Report - astemolgachan.com/4/5305849/

Report Overview

Submitted URL
astemolgachan.com/4/5305849/
IP
139.45.197.238
ASN
#9002 RETN Limited
Submitted
2023-06-08 14:42:14
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
astemolgachan.com	unknown	2023-03-21	2023-03-21	2023-06-05	472 B	228 B	139.45.197.238
my.rtmark.net	9054	2014-10-29	2015-02-04	2023-06-08	879 B	1.4 kB	139.45.195.8
moneysurvey69.top	unknown	2023-06-05	2023-06-05	2023-06-07	18 kB	626 kB	172.64.110.2
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-06-08	449 B	167 kB	142.250.74.35
www.google.com	7	1997-09-15	2015-05-10	2023-06-06	396 B	1.4 kB	216.58.211.4
offpichuan.com	unknown	2023-03-30	2023-03-31	2023-06-08	541 B	5.1 kB	139.45.197.237
dortmark.net	unknown	2023-04-06	2023-04-11	2023-06-08	1.4 kB	2.2 kB	139.45.197.248
laugoust.com	unknown	2022-07-22	2022-07-22	2023-06-08	490 B	376 B	139.45.197.250
datatechonert.com	46154	2021-12-24	2021-12-24	2023-06-08	501 B	485 B	139.45.195.253
cdntechone.com	64371	2021-12-24	2021-12-24	2023-06-08	368 B	19 kB	172.64.203.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-08 14:41:54	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	moneysurvey69.top/js/v-index.js.6de8f9e6.js	40 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/v-index.js.6de8f9e6.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen14 Hash 23a3499d7657462c932b8746991b36e8 f2257a0fc2a2c9e991e7f6c02dd7ff00a659c27e 919699b1407cc993876baca0db7fc97f363759e8a82fba945118108a8b655121 Loading...

	moneysurvey69.top/js/v-immer.esm.mjs.103c9eb5.js	10 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/v-immer.esm.mjs.103c9eb5.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen14 Hash d71516feb1506b1a9ffc37af6a1ee566 7e5f63b66fba0ef2b495981c43440b2e7c137e35 ba5a6e087862737fa777db74d69ec3012ee2e5f1c0fa1f12f1552e01d5ae0c19 Loading...

	moneysurvey69.top/js/config/data/sd-2025.js	9.2 kB	2023-05-25	2023-08-03
Pretty URL moneysurvey69.top/js/config/data/sd-2025.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-05-25 14:36:02 Last Seen2023-08-03 09:53:24 Times Seen418 Hash 75a1a7295785d43701c2ae0e8829668d b1928ddd2bb46cccfb73bdc9b959c24b2cfbff95 becbc9d00e418641d9766ed3bdf34bc0b1334c68d93cc5aeea43066c814a3782 Loading...

	moneysurvey69.top/js/_rtc.ac975031.js	11 kB	2023-05-31	2023-06-20
Pretty URL moneysurvey69.top/js/_rtc.ac975031.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-31 10:08:00 Last Seen2023-06-20 23:37:46 Times Seen451 Hash 947357b088fadcacce60a443b015f9be a1f1339ff23a581cc7ef37cf502cf71453aa3d2d 24ed11341d8fa8d4679665e6268020dd115667d8c27ccbe6eb54c015b6dadcd2 Loading...

	moneysurvey69.top/js/_core-survey.08044898.js	218 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/_core-survey.08044898.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen13 Hash f77e13e836398c8f48e319211e776797 4a5a69e9d36bf28a29d96f130a701c17acec584e 35573f1a00bfa2754d5390452bd575110f1ca1d199639bd554866dfee8e418e3 Loading...

	moneysurvey69.top/pfe/current/micro.tag.min.js?z=4842621&sw=/sw/sw4842621.js&var=5305849&var_3=690683571396157542&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000	42 kB	2023-06-08	2023-08-03
Pretty URL moneysurvey69.top/pfe/current/micro.tag.min.js?z=4842621&sw=/sw/sw4842621.js&var=5305849&var_3=690683571396157542&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:15:31 Last Seen2023-08-03 09:53:24 Times Seen1053 Hash 0a571ce05d264fa6a67b99e16a46d56b 5094aa8b8bf71a29927e7d173a14748e01bb55d4 66364ecfd3b1b58660bef0c31b4aa05592f9318dfe0943ffd7f404e0e381f72b Loading...

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2	1.4 kB	2023-06-07	2023-06-15
Pretty URL moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-07 16:32:48 Last Seen2023-06-15 14:13:17 Times Seen144 Hash 9e36a2cbcbd28b82ae7306e2f33fd419 f5b19fd6e33c8e4353b503536764bfbefa27f808 31fe2dd1f41526b0656f853c1dfc7726c7ac690d2b26936017dd2fb775d23262 Loading...

	moneysurvey69.top/js/_each-land-config.35def22a.js	71 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/_each-land-config.35def22a.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen15 Hash efa6b3b05fe10c28d2e98b3d47897aaa 9607bb42f172a65763c8ef022b91749ecf987ea5 68d2de4b14275778285386d60d974b40038aaef6916372adfba2be0413405af1 Loading...

	moneysurvey69.top/js/survey.09d91d5b.js	5.7 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/survey.09d91d5b.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen11 Hash 859290a104e5482bced3c8cd44710c35 fbca844610910b7f71d818a97f1e497e91befca0 98ed00286b787c419f805451041c7ce66d76b5403f262057740f3ba675f856ef Loading...

	moneysurvey69.top/js/config/data/sd-1203000.js?v=10	2.7 kB	2023-06-05	2024-01-28
Pretty URL moneysurvey69.top/js/config/data/sd-1203000.js?v=10 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 18:10:57 Last Seen2024-01-28 06:37:35 Times Seen450 Hash 647911bb191574a6995c9777cdbf7e33 bd1c335751dd8830ef4649f9cb1467b19aea8255 b32f8444c88b13beb2c2e8db934f986452ee8098f7b8ae3941ff538fcc599429 Loading...

	www.google.com/recaptcha/api.js?render=explicit&hl=en	852 B	2023-06-03	2023-06-09
Pretty URL www.google.com/recaptcha/api.js?render=explicit&hl=en IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-03 07:17:39 Last Seen2023-06-09 05:27:20 Times Seen291 Hash 2f8167a83a96c015814efbdcafa4ba64 10d0d3111342f2741856701a4403e31ee8f6d155 fb7de641340e1ef87fc299914f3a18ddbd745d01e1194103c3c948bd748cd858 Loading...

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2	805 B	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen7 Hash a7ff89d105f347e877046efacff9d59a 80ccec56e9b2d6545b7f7c2e1436c159796369c1 242acb0a2330532d161387f09440d29cbf1d8f1874246d508d5a9e16f893c73d Loading...

	cdntechone.com/stattag.js	18 kB	2023-05-22	2023-09-07
Pretty URL cdntechone.com/stattag.js IP 172.64.203.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 16:28:01 Last Seen2023-09-07 08:45:40 Times Seen4488 Hash 0fdff67feab23cc69ecfb6800fc54cb7 eb84c650e6d27e290795207b1f37dd7b67f2aa06 456e420aecd5ac679cc2bcb33daf7c063f54894fd076e99e05c06629234d3378 Loading...

	moneysurvey69.top/js/s-storageService.js.2dc48dda.js	2.6 kB	2023-04-19	2023-06-20
Pretty URL moneysurvey69.top/js/s-storageService.js.2dc48dda.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-19 14:33:19 Last Seen2023-06-20 08:31:53 Times Seen579 Hash 2e9de7b6778ce3f6199aebfb661f9523 891c3fed1af8c7713e55934831bacd3a3b595e3f 1fa9bb8f2331f7b0dadd0d87aa97c1077cb70f5b2149816f931a5dddc65a8ab8 Loading...

	moneysurvey69.top/js/v-index.mjs.10719bc7.js	35 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/v-index.mjs.10719bc7.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen17 Hash d6186078aa0400dab08a81b07388e9e5 839191d3f09813bd857d6ef612095096b866ee9e 101f2f373508a15e0f78645e01c6efb3496c9567ef11bbf61cb21b6bf2614d86 Loading...

	moneysurvey69.top/js/_global-config-sd.002b34e9.js	1.4 kB	2023-06-08	2023-06-20
Pretty URL moneysurvey69.top/js/_global-config-sd.002b34e9.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-20 23:37:46 Times Seen322 Hash 05f0ff09ec7907a7124658cf1960dd45 46384e6ea7435f1f3c3e3971c3fe2d434e1fca28 c929612b21d069416384d2f8eb1246d30620bdb97816d934d5459a7b500dde56 Loading...

	moneysurvey69.top/js/v-redux-toolkit.esm.js.53958c41.js	11 kB	2023-06-08	2023-06-08
Pretty URL moneysurvey69.top/js/v-redux-toolkit.esm.js.53958c41.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-08 18:35:34 Times Seen14 Hash 0d9b810be4ecdc0f21f2101ba3c2df79 da292776b949f0a37dfeb8015962e9c96b5d56f4 56ef9601c8ef349cfd28cb06291c8eb48178acc6651550e7fc693689c543978a Loading...

	moneysurvey69.top/js/v-react-dom.production.min.js.36d6f8aa.js	129 kB	2023-06-08	2023-06-20
Pretty URL moneysurvey69.top/js/v-react-dom.production.min.js.36d6f8aa.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-08 15:05:56 Last Seen2023-06-20 23:37:46 Times Seen422 Hash 12a14e476144ad086e6c92f93a608771 bd935ddfd265040111dcec95a1df78c25a1b1440 3b3f96d223e89d327bda4caad2e3f83389b111fcfaaad537a6210e25222af74d Loading...

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2	41 B	2023-03-07	2024-04-27
Pretty URL moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:03 Last Seen2024-04-27 04:17:32 Times Seen7155 Hash 2ec370ca0eaf3069dce13df24243d863 64c1919bbb18a6d851d1b7772f830320b8ab5cc1 6a31a3a39783d09cc53dd9e9baeb4a4fa49be602eef90f6bbb9f78af02688064 Loading...

	moneysurvey69.top/js/_is-browser-supported.d5013709.js	1.0 kB	2023-06-06	2023-06-19
Pretty URL moneysurvey69.top/js/_is-browser-supported.d5013709.js IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 14:49:15 Last Seen2023-06-19 14:11:54 Times Seen510 Hash 15cb65abda0a7cc8f3df185931ad959c 895edee22ca4674863979bb0a76a024c29e68776 a8edede8f1e893e0fb76880f5e48b4233b17d49c14320050a592f1ac885bcd0b Loading...

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2	250 B	2023-04-11	2024-04-27
Pretty URL moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 IP 172.64.110.2 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-11 14:49:40 Last Seen2024-04-27 01:19:54 Times Seen11182 Hash 9d9b48d49f88bc3e71b52a408295effa ca122790003cf5d50f71165ed81d120d8a91199e e7427cfeefd59822deeb50274e744da9ce4173ab34ba825aff2d79f1dbc7be76 Loading...

	www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js	417 kB	2023-06-01	2023-06-15
Pretty URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-01 21:02:24 Last Seen2023-06-15 18:56:33 Times Seen6805 Hash ee07ba65373413be83ec0d45887c2a44 13646acedb5d781fed2599c46634b4e58b8217db d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (52)

	URL	IP	Response	Size
	astemolgachan.com/favicon.ico	139.45.197.238		0 B
URL astemolgachan.com/favicon.ico IP 139.45.197.238:0 ASN #9002 RETN Limited File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: astemolgachan.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: OAID=8028b2be874a42de87ba95dc80af0ec8; oaidts=1686235314 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 204 No Content server: nginx date: Thu, 08 Jun 2023 14:41:54 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT pragma: public cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate X-Firefox-Spdy: h2`

	my.rtmark.net/img.gif?f=merge&userId=8028b2be874a42de87ba95dc80af0ec8	139.45.195.8		43 B
URL my.rtmark.net/img.gif?f=merge&userId=8028b2be874a42de87ba95dc80af0ec8 IP 139.45.195.8:0 ASN #9002 RETN Limited File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers `POST /img.gif?f=merge&userId=8028b2be874a42de87ba95dc80af0ec8 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:54 GMT content-type: image/gif content-length: 43 access-control-allow-origin: null access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=8028b2be874a42de87ba95dc80af0ec8; expires=Fri, 07 Jun 2024 14:41:54 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	moneysurvey69.top/js/v-index.mjs.10719bc7.js	172.64.110.2	200 OK	8.0 kB
URL GET HTTP/3 moneysurvey69.top/js/v-index.mjs.10719bc7.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (35051), with no line terminators Size 8.0 kB (7988 bytes) Hash d6186078aa0400dab08a81b07388e9e5 839191d3f09813bd857d6ef612095096b866ee9e 101f2f373508a15e0f78645e01c6efb3496c9567ef11bbf61cb21b6bf2614d86 HTTP Headers `GET /js/v-index.mjs.10719bc7.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-88eb" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yo8%2FsneE3em47AhnqGG3mwVJ49r9CogfwQDA4xU6gavsx31hhSOP4EdUIL4FGYXBZXA0%2FIlL%2FeWCdMZQiVVdy4rt4Eg4dEQzzhfdPApvkF3LdJsKr2iWz6FqhANhvwAMBx%2Bvaw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff2a9d068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/css/_core-survey.26c0898c.css	172.64.110.2	200 OK	5.8 kB
URL GET HTTP/3 moneysurvey69.top/css/_core-survey.26c0898c.css IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (3187), with no line terminators Size 5.8 kB (5754 bytes) Hash 2e6143d07cb0a0273cd0fded0cd7b430 4853285adf3a468cc8a42b1c6f17d8353cfef896 f2690b871425a66071365ba5be475a5089e8074dbdab7df95a71bbee62e2f5fb HTTP Headers `GET /css/_core-survey.26c0898c.css HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: text/css cf-bgj: minify cf-polished: origSize=3194 etag: W/"6481bd8a-c7a" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAsvtt2K2lWOtPuebZGD0HkshdaJW0C2zyrVHDCCIfqhF9Kekaz017i%2BBYPiaeWkFuHPmxJLDxDIZF9nHmrmyZrXJEKfkOZt5hyCe32Z%2FVr5PfJjcYkplV41n%2FKg6dfbJjMQ9g%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff2aa9068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/config/data/sd-2025.js	172.64.110.2	200 OK	1.8 kB
URL GET HTTP/3 moneysurvey69.top/js/config/data/sd-2025.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (9233), with no line terminators Size 1.8 kB (1766 bytes) Hash 75a1a7295785d43701c2ae0e8829668d b1928ddd2bb46cccfb73bdc9b959c24b2cfbff95 becbc9d00e418641d9766ed3bdf34bc0b1334c68d93cc5aeea43066c814a3782 HTTP Headers `GET /js/config/data/sd-2025.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-2411" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: REVALIDATED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7XTSz9BKlt9P35GueWCzC1DA46w%2FTwGAPf%2F%2FFuia4uoSQaPpIRW13NG7Jjl6NkvQrDy%2Fw%2Ba0taInmgXSuBYNd09pUch95pNbEFZ14b5s2X5J%2FMB1ss7Dt%2FUVkoK340H1XEhD%2BA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e603193d068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	dortmark.net/sync-do	139.45.197.248	200 OK	0 B
URL OPTIONS HTTP/2 dortmark.net/sync-do IP 139.45.197.248:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectdortmark.net Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52 ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /sync-do HTTP/1.1 Host: dortmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:55 GMT content-length: 0 access-control-allow-origin: https://moneysurvey69.top access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3={var_3}&testinapp=4816639	172.64.110.2		28 kB
URL moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3={var_3}&testinapp=4816639 IP 172.64.110.2:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5197), with no line terminators Size 28 kB (28251 bytes) Hash 78ad82d1f8fa241907a6a0f24a52ccaf d08cada1b2614bfdf56e37264b2f7e5a826ca53d 7f9ed80a8206fbda23538bdcdc61ea8085ca1cad4d2f31ff427b4b0ed1a9ec5c HTTP Headers GET /finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3={var_3}&testinapp=4816639 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 08 Jun 2023 14:41:54 GMT content-type: text/html last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding strict-transport-security: max-age=1 x-content-type-options: nosniff cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3xnNacEeXez1X%2FOJmBq%2BDWTcoQbAWr%2BdbIiXB03x1TbBrakkUoN3S8VSKXMerZAbYcbjYAlqdsoAAw%2Bo5QULyLU1kmhp%2FMvxAbnpOiMmjFh%2BmDXUUtnrauZaqPueKCDqUokT4Q%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5fdc84e72fd-LHR content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	moneysurvey69.top/js/v-immer.esm.mjs.103c9eb5.js	172.64.110.2	200 OK	6.8 kB
URL GET HTTP/3 moneysurvey69.top/js/v-immer.esm.mjs.103c9eb5.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (10496), with no line terminators Size 6.8 kB (6752 bytes) Hash d71516feb1506b1a9ffc37af6a1ee566 7e5f63b66fba0ef2b495981c43440b2e7c137e35 ba5a6e087862737fa777db74d69ec3012ee2e5f1c0fa1f12f1552e01d5ae0c19 HTTP Headers `GET /js/v-immer.esm.mjs.103c9eb5.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-2900" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B3%2BvvoRp3RX50v1AZWyHjGiOsE7KTbNirav8AymaSvebA0ufAugUKH55nkjWncGveSw32W727EKaANZnxLBwSyKDo8tjRrr0GWQZnMPfNzDXshJ8AKeagRKY77cPwt7evCo4Tg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff1a99068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/s-storageService.js.2dc48dda.js	172.64.110.2	200 OK	14 kB
URL GET HTTP/3 moneysurvey69.top/js/s-storageService.js.2dc48dda.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (2572), with no line terminators Size 14 kB (13503 bytes) Hash 2e9de7b6778ce3f6199aebfb661f9523 891c3fed1af8c7713e55934831bacd3a3b595e3f 1fa9bb8f2331f7b0dadd0d87aa97c1077cb70f5b2149816f931a5dddc65a8ab8 HTTP Headers `GET /js/s-storageService.js.2dc48dda.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-a0c" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wM%2FJ8mPHghhGJ6ItH9hhRY%2FjwcsU4niyqP1yEdGAmDzhJmgCf1U4yhwjrubjkPEhFEIXWXO44Smap55DtiRMuMG74SamcCua4M28LXXHt6hQDp10GDA3QMNxieM8PO3faOl1cQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff1a90068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-1.png	172.64.110.2	200 OK	6.6 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-1.png IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data Size 6.6 kB (6577 bytes) Hash 8f9a954bf05965bb41cf97a7ddb7a375 de9db936bbea75043e08a55d1f371678fca2270c a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d HTTP Headers `GET /img/comments/person-1.png HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/png content-length: 6577 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-19b1" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sRgKBfLhInIA%2Fo2BvpRUJtYO4efehB9c4qrdF97p4DiwV4X0hVXw5Xw8ki7EeG8Gv5ThIetnwnNzplbdgw5cGAg2fJt39JSZ6w8HtPnqnvdylSaYuCKyX7a8GTDIda%2BX54JmNA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e04068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-5.jpg	172.64.110.2	200 OK	4.3 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-5.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 4.3 kB (4333 bytes) Hash 21fd6ef6d69b527c02e92a8c23d28d52 5980b75edc23f7fa2f57fa257cb67c9efb86fa58 f37490dbef620959d7124e3de027c5b5c43a57dc90737163947a6725444051eb HTTP Headers `GET /img/comments/person-5.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 4333 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-10ed" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hj0Kioeto%2BySh17ULa0iXrQbCTIKJoJbL5kvesMXnDAaQ4BhSlkwza0XGe%2FtfQKfiJNmuRHAmBHtsMbyxmmuTpkEkdDQ%2FkQNNNX0CvTxEfBMU%2BWo9eMbaymV0l7htBq1lShHlw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e0f068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/config/dict/cookie-consent-1.json?v=10	172.64.110.2	200 OK	10 kB
URL GET HTTP/3 moneysurvey69.top/js/config/dict/cookie-consent-1.json?v=10 IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JSON data\012- HTML document, Unicode text, UTF-8 text Size 10 kB (10062 bytes) Hash 4f1c632e971c4261f927ed0cf67bfdee 18c72b10719ca98b61b1f1f84e4b01f0ed8b3763 2bfa8e9b4326caea44f0d0c0345a31f34f19d47ae2e60fbc7c557df9ceffdca6 HTTP Headers `GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/json last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-1a65" strict-transport-security: max-age=1 x-content-type-options: nosniff cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ljGpIttKdHFknc%2BrH%2BVYaVA6ynk5Xa%2Fyk7s%2FmwdAKpk4ejcUXKm%2B3dIgna57jxKnK56ATRoBiHYllFvs%2FeEFIcZBSr6zFFKbIGP9VOmKbhmA9YbxS0J0Sw6ulkEG%2FCphmruUfQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6031935068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-6.jpg	172.64.110.2	200 OK	4.4 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-6.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 4.4 kB (4392 bytes) Hash be9ff88491a5bc0745579a3813eb2cbe 870f88a7fae9fdd928af33f47c5ffdddc6a4082b 698d413ddf6b2ec37acf0e982237d239bd912cb097e243cb355855ac2b8548d3 HTTP Headers `GET /img/comments/person-6.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 4392 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1128" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8UAxe0C6lxRU0ypZZppIhB4IrsRGuuf8ertQN7SeCCyjqIVo2SS7Z9v%2FQtTORHAebL2dE9eIGXZqWHUW1kQ5Qljz4XkjlT5XVDo4g3KBXoREcunDCOB9G52TZ%2FztmiG7YasJSw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e11068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/_core-survey.08044898.js	172.64.110.2	200 OK	60 kB
URL GET HTTP/3 moneysurvey69.top/js/_core-survey.08044898.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 60 kB (60295 bytes) Hash f77e13e836398c8f48e319211e776797 4a5a69e9d36bf28a29d96f130a701c17acec584e 35573f1a00bfa2754d5390452bd575110f1ca1d199639bd554866dfee8e418e3 HTTP Headers `GET /js/_core-survey.08044898.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-351cb" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gm9I8T0f129ikKJ2ctWuK40WrBTDdi%2FEXOv%2FqiV9b58QCB2jq%2BFAHUTAgw%2Bs0GTzVAeMXKWkl1PBzLFG%2BubaRMijqzorMu0InJWO6X1asFMRlEq4bg59e0bBiazq5UiB0R9UAQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff2aa1068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	dortmark.net/sync-do	139.45.197.248	200 OK	179 B
URL OPTIONS HTTP/2 dortmark.net/sync-do IP 139.45.197.248:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectdortmark.net Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52 ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT File type JSON data\012- , ASCII text, with no line terminators Size 179 B (179 bytes) Hash 081142aa1c9267422ee7fd25ac457579 cf8a223610da412aab4cc9aec68f6f304258b3ce 58084d495376ed2e41f026c352cabb187129c58109f2b15caeb1a539deb2cd19 HTTP Headers `POST /sync-do HTTP/1.1 Host: dortmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 163 Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:56 GMT content-type: application/json; charset=utf-8 content-length: 179 x-trace-id: 8d73990de725130b98aaf2f71bd5e94c access-control-allow-origin: https://moneysurvey69.top access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	moneysurvey69.top/img/comments/person-3.png	172.64.110.2	200 OK	7.4 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-3.png IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data Size 7.4 kB (7368 bytes) Hash 2f62e53b6333bc904be22a37a1fd0ace 6e972fefcbe0193d9b28817c47c1ceab2a0235d1 9128194f1b1bf44435a3e80f994157b94a40a3365cd8f0794dcadb41a24c3b41 HTTP Headers `GET /img/comments/person-3.png HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/png content-length: 7368 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1cc8" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FXGgBUkM0DaTnz7YUT4Qs76iHN6RluvaDZj9H3L2k9rqaAmWoez6%2BiNMQL7ELHT7xxJ40SEdWzLA3bsKK5HUEx3vQMm3JKGUBEFd5di7o5pNiYuhS%2BCR%2Fqz5iRWm6eYeA4MxMA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e19068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-9.jpg	172.64.110.2	200 OK	5.2 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-9.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 5.2 kB (5190 bytes) Hash 529370f9fd3b0f4da6c81ca91a931155 1a4c3e0e7af1ce30dc2ca18d48b5fc3f1b40aad3 cdf1b8dcdce4e9b76157ce90e086ebafb100063eaeb091e97087d97f5d0fb50b HTTP Headers `GET /img/comments/person-9.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 5190 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1446" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J7IIvMovRLsUt4uG4bm8a7rGOvGro9CyK6hDYnKBQv4aRHfJlvwamjofVJTii0qZtbCeJ3EPlMcQeWAbgbptY4vVGry9hYqlA61Aji9wWcnNXjYrFaDGU4vbEKKbzVaTZrRrew%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e1c068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-8.jpg	172.64.110.2	200 OK	5.7 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-8.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data Size 5.7 kB (5748 bytes) Hash 6b10e71656e51e27520e854712b44f1c f78b92dded977e9f275aba726453138155420bcf 64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc HTTP Headers `GET /img/comments/person-8.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 5748 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1674" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HoB1V0PURyRmDoORfF58iOHLNk2X97WahZgl4T970e8nEZDiLVtuY1jC%2BFFA%2B9%2FTy2dXXJgQcFysYsp00cFR06FPanCZ2V7WSOru63DroPhzmK6cxn7h8CypJxhWYgoFzQrfqw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e16068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-10.jpg	172.64.110.2	200 OK	6.2 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-10.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data Size 6.2 kB (6178 bytes) Hash 044ab37551bfe632f53b8f15d991f36e 77fdc6210608e5e36e1d36ac7fd867104cb20d9e 36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91 HTTP Headers `GET /img/comments/person-10.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 6178 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1822" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rd3MPNWOjVn1hty0%2FRdeYZhSyjq1Vj7RRiS8OoxM59hufIGlaNSLtUhJzZCbGB6mxlcC8IsS%2BWp48KTqPeBdlpv7LIbMsZLDrHG800L55DQzygJluTuOEOWNx%2BArLUipoZqy%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e25068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-13.jpg	172.64.110.2	200 OK	3.2 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-13.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 3.2 kB (3172 bytes) Hash a3364ed9e772ae6f696b814072001bf8 b8f34c657c31bf1e4d42b5d864b2519493d80e92 88f30b8552d0ab928d895390b337a0049405f3b1e8446631e606ba787e1205e1 HTTP Headers `GET /img/comments/person-13.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 3172 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-c64" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o%2FOycVAgm6CaQgYodXNhjyL6m2%2FQ0T12Z3HGW8g491htwemb3LHZVS2EBTnQuM6wX53r%2BGdy4aChtDiS9DxLJ8kN0aGUrlcEBcghhVZ1FIAc%2FnH8APDAh%2BzZNjlEcqHQSsXUfQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e2d068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-11.jpeg	172.64.110.2	200 OK	4.2 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-11.jpeg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 4.2 kB (4175 bytes) Hash 3924bdc784dc4947f52b779aa4d5a0aa 1e3f3fdd99490addd60014aa7327fe27c6bd5589 b3f882f57f9a213d85eb1c5c6a8a1451bd16dfcd9e4bd00e0a74584422dbd950 HTTP Headers `GET /img/comments/person-11.jpeg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 4175 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-104f" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fnpYYhEjznJrqv9Bcn4jRSNZS%2FbXDjLG3lb80rXUiN1OKiYNFAayzzAOFR0DDz0xYdcc%2BepOgjfrIxaCOo4TOdjVHj5beyW2jg8sSFEjQUzFJePC74iNFUxjBBa4T%2BXNzXoQtg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e2b068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-12.jpeg	172.64.110.2	200 OK	3.5 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-12.jpeg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 3.5 kB (3519 bytes) Hash c937339f4ba54ff7dc150b9865c29084 44206828ca23cbed303193bde1dfe47bdc532972 8e872daac17de58d352c9f4082e6e35af76a8b2138c142a8cf0fbacea195c73e HTTP Headers `GET /img/comments/person-12.jpeg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 3519 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-dbf" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cxcsTDtDa7jpgvnbp1eS97cOkfzxc56wvu6EmCNnS7esX3WeqyFKBHKBuVk9tGp8E6v8wGybkj8u1%2F0EBCgj12oYOuD3dOljQ%2BQpuE5vo%2FP5LQ37M0nWO4vQfcx3ZqunJ3E5zw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6053e2c068f-LHR alt-svc: h3=":443"; ma=86400

	dortmark.net/sync-metrics	139.45.197.248	200 OK	17 B
URL POST HTTP/2 dortmark.net/sync-metrics IP 139.45.197.248:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectdortmark.net Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52 ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT File type JSON data\012- , ASCII text, with no line terminators Size 17 B (17 bytes) Hash 5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4 HTTP Headers `POST /sync-metrics HTTP/1.1 Host: dortmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 141 Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:56 GMT content-type: application/json; charset=utf-8 content-length: 17 x-trace-id: 4435f3bd3763d80cd58bd855d874122f access-control-allow-origin: https://moneysurvey69.top access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace pragma: no-cache cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 expires: Tue, 11 Jan 1994 10:00:00 GMT strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	laugoust.com/zone?&pub=0&zone_id=4842621&is_mobile=false&domain=moneysurvey69.top&var=5305849&ymid=&var_3=690683571396157542&var_4=null&dsig=&action=prerequest	139.45.197.250	200 OK	0 B
URL POST HTTP/2 laugoust.com/zone?&pub=0&zone_id=4842621&is_mobile=false&domain=moneysurvey69.top&var=5305849&ymid=&var_3=690683571396157542&var_4=null&dsig=&action=prerequest IP 139.45.197.250:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectlaugoust.com Fingerprint37:B3:F9:59:02:2F:44:01:EE:A6:28:94:17:C2:0F:F2:8B:FD:80:6E ValidityWed, 07 Jun 2023 05:13:29 GMT - Tue, 05 Sep 2023 05:13:28 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /zone?&pub=0&zone_id=4842621&is_mobile=false&domain=moneysurvey69.top&var=5305849&ymid=&var_3=690683571396157542&var_4=null&dsig=&action=prerequest HTTP/1.1 Host: laugoust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` `HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:56 GMT content-length: 0 x-trace-id: 8a03b8493d28edad503809fc049b6cdb access-control-allow-origin: null access-control-allow-credentials: true access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept strict-transport-security: max-age=1 x-content-type-options: nosniff X-Firefox-Spdy: h2`

	www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js	142.250.74.35	200 OK	166 kB
URL GET HTTP/2 www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type ASCII text, with very long lines (749) Size 166 kB (166186 bytes) Hash ee07ba65373413be83ec0d45887c2a44 13646acedb5d781fed2599c46634b4e58b8217db d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048 HTTP Headers `GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 166186 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 06 Jun 2023 17:46:58 GMT expires: Wed, 05 Jun 2024 17:46:58 GMT cache-control: public, max-age=31536000 last-modified: Tue, 30 May 2023 00:01:16 GMT content-type: text/javascript vary: Accept-Encoding age: 161698 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a	139.45.195.253	200 OK	12 B
URL POST HTTP/1.1 datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a IP 139.45.195.253:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerSectigo Limited Subjectdatatechonert.com Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash adb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed HTTP Headers `POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a HTTP/1.1 Host: datatechonert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1558 Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.19.10 Date: Thu, 08 Jun 2023 14:41:56 GMT Content-Type: application/json; charset=utf-8 Content-Length: 12 Connection: keep-alive Access-Control-Allow-Origin: https://moneysurvey69.top Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match Access-Control-Allow-Credentials: true`

	moneysurvey69.top/js/survey.09d91d5b.js	172.64.110.2	200 OK	3.0 kB
URL GET HTTP/3 moneysurvey69.top/js/survey.09d91d5b.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (5733), with no line terminators Size 3.0 kB (3004 bytes) Hash 859290a104e5482bced3c8cd44710c35 fbca844610910b7f71d818a97f1e497e91befca0 98ed00286b787c419f805451041c7ce66d76b5403f262057740f3ba675f856ef HTTP Headers `GET /js/survey.09d91d5b.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-1665" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hwCUOa4%2B%2BcKvn7zzgFzHSEovICHteGBSdSEOjrSoZDLzDfwVsZtPRMppeougHneSHmeNdEJZdjvkWOlUWPr6r2ykLg7c%2BVNV0mk4x6YGhsebBDZQaq7a3RPBjcK5WOdmrYd0AA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e5ff2aa5068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/_rtc.ac975031.js	172.64.110.2	200 OK	11 kB
URL GET HTTP/3 moneysurvey69.top/js/_rtc.ac975031.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (11189), with no line terminators Size 11 kB (11189 bytes) Hash 947357b088fadcacce60a443b015f9be a1f1339ff23a581cc7ef37cf502cf71453aa3d2d 24ed11341d8fa8d4679665e6268020dd115667d8c27ccbe6eb54c015b6dadcd2 HTTP Headers `GET /js/_rtc.ac975031.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-2bb5" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3479 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3mMhT%2FxItPvlPss%2FQrB4Fw7Yxz8KEPguneuBK09NTjI90jNiNz9STVskoggnLYxC6x7zeDBL2DMxTkZL22AWbPAXWALEh2bcCioFOUfY0vu56dULa%2FuJaC4T5pyQlndlREL2%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef13068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/unnamed.jpg	0.0.0.0		0 B
URL GET moneysurvey69.top/img/comments/unnamed.jpg IP 0.0.0.0:0 ASN #0 Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /img/comments/unnamed.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache`

	cdntechone.com/stattag.js	172.64.203.8	200 OK	18 kB
URL GET HTTP/2 cdntechone.com/stattag.js IP 172.64.203.8:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29 ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT File type ASCII text, with very long lines (17871) Size 18 kB (18521 bytes) Hash 0fdff67feab23cc69ecfb6800fc54cb7 eb84c650e6d27e290795207b1f37dd7b67f2aa06 456e420aecd5ac679cc2bcb33daf7c063f54894fd076e99e05c06629234d3378 HTTP Headers `GET /stattag.js HTTP/1.1 Host: cdntechone.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript last-modified: Fri, 19 May 2023 08:43:53 GMT etag: W/"646736c9-4859" link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin cache-control: max-age=14400 cf-cache-status: HIT age: 4366 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lGX2WHdSfyiNEGecXlVdZ59ccfxElw3uLeg%2BJd4Advs%2B8TEH%2BCq6lftiQKhXdEiQEnGijM56mXWF2VpMbeSE32raZS%2B%2BXhemBjDf%2FMKNH%2Bl8XM90P25yFp66qObwnRHBFA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d41e6045eb44191-LHR content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	moneysurvey69.top/pfe/current/micro.tag.min.js?z=4842621&sw=/sw/sw4842621.js&var=5305849&var_3=690683571396157542&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000	172.64.110.2	200 OK	42 kB
URL GET HTTP/3 moneysurvey69.top/pfe/current/micro.tag.min.js?z=4842621&sw=/sw/sw4842621.js&var=5305849&var_3=690683571396157542&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type C source, ASCII text, with very long lines (42399), with no line terminators Size 42 kB (42399 bytes) Hash 0a571ce05d264fa6a67b99e16a46d56b 5094aa8b8bf71a29927e7d173a14748e01bb55d4 66364ecfd3b1b58660bef0c31b4aa05592f9318dfe0943ffd7f404e0e381f72b HTTP Headers GET /pfe/current/micro.tag.min.js?z=4842621&sw=/sw/sw4842621.js&var=5305849&var_3=690683571396157542&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-a59f" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iIV0ekjSNk9fXZncT61udoGyCkcoZElCZ8D2GezmZsq2IynOFqVFQ0vG%2BSbr2rPfNiwbRLh0ekh4tynfrabs3j%2B5lnN9r4NmPlSJJacZb8psP5aflsYBUugm1WM%2Baa2jwENrHA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e603ba75068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/config/comments/en.json	172.64.110.2	200 OK	4.5 kB
URL GET HTTP/3 moneysurvey69.top/js/config/comments/en.json IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type Unicode text, UTF-8 text, with very long lines (5176), with no line terminators Size 4.5 kB (4525 bytes) Hash 0f8a677240ca082b8875f3c8d3bf5c42 19641ee3e340098b44d1d248e7c1a99dd0daafdf 2f5cff997105c8b995ec55f36e2656e14e1676f23244471f6115bc1d04c821c1 HTTP Headers `GET /js/config/comments/en.json HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/json last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-11ad" strict-transport-security: max-age=1 x-content-type-options: nosniff cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ASNnRvMoo9OkfXvUzga2WuqFHwLo3xcuefJuLZ3%2BPH6lmBkWq%2FLBEAtprwuKNHp4cm4lafuUBCO1bhLgTh28iAl83%2BLWxsevcPwkP0hVxDAsu9gE0uMhoMGwlJXz4B5wTm2dCA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e603dab7068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/unnamed.jpg	172.64.110.2	200 OK	1.4 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/unnamed.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 1.4 kB (1378 bytes) Hash 449aaf5a54e3fe3aa4f0f5875bede090 b2b897362626700277b7f8baca8b1f292d08b7e5 4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59 HTTP Headers `GET /img/comments/unnamed.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 1378 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-562" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vPjDNuYV7oLr57LMZst5ReWq91rQ7A3pCsxKyjW%2F36Xk5apTLZ7tEp2zkMu9N6rlFObkUneyujR4yDQ8Kb7CXWdxm63FkvcRfUzL%2Bua3qmfcIaym0kjvizdHu7DHPQASgbGEVQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052dff068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-14.jpg	172.64.110.2	200 OK	5.4 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-14.jpg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 5.4 kB (5392 bytes) Hash 6012ff0d59aa6a34aaca1ea8f2fa88fc ef59662c9b666106486039e9f1deb40fb4a8ff77 2c020310e91430067c7128425f14ac0ff1710aea5e67c144a8fceac46311182d HTTP Headers `GET /img/comments/person-14.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 5392 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-1510" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TXIgEg38kWUEwBMckyNLwIDdMqkJc7UbWLZfFvMLNEOgVfJpD4BJIdhJqrqKgCoIf20A9VirLz0V5ZHhjhgIk091Q6Nl0Kkl2UQOwylYDznT9pufEcX0LjkIOkJkFd8G3D12lg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e07068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/sw/sw4842621.js?var=5305849&var_3=690683571396157542&var_4=null&ab2_ttl=5184000000	172.64.110.2	200 OK	1.3 kB
URL GET HTTP/3 moneysurvey69.top/sw/sw4842621.js?var=5305849&var_3=690683571396157542&var_4=null&ab2_ttl=5184000000 IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (1381), with no line terminators Size 1.3 kB (1321 bytes) Hash ec773c107181fc5f2c2947c2d961ee8f d4fbe5f5c46d8016377810b26e6b6a3272c06be5 78eb0a700abcdc71814d4374ae36d5cd284daa21b9cc4fcf561523146706b09d HTTP Headers `GET /sw/sw4842621.js?var=5305849&var_3=690683571396157542&var_4=null&ab2_ttl=5184000000 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Moz: prefetch DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: application/javascript last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-529" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6qzkWTzO4OzHpdrqN%2B6rrJcausZ6Xo2tL2vv0ywiKT0rUcKDUqp2ReNpekFwQDs4%2F%2FldWKW%2FQW0FrlW60pLnjQoj6ob4QQqj3vpq1AeIHyy2KVONYmaFtdVTSEx2JHZIwqpPUg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6077a90068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	my.rtmark.net/gid.js?userId=9a07fd1fc1ca2ca4b8b8d92ca17ec4a6	139.45.195.8	200 OK	65 B
URL GET HTTP/2 my.rtmark.net/gid.js?userId=9a07fd1fc1ca2ca4b8b8d92ca17ec4a6 IP 139.45.195.8:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectrtmark.net Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80 ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 65 B (65 bytes) Hash 8bfb85e9a6a0f3b802ee12e360f30395 4a1ab246f722ddb811308c5f117a2cd044fdf92c 98f4fe315dc923964d3bf3d82a0ea90913314438e3ceff9e56d65b7b81a5f366 HTTP Headers `GET /gid.js?userId=9a07fd1fc1ca2ca4b8b8d92ca17ec4a6 HTTP/1.1 Host: my.rtmark.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/json; charset=utf-8 content-length: 65 access-control-allow-origin: https://moneysurvey69.top access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token access-control-expose-headers: Authorization access-control-allow-credentials: true set-cookie: ID=abd8d098d0b84c8628323d162bb141e6; expires=Fri, 07 Jun 2024 14:41:55 GMT; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , X-Firefox-Spdy: h2

	www.google.com/recaptcha/api.js?render=explicit&hl=en	216.58.211.4	200 OK	852 B
URL GET HTTP/2 www.google.com/recaptcha/api.js?render=explicit&hl=en IP 216.58.211.4:443 ASN #15169 GOOGLE Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT File type ASCII text, with very long lines (852), with no line terminators Size 852 B (852 bytes) Hash 2f8167a83a96c015814efbdcafa4ba64 10d0d3111342f2741856701a4403e31ee8f6d155 fb7de641340e1ef87fc299914f3a18ddbd745d01e1194103c3c948bd748cd858 HTTP Headers `GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK expires: Thu, 08 Jun 2023 14:41:55 GMT date: Thu, 08 Jun 2023 14:41:55 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 556 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	moneysurvey69.top/img/comments/person-2.png	172.64.110.2	200 OK	6.4 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-2.png IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data Size 6.4 kB (6428 bytes) Hash 3e6eaea87b2891590972dd11373b09a3 f038c6e6306ca708defa2b601bf9477f0cf78a3d 15aadd2e7f4f83e79f35e760da382fb8b5045d2cf506f531bdc15b7b27f699a5 HTTP Headers `GET /img/comments/person-2.png HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/png content-length: 6428 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-191c" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uJBWmDGG8YtQuDO1Zs2SYfP8hsLS%2BD9lWfvNRGYEL4V8%2FpxeHP8F25J8jEzqkuW%2FVBTUAfQwdcMgdIfmNzo2PSVc%2F3v8VEUUrj7HcFbOioWujZD9gPrptm5PqBGbwF0J8XJJJw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e0c068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-4.jpeg	172.64.110.2	200 OK	2.7 kB
URL GET HTTP/3 moneysurvey69.top/img/comments/person-4.jpeg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data Size 2.7 kB (2709 bytes) Hash 6cf64555e2de0ff8b5391081b648b89a a32008bacf7f8cd3859eb86c6c8d36eeb15dbdf0 d4f513bf3a5691b900739cf79285d18ef09ef4b81eca648261b15a693d21818d HTTP Headers `GET /img/comments/person-4.jpeg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:56 GMT content-type: image/jpeg content-length: 2709 last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: "6481bd8a-a95" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3473 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QzYzhbFELV4ZtT13ZkK6gwkXQ5R9IPjY%2FVmOFO9sSnQFsmKGwM2OqmmnWpzMQ2kZtTm1LyGT3lOPJD1Q%2FY0yP9HDQx76%2BpGAHUztBCXstUku1I5ZbifpmOBb%2FswwrdIMdVMONQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6052e0e068f-LHR alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/comments/person-14.jpg	0.0.0.0		0 B
URL GET moneysurvey69.top/img/comments/person-14.jpg IP 0.0.0.0:0 ASN #0 Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /img/comments/person-14.jpg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache`

	moneysurvey69.top/js/_global-config-sd.002b34e9.js	172.64.110.2	200 OK	1.4 kB
URL GET HTTP/3 moneysurvey69.top/js/_global-config-sd.002b34e9.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (1450), with no line terminators Size 1.4 kB (1428 bytes) Hash 86ff3b66c53f099f3e0c062417f6aa18 18c8d7178caf8fae97722d1a985b1a2b3113a8b6 92852ebc30812881844a4a10716223cb0c19b7021d7c4d6af38692f4889b2724 HTTP Headers `GET /js/_global-config-sd.002b34e9.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-594" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3479 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iChQ0Ha1slGbcb%2BgCRuvNK3jWEcGrvfsXRq%2BpDObAP3%2FSsBCcGVzUPc02HDOR5zusNMaWSr%2FqVkqPMfgcIG4PEaaKxhga1smGUqUZ%2FTSHfihpcyag3CFHtYGHKGhDtm%2Baa%2BvqA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef11068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/css/survey.d131f88b.css	172.64.110.2	200 OK	67 kB
URL GET HTTP/3 moneysurvey69.top/css/survey.d131f88b.css IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 67 kB (67084 bytes) Hash 3d4dda6899aa1cc59db8c60183e3e4e6 835df21f73371534534fb0490f0a5e2e4b83dec0 5210b11a0cae9f500faf428ef7a0114bff65bb797241d8a8e7ad712111364723 HTTP Headers `GET /css/survey.d131f88b.css HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: text/css cf-bgj: minify cf-polished: origSize=67096 etag: W/"6481bd8a-10618" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9m%2Fqs%2BHtpeTDxDIpCjdAoqc190ymEOMnNQGvCimrFQdy3MRA4E2tdO4P3IhHzPoTPKAGFz5wUsA%2B5RCGsWCLTpzAShP%2F31U8wBxaEFqVRLM%2FSNMr6W4BXoJg%2FFM8nlx2zgiTQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6020f49068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/favicon.ico	172.64.110.2	200 OK	1.2 kB
URL GET HTTP/3 moneysurvey69.top/favicon.ico IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 668ba1a9fa1890ba16cb8adc28d3dad8 5e35223b2541265114eaf61b9da2556c812fea17 7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: ID=abd8d098d0b84c8628323d162bb141e6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: image/x-icon last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-47e" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3061 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s79bszyrC2GdBkePcXW0WpnxZ%2BRPfYG%2BLPNjDpDRk9ceb3Tqr%2Bdvp%2FUBNEah4uCFzeztmGQfXEOLYPDZ6%2BJPiv1MYMDN0457XODHaL2vjnKiDLRPqar19qMwLthUCYnv5Jmfwg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6039a25068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2	172.64.110.2	200 OK	5.2 kB
URL User Request GET HTTP/3 moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5423), with no line terminators Size 5.2 kB (5197 bytes) Hash 2bd9cf69ccf265952918f2bd38b0d144 5ea102edae91b746d1e4a02db2f04e5052b24b38 057b95738b43fc8d54c422421d555021a408afea996c164a271afa791ff76481 HTTP Headers GET /finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: text/html last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding strict-transport-security: max-age=1 x-content-type-options: nosniff cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qG1XXwXUiqlKmOQh2wi%2FRV22ngAUoQ%2B3omULnCJ7Z%2B1ZhLYJWajWf3mkbyRm8g4OkyydV7lDTU9y2sFCYm0C0f14RiSPY5Zv1sI%2BSy53eo6p3bEwXgt8YO2Bf%2F0wbisPofavSw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e6012e1b068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/_is-browser-supported.d5013709.js	172.64.110.2	200 OK	1.0 kB
URL GET HTTP/3 moneysurvey69.top/js/_is-browser-supported.d5013709.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (1102), with no line terminators Size 1.0 kB (1015 bytes) Hash 5eb35f09f0cb518908ce3d89cae032e6 bc4c0f92bbb3f014d5c1e1f1442facb4aa978204 e0278dc2a9171dc68dea59ab0e571efd5234974b783338cb82c3b4fe3076afda HTTP Headers `GET /js/_is-browser-supported.d5013709.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-3f7" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=crI6gguojAGSQV7%2FYwdooL8kHzl%2BeH3Uohc2npJI4QeuV4tgOJZZB22G6uzqabLNHZ0xtlYwj4kDd%2F6igcCxmvfN%2FODYvkefW4fhXOkSrwEN6xE7xgA8koaj0NCO8BGCfa8ecg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef0f068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/v-redux-toolkit.esm.js.53958c41.js	172.64.110.2	200 OK	11 kB
URL GET HTTP/3 moneysurvey69.top/js/v-redux-toolkit.esm.js.53958c41.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (11317), with no line terminators Size 11 kB (11317 bytes) Hash 0d9b810be4ecdc0f21f2101ba3c2df79 da292776b949f0a37dfeb8015962e9c96b5d56f4 56ef9601c8ef349cfd28cb06291c8eb48178acc6651550e7fc693689c543978a HTTP Headers `GET /js/v-redux-toolkit.esm.js.53958c41.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-2c35" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=evv8bg5soUI8Y9m%2Bu9WNaZ7JIB594HuawVOn1XvLT088L3sMk%2BKAIKuLwsUx0G7NfLsys%2Fj4pI5FeaHIy53K1bEJ879z1%2BcvRBFfGMjrPsa9XG6v64xR1t0zyZ23pT9EFMxStg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef20068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/_each-land-config.35def22a.js	172.64.110.2	200 OK	71 kB
URL GET HTTP/3 moneysurvey69.top/js/_each-land-config.35def22a.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 71 kB (71383 bytes) Hash efa6b3b05fe10c28d2e98b3d47897aaa 9607bb42f172a65763c8ef022b91749ecf987ea5 68d2de4b14275778285386d60d974b40038aaef6916372adfba2be0413405af1 HTTP Headers `GET /js/_each-land-config.35def22a.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-116d7" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o3BB7r9ocbyVWnpk4dreTRv3wQ9vJMXJf3nKptxH6j5f8K9cbn1W4q2jPYVjI6DqbUD0tg1iFxoOjcdPeCOCDAwoeSGLbPCuJkBGOsS58shpeaHa5dCoY2Bn%2Bf0KHGlEe1cZJg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef29068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	offpichuan.com/rotate?zz=4292526;4326652;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5305849&uid=abd8d098d0b84c8628323d162bb141e6&var_3={var_3}	139.45.197.237	200 OK	4.3 kB
URL GET HTTP/2 offpichuan.com/rotate?zz=4292526;4326652;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5305849&uid=abd8d098d0b84c8628323d162bb141e6&var_3={var_3} IP 139.45.197.237:443 ASN #9002 RETN Limited Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerLet's Encrypt Subjectoffpichuan.com FingerprintDF:FD:C9:DF:54:1F:F8:D0:EB:70:9D:22:14:AB:31:A4:CA:18:1D:AE ValidityThu, 30 Mar 2023 21:17:15 GMT - Wed, 28 Jun 2023 21:17:14 GMT File type troff or preprocessor input, ASCII text, with very long lines (4342), with no line terminators Size 4.3 kB (4290 bytes) Hash a021a6558fac8e46332d33bb3f53d69c 48657d366d1b29a706586d7db97209fecb88ca09 2efe6ab907dd713d8ac4ed9dfbf160531628abd3dfbc23cd560841c4a292dc33 HTTP Headers GET /rotate?zz=4292526;4326652;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5305849&uid=abd8d098d0b84c8628323d162bb141e6&var_3={var_3} HTTP/1.1 Host: offpichuan.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://moneysurvey69.top DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Thu, 08 Jun 2023 14:41:57 GMT content-type: application/javascript x-trace-id: 4ded69b063faa341a96798af913c0151 expires: Tue, 11 Jan 1994 10:00:00 GMT cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0 pragma: no-cache vary: Origin access-control-allow-origin: https://moneysurvey69.top access-control-expose-headers: Link access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace set-cookie: OAID=abd8d098d0b84c8628323d162bb141e6; expires=Fri, 07 Jun 2024 14:41:57 GMT; path=/; secure; SameSite=None strict-transport-security: max-age=1 x-content-type-options: nosniff timing-allow-origin: , content-encoding: gzip X-Firefox-Spdy: h2

	moneysurvey69.top/js/v-index.js.6de8f9e6.js	172.64.110.2	200 OK	40 kB
URL GET HTTP/3 moneysurvey69.top/js/v-index.js.6de8f9e6.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (40296), with no line terminators Size 40 kB (40296 bytes) Hash 23a3499d7657462c932b8746991b36e8 f2257a0fc2a2c9e991e7f6c02dd7ff00a659c27e 919699b1407cc993876baca0db7fc97f363759e8a82fba945118108a8b655121 HTTP Headers `GET /js/v-index.js.6de8f9e6.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-9d68" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JcvM7rXcm07jnkkfykPZaYZTUBepOZQTaF6Pk3CGdYdiDrszGKIUrQyuKAO4tRElMLVYhzs2pGGUMR60QbVbPT4fr5XLgzh8Xn1QaozpNHdqNfT6U%2FvNS4gZ9CIpfCCke8jWmQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef19068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/v-react-dom.production.min.js.36d6f8aa.js	172.64.110.2	200 OK	129 kB
URL GET HTTP/3 moneysurvey69.top/js/v-react-dom.production.min.js.36d6f8aa.js IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 129 kB (129259 bytes) Hash 12a14e476144ad086e6c92f93a608771 bd935ddfd265040111dcec95a1df78c25a1b1440 3b3f96d223e89d327bda4caad2e3f83389b111fcfaaad537a6210e25222af74d HTTP Headers `GET /js/v-react-dom.production.min.js.36d6f8aa.js HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-1f8eb" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DeSLqyozOUZKxSKnhF4dGNqvxgYzgVUKa%2BSBIePUo4oWH47%2FDfDsMLPZpDQzOqlhw15VQKgjb2qOnRRt%2BEoFob8FI4lg1tGMvT%2F6FjNbO8%2F19wW9CYt2e4m0fPAzPX6H3zHNJA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e601ef2e068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/img/icon-survey.svg	172.64.110.2	200 OK	3.1 kB
URL GET HTTP/3 moneysurvey69.top/img/icon-survey.svg IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3164), with no line terminators Size 3.1 kB (3097 bytes) Hash be0098d1d8838c0172c3107086338256 924bedb900cfbbf46aee1acc68b09666d1cd08b0 cce75f9c57b1c4430adecff06f7575ac7316c3381477a841f557646d0ac6af8a HTTP Headers `GET /img/icon-survey.svg HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: image/svg+xml last-modified: Thu, 08 Jun 2023 11:37:46 GMT vary: Accept-Encoding etag: W/"6481bd8a-c19" strict-transport-security: max-age=1 x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 3478 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceGKbethb%2FHKSM0S6gI37miXvz0asrrJMzAGRbRIl3LsJojPI%2FHLbdNR3meV63h9IYXjWdyK90XDhsDCLxNR8x16%2FFiJG1mbDErUtzHJghzDpnAM14Emdr%2FGmjfInlVjkSFkpQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e602984c068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

	moneysurvey69.top/js/config/data/sd-1203000.js?v=10	172.64.110.2	200 OK	2.7 kB
URL GET HTTP/3 moneysurvey69.top/js/config/data/sd-1203000.js?v=10 IP 172.64.110.2:443 ASN #13335 CLOUDFLARENET Requested by https://moneysurvey69.top/finance-survey.html?offer_id=112025&z=5305849&s=690683571396157542&b=13412327&campaignid=14083&var=&ymid=690683571396157542&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5305849&utm_source=zd_14083&utm_term=13412327&utm_content=zd_public_v2 Certificate IssuerGoogle Trust Services LLC Subjectmoneysurvey69.top Fingerprint44:F4:4B:F4:72:82:CD:FA:60:7E:6D:66:3A:7E:17:08:97:DE:C5:68 ValidityMon, 05 Jun 2023 09:32:27 GMT - Sun, 03 Sep 2023 09:32:26 GMT File type ASCII text, with very long lines (2856), with no line terminators Size 2.7 kB (2739 bytes) Hash 6c2e62061cdebe9e9e9c34c6b68da4e4 9c909d9f24497a3e9fcc2ac598ff95ddeab631bd e25d0e7e5ce511f03704109dec7dd916ab41eb486bfa215cdfd3996c128865ba HTTP Headers `GET /js/config/data/sd-1203000.js?v=10 HTTP/1.1 Host: moneysurvey69.top User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Thu, 08 Jun 2023 14:41:55 GMT content-type: application/javascript cf-bgj: minify etag: W/"6481bd8a-ab3" last-modified: Thu, 08 Jun 2023 11:37:46 GMT strict-transport-security: max-age=1 vary: Accept-Encoding x-content-type-options: nosniff cache-control: max-age=1800 cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0AJNs5%2FzFSA%2BSPfc1dnuqc2uJDDZtWccMR6fXAKj1aPIFLqx01QY708wakNEkpZtKJjoJPFf5EvanrTNZESfVdqic3E8waSFvCZupEex3LDSM2G6QFDKQ9xFd8Z%2FWiWApOFew%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d41e602b87b068f-LHR content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML