 2024 13:39:07 GMT
File typeJavaScript source, ASCII text, with very long lines (10352), with no line terminators Hash6c1eec6f3ec5435ba6a3a9a538adcb7d 04fb4ae20ee66b7fc8ff111f3f51ed4f2cafb704 64834312568646df5724741023b27f86826da98fb31e4d345a6b4044d2d9f292
GET /integration/lumetricv2.min.js?v=3.2.0 HTTP/1.1
Host: freemediabuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jinnianzhuanqian.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 16:34:30 GMT
content-type: text/javascript; charset=utf-8
x-lum-instance: edge-797c447bd4-nxj6g
x-lum-execution-time: 38.8µs
vary: Accept-Encoding
via: 1.1 google
cache-control: max-age=14400
cf-cache-status: DYNAMIC
last-modified: Wed, 24 Apr 2024 16:34:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZtEJBy68hOkfEWfF7iH8WlEcF68CRiF3yGor7Ikacdq5HvtlsP6y%2Bey3%2Bq2SnDf0kyrLgcrTxSutwHb4dqBU6ZytLESN18bMCZ0X0QZ85tDoZpzF6sI9%2FpcabgUsPT3yymg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8797804f0e2256aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|