trkthisnowsr.xyz/go/b3cc55da-89c7-4282-9b13-3c21b8affc7a
336 B URL trkthisnowsr.xyz/go/b3cc55da-89c7-4282-9b13-3c21b8affc7a
IP
File type HTML document, ASCII text, with very long lines (336), with no line terminators
Hash 9a066960804e8b43ae8579272ac10e9a
14c99d8dda9d70d4beaa1989dfd317214664c4e1
e21c7f66c0f1c9fa7629d20cc371c3b88ef88c0d53fb5ad8aea2bc4e3a15d4b8
GET /go/b3cc55da-89c7-4282-9b13-3c21b8affc7a HTTP/1.1
Host: trkthisnowsr.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Sun, 04 Jun 2023 13:57:13 GMT
content-type: text/html; charset=utf-8
content-length: 336
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
location: https://surveygett.com/link?z=5935571&var=ca3f1d10-f236-4ba1-8883-b6a6a85b43ae&ymid=PMQErBzeMSgBTfb2Fn9Y1L&ymid=PMQErBzeMSgBTfb2Fn9Y1L
set-cookie: bemob-uniq-visit:b3cc55da-89c7-4282-9b13-3c21b8affc7a=1; Domain=trkthisnowsr.xyz; Path=/; Expires=Mon, 05 Jun 2023 13:57:13 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:b3cc55da-89c7-4282-9b13-3c21b8affc7a:random:7ed62b738036b839cf4b659c1b14441b=1-0-0; Domain=trkthisnowsr.xyz; Path=/; Expires=Mon, 05 Jun 2023 13:57:13 GMT; HttpOnly; Secure; SameSite=None
bemob-click-id=PMQErBzeMSgBTfb2Fn9Y1L; Domain=trkthisnowsr.xyz; Path=/; Expires=Mon, 05 Jun 2023 13:57:13 GMT; HttpOnly; Secure; SameSite=None
vary: Accept
x-response-time: 16.103ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
surveygett.com/link?z=5935571&var=ca3f1d10-f236-4ba1-8883-b6a6a85b43ae&ymid=PMQErBzeMSgBTfb2Fn9Y1L&ymid=PMQErBzeMSgBTfb2Fn9Y1L
0 B URL surveygett.com/link?z=5935571&var=ca3f1d10-f236-4ba1-8883-b6a6a85b43ae&ymid=PMQErBzeMSgBTfb2Fn9Y1L&ymid=PMQErBzeMSgBTfb2Fn9Y1L
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /link?z=5935571&var=ca3f1d10-f236-4ba1-8883-b6a6a85b43ae&ymid=PMQErBzeMSgBTfb2Fn9Y1L&ymid=PMQErBzeMSgBTfb2Fn9Y1L HTTP/1.1
Host: surveygett.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sun, 04 Jun 2023 13:57:13 GMT
content-length: 0
location: https://trebghoru.com/link?z=3956710&var=5935571
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: e0acab7f9668c83b4b323056711c79ac
link: <https://trebghoru.com>; rel="dns-prefetch preconnect"
referrer-policy: no-referrer
set-cookie: OAID=fee27571b81d48afb61844bdde9cee39; expires=Mon, 03 Jun 2024 13:57:13 GMT
oaidts=1685887033; expires=Mon, 03 Jun 2024 13:57:13 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
trebghoru.com/link?z=3956710&var=5935571
0 B URL trebghoru.com/link?z=3956710&var=5935571
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /link?z=3956710&var=5935571 HTTP/1.1
Host: trebghoru.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sun, 04 Jun 2023 13:57:13 GMT
content-length: 0
location: https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp&autoexit_86400=3953544
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 368a116be6298d3ec95a45ea7e5427f8
link: <https://erailsiwsurvey.top>; rel="dns-prefetch preconnect"
referrer-policy: no-referrer
set-cookie: OAID=763d630e51bb46dab5bddb2bbe55fd7c; expires=Mon, 03 Jun 2024 13:57:13 GMT
oaidts=1685887033; expires=Mon, 03 Jun 2024 13:57:13 GMT
OXCCLK=4105106.1; expires=Mon, 03 Jun 2024 13:57:13 GMT
allcnt=1; expires=Mon, 03 Jun 2024 13:57:13 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
erailsiwsurvey.top/img/icon-survey.svg
200 OK 846 B URL GET HTTP/3 erailsiwsurvey.top/img/icon-survey.svg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1080)
Hash 9612f51aebfc959fbe20466738ad7a35
40018ba48bd4ed13c219ceb9efdeccac7902ff4f
a35df0cc8723374ad7b9b6a99e7b07b23a32783d0ae1897fbf8dbc6e6ffe11d6
GET /img/icon-survey.svg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-c19"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CiBbqkWpLlUBk5lWy%2FOtppTUFtxFAFqgMIsMF2y5PpIf0088%2Byy0MS%2FMNUZG9s0kmlmU3MzbIV0rI2QpSiYXxJ1M6%2BWwq%2FPFRkVW0IBrMrShG5RnHq8pgLQKysr%2BXAMZSuZjWO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0cfe731c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js?
200 OK 65 B IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type JSON data\012- , ASCII text
Hash 7f79511b8a4cc3c5813a4e86bcf47729
12e0f836e90181c7cea39a5cbcb51787b50e340b
0adb11c810213323c998137bfee7f0918c32f4c5e493e56747848d868563da69
GET /gid.js? HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://erailsiwsurvey.top
DNT: 1
Connection: keep-alive
Cookie: ID=1daf650b44294342adc75a3c57019144
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://erailsiwsurvey.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1daf650b44294342adc75a3c57019144; expires=Mon, 03 Jun 2024 13:57:14 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=explicit&hl=en
556 B URL www.google.com/recaptcha/api.js?render=explicit&hl=en
IP
File type ASCII text, with very long lines (852), with no line terminators
Hash 2f8167a83a96c015814efbdcafa4ba64
10d0d3111342f2741856701a4403e31ee8f6d155
fb7de641340e1ef87fc299914f3a18ddbd745d01e1194103c3c948bd748cd858
GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sun, 04 Jun 2023 13:57:15 GMT
date: Sun, 04 Jun 2023 13:57:15 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
erailsiwsurvey.top/css/survey.2bfeef83.css
200 OK 18 kB URL GET HTTP/3 erailsiwsurvey.top/css/survey.2bfeef83.css
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ba8ddbfa60d2feec516710cd5de1746d
9ddfc2f60deda512e71fa888c546c4300e3a530e
04ea2783c47b74e28c9583983c12e1ea4ac25e5ab50f0270829687607a03a782
GET /css/survey.2bfeef83.css HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=66591
etag: W/"6478a1ef-1041f"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BGUef1E0CV4yznMX%2BOLe5dHeGrOmleIpyWhfE8bfIA1pZWrotRrFIl6EuHzyS0WQEdSbKsxVH7s9knR1CpCTj2QETyMlHTu8adWo47YY3XvCfXq7i6SexftuU%2BSk%2B558kPTx9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f587e1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-14.jpg
200 OK 5.4 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-14.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6012ff0d59aa6a34aaca1ea8f2fa88fc
ef59662c9b666106486039e9f1deb40fb4a8ff77
2c020310e91430067c7128425f14ac0ff1710aea5e67c144a8fceac46311182d
GET /img/comments/person-14.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 5392
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1510"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QLn1IKV6%2BXmKeknYo%2FmSx6lC9SmiXs06HTPqQnDnzCZhyg32WbksnGiiSe%2BSHRz4HGKeacpTtdpDgGpcCYbei2z69CyefDtorHupCZvC3WbRvUqhzSuBHN5SDflTZQtzMtSjPUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b261c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/unnamed.jpg
200 OK 1.4 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/unnamed.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 449aaf5a54e3fe3aa4f0f5875bede090
b2b897362626700277b7f8baca8b1f292d08b7e5
4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59
GET /img/comments/unnamed.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-562"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SNuF%2FOaH7BwEpyrVnfMw%2BvnHPATQKCSD%2BWEZwJSja1aYuzW9PVJIoz%2Bb0vaZmIy2vilcWG%2BauYb6El5cEiK0GEtwfSB6TK25AJ%2BFWQAtCWn8v7sN%2B506Upc0PgdG9YKHaxxCH2M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b231c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-4.jpeg
200 OK 2.7 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-4.jpeg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6cf64555e2de0ff8b5391081b648b89a
a32008bacf7f8cd3859eb86c6c8d36eeb15dbdf0
d4f513bf3a5691b900739cf79285d18ef09ef4b81eca648261b15a693d21818d
GET /img/comments/person-4.jpeg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 2709
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-a95"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6zqgsNigXvF5tOd%2BXCKq%2FAfwb%2BVky%2BOnDHCkMJK%2FsWWDk1mzh9eeN5V8oozPNJprzLm3EZBVK7wP3eX%2B2W50iPnBI5TE1c9iFo6%2FT726j5UkAVT2px486wqaCrzwDNPmqykUpgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b2d1c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-5.jpg
200 OK 4.3 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-5.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 21fd6ef6d69b527c02e92a8c23d28d52
5980b75edc23f7fa2f57fa257cb67c9efb86fa58
f37490dbef620959d7124e3de027c5b5c43a57dc90737163947a6725444051eb
GET /img/comments/person-5.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 4333
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-10ed"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=edwOoQaZyhjx9BTgQIo2g%2BTFwqDiOWNlP%2FYNm8bOHwtVAI%2FzfRLZFSGkRlG2ELXlMgJqo4LLT5PVb0o4327iOGrcYkCS3klUengLRb4SkA40lhCbE2g8nRSPmQM%2FNe3XiMIGtNU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b2e1c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-6.jpg
200 OK 4.4 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-6.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash be9ff88491a5bc0745579a3813eb2cbe
870f88a7fae9fdd928af33f47c5ffdddc6a4082b
698d413ddf6b2ec37acf0e982237d239bd912cb097e243cb355855ac2b8548d3
GET /img/comments/person-6.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 4392
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1128"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E8mj%2FrLupKDxsRbWy95UFwa6058IG5jyIdhC2xkQ7aS2iShfR5bZSEqEoriOJXyT%2BnaJg4kteRSanUpIT4OTqG4W%2FFIXVCqc8HbPeXd%2B9Tt2uyHBlOKIeMvRTNqlW0j8upxNMOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b321c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/survey.36a8ba6b.js
200 OK 7.8 kB URL GET HTTP/3 erailsiwsurvey.top/js/survey.36a8ba6b.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (5437), with no line terminators
Hash 6ab7c487e6ed70d2f7241a5bf22a69f4
aea57164a36967cc918348e3117662c883c0ef10
8b44578bb3662e18c2c7a6972b9efedb7daeeaa4a87695dd5c912b1ccd897a9a
GET /js/survey.36a8ba6b.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-153d"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0L05ds7ssFHTiZjRkQ%2FbN1PLryT3oURSugiVi8J0ZTihIGkm4rv6473FZsdwvLqNwuB0mKn%2BWB31v8rqBlD1Kp0LuKG%2FBmC9l0X6aDCUaX1c6uBZpTboHMIn%2BGeApVxDQMJcke0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f587d1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-9.jpg
200 OK 5.2 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-9.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 529370f9fd3b0f4da6c81ca91a931155
1a4c3e0e7af1ce30dc2ca18d48b5fc3f1b40aad3
cdf1b8dcdce4e9b76157ce90e086ebafb100063eaeb091e97087d97f5d0fb50b
GET /img/comments/person-9.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 5190
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1446"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2FgiiZNj2e19Gc7zf8Y5G7q4yMyvZnDpJb8dRV7XM2yKD2ZXD0dTpRbWHQSlYmRbJLiBKUNYz%2Bxr2fzJ0CpDNDmJ4gwFywa%2BDyGXWL22zls0zGXg0VjJhhtMnCW2mFDGDlppOPQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b361c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-11.jpeg
4.2 kB URL erailsiwsurvey.top/img/comments/person-11.jpeg
IP
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 3924bdc784dc4947f52b779aa4d5a0aa
1e3f3fdd99490addd60014aa7327fe27c6bd5589
b3f882f57f9a213d85eb1c5c6a8a1451bd16dfcd9e4bd00e0a74584422dbd950
GET /img/comments/person-11.jpeg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 4175
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-104f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h9wRbTiIFYLXQ0XSBv5hdFkVTTMcqLilY%2FBqDyP7XWX9AGiGk9%2F0v%2BBxUwNzykailZmSn1S6PS%2FHPFWZujGZX6atOisoi8JNMFtmbrpl2jcyrAu%2F0o32n9Rw%2Ft2df72oWKqBikg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b391c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-3.png
200 OK 7.4 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-3.png
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 2f62e53b6333bc904be22a37a1fd0ace
6e972fefcbe0193d9b28817c47c1ceab2a0235d1
9128194f1b1bf44435a3e80f994157b94a40a3365cd8f0794dcadb41a24c3b41
GET /img/comments/person-3.png HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/png
content-length: 7368
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1cc8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vu%2BpUBXHf84rgSuTLxjbtGbY5Nu30G2T9%2FIkXJANN2tDmRzuiDzWF8pmxKavw6LLbn2psGuVJM%2Fvjl5jTxK%2FJLjlCU2IPBPaY2i16hh2zo1XN%2B2vMRdhur4ZupE9UlViLkDADa4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b371c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/icon-survey.svg
200 OK 7.0 kB URL GET HTTP/3 erailsiwsurvey.top/img/icon-survey.svg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1080)
Hash 9612f51aebfc959fbe20466738ad7a35
40018ba48bd4ed13c219ceb9efdeccac7902ff4f
a35df0cc8723374ad7b9b6a99e7b07b23a32783d0ae1897fbf8dbc6e6ffe11d6
GET /img/icon-survey.svg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-c19"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FJeV4zMLCvvqGWUkRwDq5%2FV05MquQ9FhmSSTjqAGIq5yIHU3k7PqPrAfU4yDSMFXvDg5EKlbRk7GjnJLNn%2FWx6Hn5bXkeslrZmYlP%2F6dWcfCrvPNwmAc7bzkJUfT4GMw61cwfGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f58821c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-12.jpeg
3.5 kB URL erailsiwsurvey.top/img/comments/person-12.jpeg
IP
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c937339f4ba54ff7dc150b9865c29084
44206828ca23cbed303193bde1dfe47bdc532972
8e872daac17de58d352c9f4082e6e35af76a8b2138c142a8cf0fbacea195c73e
GET /img/comments/person-12.jpeg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 3519
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-dbf"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6bwR4XbUaZEcjKJ3%2Bd5u7Oa%2BBqb2obDh0K0PKBEx1abeqi1Ht0eYpOcuw%2FrjByXjxvQaXgSKdbT26eryoANNVODOuJdFS9axmvKT3%2F4v7hix%2FqwRSHikauxuKze7MyWk4%2FjW91I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b3a1c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-13.jpg
200 OK 3.2 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-13.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a3364ed9e772ae6f696b814072001bf8
b8f34c657c31bf1e4d42b5d864b2519493d80e92
88f30b8552d0ab928d895390b337a0049405f3b1e8446631e606ba787e1205e1
GET /img/comments/person-13.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 3172
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-c64"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R8nsIxVaPRHcNBph9gTQCZAVfcMiJ3Urg7ZiP6W7LG19Nind%2B9utEgiQ%2FPy3zLDsAkKO3vcBOl6KqMfxbfTE5wCkP68xztXz6s%2By6wkaf3FEZvDzf9%2BMnOIvkGuUQcZ4zCR8MvA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b3b1c0e-OSL
alt-svc: h3=":443"; ma=86400
dortmark.net/sync?userId=f89cf794d43f5d13f09f9c715ee68ed6&partition=finance&duration=5184000
200 OK 45 B URL GET HTTP/2 dortmark.net/sync?userId=f89cf794d43f5d13f09f9c715ee68ed6&partition=finance&duration=5184000
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectdortmark.net
Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52
ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 1e02ae97a8914b95d13708416fee1841
5970922f51040b72d926d2a6640446fd9c8ebb6b
87b85237da2b9964b98ea52a0ce470cfcda4f9b7eea6ca0c5a6bbcf549a22483
GET /sync?userId=f89cf794d43f5d13f09f9c715ee68ed6&partition=finance&duration=5184000 HTTP/1.1
Host: dortmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://erailsiwsurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/json; charset=utf-8
content-length: 45
x-trace-id: 89298145d06246ac94c8ab8fac6f41bb
access-control-allow-origin: https://erailsiwsurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: finance_ID=f89cf794d43f5d13f09f9c715ee68ed6; expires=Sun, 04 Jun 2023 14:57:15 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cdntechone.com/stattag.js
200 OK 14 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (17871)
Hash 0fdff67feab23cc69ecfb6800fc54cb7
eb84c650e6d27e290795207b1f37dd7b67f2aa06
456e420aecd5ac679cc2bcb33daf7c063f54894fd076e99e05c06629234d3378
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 08:43:53 GMT
etag: W/"646736c9-4859"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6819
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jdS2U2ReHEevppGNDV0283bjlQZpCuvxIIAW47QTjDlpflUG5%2BqmCwuYv39Ozss8zRNtGHufuTBUX5QkezFiWvSUd4vrLTy6Nyhtinp%2Fl%2FkpkCJyvSImJBRnJ%2B%2FaOaGRZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20af117bceb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
laugoust.com/zone?&pub=0&zone_id=4842423&is_mobile=false&domain=erailsiwsurvey.top&var=3956710&ymid=5935571&var_3=689222623521153214&var_4=null&dsig=&action=prerequest
200 OK 0 B URL POST HTTP/2 laugoust.com/zone?&pub=0&zone_id=4842423&is_mobile=false&domain=erailsiwsurvey.top&var=3956710&ymid=5935571&var_3=689222623521153214&var_4=null&dsig=&action=prerequest
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectlaugoust.com
Fingerprint99:7C:6B:09:6A:A1:BC:70:53:D5:2F:97:56:F3:C0:A5:06:9F:80:C9
ValiditySun, 19 Mar 2023 05:11:02 GMT - Sat, 17 Jun 2023 05:11:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4842423&is_mobile=false&domain=erailsiwsurvey.top&var=3956710&ymid=5935571&var_3=689222623521153214&var_4=null&dsig=&action=prerequest HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:57:15 GMT
content-length: 0
x-trace-id: 89ef125466fd0c98cdf219e070b8a75d
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (749)
Size 166 kB (166186 bytes)
Hash ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://erailsiwsurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 13:34:38 GMT
expires: Fri, 31 May 2024 13:34:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1532
Origin: https://erailsiwsurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 04 Jun 2023 13:57:15 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://erailsiwsurvey.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
my.rtmark.net/img.gif?f=sync&partner=37faba736e092fd0fbd4bb09c7ac1e23053143b486f9f8503431b4ff9f42fc60
43 B URL my.rtmark.net/img.gif?f=sync&partner=37faba736e092fd0fbd4bb09c7ac1e23053143b486f9f8503431b4ff9f42fc60
IP
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=sync&partner=37faba736e092fd0fbd4bb09c7ac1e23053143b486f9f8503431b4ff9f42fc60 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Cookie: ID=1daf650b44294342adc75a3c57019144
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:57:28 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1daf650b44294342adc75a3c57019144; expires=Mon, 03 Jun 2024 13:57:28 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
200 OK 4.7 kB URL User Request GET HTTP/3 erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
IP
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4929), with no line terminators
Hash 26de6480612297db791b37fc60de79ee
782348fe6a88d506c1e6de65a586c0ac6a2ec34d
b9f53a6b7ddb29070ed1bdf87f44f45126cee362599b1049f4aa3edad01194d3
GET /survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2 HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: text/html
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pHUn94TM3B41kEgFVf5kjWekNgS%2BxTkJnUAsD7Akt4pt9i3W2NyqRDVgBqa%2FrRfx%2F2YLuYLpF7nIJq0E3efe1fKPUK9iZLpmcwzqyF56SMDb9yMQV09B6Q4VPtU2zGQedpiDBNo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0e1f601c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-1.png
200 OK 6.6 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-1.png
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 8f9a954bf05965bb41cf97a7ddb7a375
de9db936bbea75043e08a55d1f371678fca2270c
a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d
GET /img/comments/person-1.png HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/png
content-length: 6577
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-19b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGtWek02LR8rTgJyA3Ik4VJS%2Bqr7vIaMNAzG41l7FLGqZ9OMDbI9hh%2Fphs9u%2BNVKiFSUHA63hcw18Jpa7cbXLDxtPjnVvRLU4DFH6cxIXdAcWiewWJUEVgZ0RGPvGePYk7m%2BB%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b251c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/_is-browser-supported.c49ec082.js
200 OK 1.0 kB URL GET HTTP/3 erailsiwsurvey.top/js/_is-browser-supported.c49ec082.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (1102), with no line terminators
Hash 347149a5f2db6ba9662854836bd194ba
dad9564747ff98e7449226386615f6846b11920e
c84c175bb7a22aee56cd585dfeec157387639c062a12b726f8f4dd3f0c36cc7a
GET /js/_is-browser-supported.c49ec082.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-3f7"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 5513
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8xaYZvO5PP361BmKJyAhnqcpv7sc5kGm5IgrAuE1qg%2BegnvamPo57MssuAgdlwPAMs7b11kkROKD70xnKTYEvsxsyujhy%2Fc2c%2B04Qxz6fbziGRk%2BB6Efk%2FkZJsil%2B8ErKBTNmHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f385d1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/_core-survey.2e2c57dd.js
200 OK 230 kB URL GET HTTP/3 erailsiwsurvey.top/js/_core-survey.2e2c57dd.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
Size 230 kB (229458 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/_core-survey.2e2c57dd.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-38052"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H8joLfEL0V%2FTYSjNwRkSbAdT%2BX%2BN81%2F683R8c3tn6NBO1EVaTGF5Z2zkA2gDtugXAbefaAFz8IsmPgu7kpBigqdpOhAVEJkNE%2FIg6SLAFaNQcT6DUtDaEZMnV%2FOQ5kPeVtbd6ZY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f58761c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/v-redux-toolkit.esm.js.b2bedd2f.js
200 OK 11 kB URL GET HTTP/3 erailsiwsurvey.top/js/v-redux-toolkit.esm.js.b2bedd2f.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (11317), with no line terminators
Hash ac9121dfc38a96f9146a7121ce322045
06ccd82f9b12b0e28763513da15d61fce4b9197b
2994e8f29a919a18deb772d218fe3fb77e45df892ae6512d448f8d862e2b3a71
GET /js/v-redux-toolkit.esm.js.b2bedd2f.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-2c35"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=swP97cIM%2B7Y2JuhQ38o4AC26sZSmNfOAqaR3NmrogRepG2qpXE8AAqGwKk472iDu2gxopW%2Fg8w6bWjvl3pNv404y1quYh3sTnbyC5%2B3DiwHd0vDmEUoI7HbRTK5hmdQN827tvi4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f48681c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-10.jpg
200 OK 6.2 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-10.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 044ab37551bfe632f53b8f15d991f36e
77fdc6210608e5e36e1d36ac7fd867104cb20d9e
36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91
GET /img/comments/person-10.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 6178
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1822"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0yK5wpoRCYYSLUYgjCz0mBLc1iprU8AuH32EWO9LgsSvKyNKBYQeBv02so2Ck12g4EwEvPRLFmtyWtEqSmJlLZPMOayUgFTpgJz8R4eIDR2je%2FBwlOLi90swsBtq0mKiYqcYps4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af126b381c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/v-react-dom.production.min.js.708dd72a.js
200 OK 129 kB URL GET HTTP/3 erailsiwsurvey.top/js/v-react-dom.production.min.js.708dd72a.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 129 kB (129259 bytes)
Hash bf59e2beec56bd492cd1247c25672598
4af373f2ad8d7a2bda18232ab4740abdea6ecb7c
04853b2a6175aa975ebe4d756699da4d7a9a156fef4895cf65b53c8fdf6c1389
GET /js/v-react-dom.production.min.js.708dd72a.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-1f8eb"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4pdR6RJHlxVOML1J1EODgEomwsYUMeiXKLU%2FDQGxngmkwynz33EyWXolzSO3gp1gf8HpDBVik1Yn9RdqUA4XYexL62B1Iw4KutG4JtgRKubgDw3wvAvh1V3Aa2ZkeJHGrLIFC3M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f58741c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/s-storageService.js.2dc48dda.js
200 OK 2.6 kB URL GET HTTP/3 erailsiwsurvey.top/js/s-storageService.js.2dc48dda.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2624), with no line terminators
Hash ff4c29feda7e805fa2b689efdf355178
ad1d6d3e48fb9a19ce34d18fd6c22b19b9ea5756
12e747466a5ee2ebcc49ebf0696d383095bfe881bfc339283c24a3cdb039f509
GET /js/s-storageService.js.2dc48dda.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-a0c"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0vZhtnuuorI2kLs7XTemgIneGkUbrSHuUykQz3dn7q%2FMPfwiZeh%2Bbmp7iBmtP5Uc2jgtnAVhvkk3eJfBqBNvX6VHWN1%2F%2F9KUl8b%2BVO7Gg4mGQSV%2FjODZzf21BaqaiCPHaltD7vo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f48651c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/pfe/current/micro.tag.min.js?z=4842423&sw=/sw/sw4842423.js&var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
200 OK 42 kB URL GET HTTP/3 erailsiwsurvey.top/pfe/current/micro.tag.min.js?z=4842423&sw=/sw/sw4842423.js&var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type C source, ASCII text, with very long lines (42367), with no line terminators
Hash e2c1209fa034e82830b27b2c7e00a7dc
0a3057e56de2d45bee9443afba1823ce0629f199
ea6ad99d1789576a76dcb7c3d970a1fb9c81b4b0c493eafc64023b85686a2bcd
GET /pfe/current/micro.tag.min.js?z=4842423&sw=/sw/sw4842423.js&var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-a57f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k2KLp3y5zzQ1agwewRJn5oYP%2BjT87TjEVT6o8Hz3DaohuGVWo4ZA9jm%2BNlygdQh3Lk%2BK3erbImvpFl93bnN%2B5YORO46Mg%2FEzKenFhtgZn%2FUlqRmUmfcmy%2BgGMbb89zHlGHK%2Bcs8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af10d9e21c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/v-immer.esm.mjs.28802142.js
200 OK 10 kB URL GET HTTP/3 erailsiwsurvey.top/js/v-immer.esm.mjs.28802142.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (10496), with no line terminators
Hash 18f8b1a5408bb552103bab2a9e5cba70
72ba4dd83f4e85a45017492cd8ceedceabcc7587
1fce72cc05122f77f6dfd7ddb9fd43853cc9ee2d3cda9478afafcd48388e122d
GET /js/v-immer.esm.mjs.28802142.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-2900"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MCCVUpe7AyIJnErNzwHQNjaauwU2gZhkr%2BYVjf0c0a3slezKzceTk9fXUA4Bf6k54tHpwJjJGJWPeMY9Ib7OyNOUzZccoLg1OGxiL5V5xQLdyblO0anpPAhlH23aoLFJShYuApI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f486e1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/_global-config-sd.2d740028.js
200 OK 1.4 kB URL GET HTTP/3 erailsiwsurvey.top/js/_global-config-sd.2d740028.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (1432), with no line terminators
Hash 2534e90a7319b79c19d3a8339cd9fff8
c49339e6efca9603e9f8fc298369e00772237187
2220421642628bd706e44ff9cf8af6607787ea3cb839ea742af4fe11ee84d394
GET /js/_global-config-sd.2d740028.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-582"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3CYC8aO6pG8hCh8eafhQVPEbfpAG5lx9Gi%2FkGJQ5A8ioURLQKUWIO0V0UB%2Fv9%2FlDmWzIiJijwvoU5fwAoAW3qIWZlFKwnPiiMLqquGJ8Wez%2BtH4uXsAbHC3PfJyxGjyssbv%2Bk4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f48611c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/css/_core-survey.26c0898c.css
200 OK 3.2 kB URL GET HTTP/3 erailsiwsurvey.top/css/_core-survey.26c0898c.css
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (3187), with no line terminators
Hash 2e6143d07cb0a0273cd0fded0cd7b430
4853285adf3a468cc8a42b1c6f17d8353cfef896
f2690b871425a66071365ba5be475a5089e8074dbdab7df95a71bbee62e2f5fb
GET /css/_core-survey.26c0898c.css HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3194
etag: W/"6478a1f0-c7a"
last-modified: Thu, 01 Jun 2023 13:49:36 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kgPqHBo52up4PdnT3VEZIX5UfIZl%2F7vyNt5f19kYhCVMaK0AjIBJmgwBfivutDA5uzqYpVcUJnz%2FCsiROpXWHFPBaAoH9VQyLxmPvjH%2BOcQ1CMDJgjfNgBaaXkGCqNRJlnsrpTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f587f1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/img/comments/person-8.jpg
200 OK 5.7 kB URL GET HTTP/3 erailsiwsurvey.top/img/comments/person-8.jpg
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 6b10e71656e51e27520e854712b44f1c
f78b92dded977e9f275aba726453138155420bcf
64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc
GET /img/comments/person-8.jpg HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/jpeg
content-length: 5748
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1674"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aPnPaW189td%2BlcdK%2FCcAJtV3JIuqZxat%2BBCVGFKCVLduwkUiDR0UjVB9Zxl6YVmLsPz75QSttoFtwQhh4DzzRaRECI0ZWizpTasjyx4pgBae9R7iRFHJdgVY29bKpLrNnD18wFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af125b341c0e-OSL
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/v-index.js.a18034f4.js
200 OK 40 kB URL GET HTTP/3 erailsiwsurvey.top/js/v-index.js.a18034f4.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (40296), with no line terminators
Hash 3698267f8797b04e520279c94f8e0805
6d3badcf82c2faa17f61efdc44beff2267fa84e4
fe3a9cbf06b7238b24211ed6af8cf947aa8fcfbd0d6a81601993639a48431f20
GET /js/v-index.js.a18034f4.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-9d68"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8aJFe95I4utKfCWu8gvzzi7hGY60pO%2F%2Bjq2s9FfhWZxgmsH%2FswqY9Qp6Ao0sJXC9uIKl07ZDTrtSeqNbi3gIT9DLBcEG4Xgx7oKzvEkgYDGCyyOiOM8NdEj5r62JJDzav7iZ5%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f48661c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/sw/sw4842423.js?var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&ab2_ttl=5184000000
200 OK 1.3 kB URL GET HTTP/3 erailsiwsurvey.top/sw/sw4842423.js?var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&ab2_ttl=5184000000
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (1381), with no line terminators
Hash c21b76d8c5cc98d28e2ded4d7182cfb3
615a50d523a68a9b87e50715c88671e6b70e2868
ce15252772a764d35cbda3d5faeeb3c3e190ed7c4a1c56f75b0997666ad44322
GET /sw/sw4842423.js?var=3956710&var_3=689222623521153214&var_4=null&ymid=5935571&ab2_ttl=5184000000 HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1; finance_ID=f89cf794d43f5d13f09f9c715ee68ed6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-529"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E7zqSN6yATNsWTgR4G7h7LxyCpswSGpyRx0JiPmiC%2FJ%2BXfWkR%2BeMP%2BzlewOMxaKo5gyxVHFVdoILsbkHunoSvbSNch0FmKSsjtxjEkhUEWVwmxxA3PrKvrMbmKmIBhDyFMLehI8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af14de041c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/config/comments/en.json
200 OK 4.5 kB URL GET HTTP/3 erailsiwsurvey.top/js/config/comments/en.json
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type Unicode text, UTF-8 text, with very long lines (5176), with no line terminators
Hash 0f8a677240ca082b8875f3c8d3bf5c42
19641ee3e340098b44d1d248e7c1a99dd0daafdf
2f5cff997105c8b995ec55f36e2656e14e1676f23244471f6115bc1d04c821c1
GET /js/config/comments/en.json HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/json
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-11ad"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RwvdSqBms3NyIMksZ2wPF8LlsP9RugNEabwTOneeGQZltUcfcSiT21OLKX%2BFeRhMzBcGQjRo0f2OkUyLVRR3k6rOc7%2FIiBK%2BcpbKxdsV2I%2BEYCb33reGRl%2BNfZJys3kkkMx7Gc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af10e9f41c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/_each-land-config.c1df2b79.js
200 OK 72 kB URL GET HTTP/3 erailsiwsurvey.top/js/_each-land-config.c1df2b79.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b75c51d58a8ab1832c0c5167c09e04a
3e201ff870f80d120522c2f58a9f4eec0c4eecb2
7790285885c82a7264b458e8c364358aacff59c0e7aff4e60776a5704cea3a36
GET /js/_each-land-config.c1df2b79.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-11824"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8g7ktB4lVHG2oWW88zg%2BwUUsyalAFnqJ%2F70qXNUEUneG0ByupUiBMQa8AVBKqyPHPqDvNDrulB2NX4HStLVHdlnL3EC5FEcdAsuL%2FXw8qot%2B%2B30nDT5uMk3qZMSkiM0XoijyCJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f58711c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/config/data/sd-1779001.js?v=10
200 OK 7.1 kB URL GET HTTP/3 erailsiwsurvey.top/js/config/data/sd-1779001.js?v=10
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (7382), with no line terminators
Hash 2b4cc82e0d376411d693843a0e6f488c
56549c7e7e3651c6b62f88eaa7be587288304731
b692b6f461406174b198203365d5609055c849c8b6e6356cb68d184caf71dd97
GET /js/config/data/sd-1779001.js?v=10 HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-1bce"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 4765
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2BMoWrVitmKfTN%2FDEXelTZPacrKyr5wdTeKUV0cChLMNPGJqT7MGsR%2F8KyTvfZU%2BpE%2Bzla%2BjApDqfy5CHz%2BQZ4OFtGokR2UEr%2FYqxDy4iwtrqyaVqM5EYj5Ys%2ByLtabekrd8i6Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af1059761c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/favicon.ico
200 OK 1.2 kB URL GET HTTP/3 erailsiwsurvey.top/favicon.ico
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 668ba1a9fa1890ba16cb8adc28d3dad8
5e35223b2541265114eaf61b9da2556c812fea17
7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2
GET /favicon.ico HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0; loaded-page=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: image/x-icon
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1452
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z98Ij1KZ%2BLIkmq8B5C3ZmAAe%2FOh3IPkePcszEHmiiuwmNKwE5JRhJHzyLnqzLGgXObzrB8LTrQxC0LEpCd4ZW%2F9xWWMPB5zIxpK2GY3fuI4yfLigLnqzmLU04VZGiFG7vSZmJC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af136bfd1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
erailsiwsurvey.top/js/v-index.mjs.7a6f6513.js
200 OK 35 kB URL GET HTTP/3 erailsiwsurvey.top/js/v-index.mjs.7a6f6513.js
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecterailsiwsurvey.top
Fingerprint96:36:B7:B4:69:65:04:6B:5C:B3:4F:DD:F0:5F:BA:2D:80:2D:91:FD
ValidityFri, 19 May 2023 17:30:27 GMT - Thu, 17 Aug 2023 17:30:26 GMT
File type ASCII text, with very long lines (35051), with no line terminators
Hash 9f7ddd785647e7de7ff506bbe6ec7ca7
b04873210640ef785259fb4405f01c5e6f96d5a2
10338634d2cfa9fec434ea07a265687bf552d382e11b107d7afe649c05ac5627
GET /js/v-index.mjs.7a6f6513.js HTTP/1.1
Host: erailsiwsurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:57:14 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-88eb"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fOa2PmIfMcGaFR5snyqwprt0DD5eOonxqCf5kDOy2qd7nwFPmChRwLUsfVoyoxpVoLuU3ZFztdJ1%2B1B3brjbqrkPuyvHmLV1QnOYifv1fVESTPU7s0CA1PTynKP3XCFnsOahxm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20af0f58721c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
offpichuan.com/rotate?zz=4292518;4326652;5128285;4949467;5381235;5381316;5381339;5381332;5381307;5381330&var=3956710&ymid=5935571
200 OK 4.6 kB URL GET HTTP/2 offpichuan.com/rotate?zz=4292518;4326652;5128285;4949467;5381235;5381316;5381339;5381332;5381307;5381330&var=3956710&ymid=5935571
IP
Requested by https://erailsiwsurvey.top/survey.html?offer_id=1916&geo=NO&oaid=763d630e51bb46dab5bddb2bbe55fd7c&s=689222623521153214&z=3956710&var=5935571&testinapp=&autoexit_86400=3953544&utm_campaign=5935571&utm_medium=3956710&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectoffpichuan.com
FingerprintDF:FD:C9:DF:54:1F:F8:D0:EB:70:9D:22:14:AB:31:A4:CA:18:1D:AE
ValidityThu, 30 Mar 2023 21:17:15 GMT - Wed, 28 Jun 2023 21:17:14 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4701), with no line terminators
Hash 69979c4ef989358b536dac51d9cc94ec
f1a20492eefc455a4bf2ae04ae6b0f2905a2c6a1
9feca1b54683300d46e23009d4b61a45050a8146b79eaa6e22be9a58ea4ecdf7
GET /rotate?zz=4292518;4326652;5128285;4949467;5381235;5381316;5381339;5381332;5381307;5381330&var=3956710&ymid=5935571 HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://erailsiwsurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:57:15 GMT
content-type: application/javascript
x-trace-id: 79280f418f93c819935cab037a76d19a
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://erailsiwsurvey.top
access-control-expose-headers: Link
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
set-cookie: OAID=5ea4e7a3a1fd4e05b29a295c2d56f3a0; expires=Mon, 03 Jun 2024 13:57:15 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
3.70.16.242
139.45.196.64
104.21.55.218
37.48.68.71
216.58.211.4
188.114.96.1
0.0.0.0