almareepom.com/favicon.ico
139.45.197.239 0 B URL almareepom.com/favicon.ico
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: almareepom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: OAID=1e94aa0b516f49d19736f7e596812c49; oaidts=1685731566
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 02 Jun 2023 18:46:07 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=merge&userId=1e94aa0b516f49d19736f7e596812c49
139.45.195.8 43 B URL my.rtmark.net/img.gif?f=merge&userId=1e94aa0b516f49d19736f7e596812c49
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=1e94aa0b516f49d19736f7e596812c49 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1e94aa0b516f49d19736f7e596812c49; expires=Sat, 01 Jun 2024 18:46:07 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
whaujimisurvey.top/js/v-index.js.a18034f4.js
172.64.169.15200 OK 14 kB URL GET HTTP/3 whaujimisurvey.top/js/v-index.js.a18034f4.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (40296), with no line terminators
Hash 3698267f8797b04e520279c94f8e0805
6d3badcf82c2faa17f61efdc44beff2267fa84e4
fe3a9cbf06b7238b24211ed6af8cf947aa8fcfbd0d6a81601993639a48431f20
GET /js/v-index.js.a18034f4.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-9d68"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8FroCmCi4cPvlf%2FOs1veNVGvxxCfkKx9tMXJkmV6vLhkCdE%2FQwvC9NfD8q2%2BzIO0BaT3QEXcoSoNuv3oyEEKFwVqFpbQ3ddeNEKS%2Fb3KpzRimH%2B3A0Fopl3XYkCDjELWdSMVAF8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db790de67525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/_is-browser-supported.c49ec082.js
172.64.169.15200 OK 560 B URL GET HTTP/3 whaujimisurvey.top/js/_is-browser-supported.c49ec082.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (1015), with no line terminators
Hash 68e1a61f2550d6589e5ae1830fd2d3db
aeefce07be8a0ea5485c7463a8a368806c55e059
a0b2b72ecb2738d1f49c83d11a844bc96965537fb634ed8d1c8c3dd95f4ef0b1
GET /js/_is-browser-supported.c49ec082.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-3f7"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cg26zo6aLGhgnz0IBX3Wwtf1Bwk4%2FZcCZ1cZWlyF9WQSSXzeRNDuObtN1ajFA%2BthWlfLKPoRluauDpMoMj9cTciVb8OHGU5s2LsrcxvH84EnXA61BOxzjwsNb01JvaDwTRtWqNQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db790ddd7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/survey.36a8ba6b.js
172.64.169.15200 OK 4.8 kB URL GET HTTP/3 whaujimisurvey.top/js/survey.36a8ba6b.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (5437), with no line terminators
Hash 6ab7c487e6ed70d2f7241a5bf22a69f4
aea57164a36967cc918348e3117662c883c0ef10
8b44578bb3662e18c2c7a6972b9efedb7daeeaa4a87695dd5c912b1ccd897a9a
GET /js/survey.36a8ba6b.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-153d"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7n2W5FpFYoSG7ohF1VlYwF%2B0v4YpawmCJaw5r%2BvRDwrWekogI%2BCUBkAaYfjHEPiSpRm%2Bl5CHOWVlFxeXz%2BD9Ny%2FL9vvKbta4PGtAlJ4V%2B2mnX3%2Bexs5%2FTDfGHLbwc1w3jBIXcsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db794e2d7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdntechone.com/stattag.js
172.67.149.153200 OK 7.7 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP 172.67.149.153:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (17871)
Hash 0fdff67feab23cc69ecfb6800fc54cb7
eb84c650e6d27e290795207b1f37dd7b67f2aa06
456e420aecd5ac679cc2bcb33daf7c063f54894fd076e99e05c06629234d3378
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 08:43:53 GMT
etag: W/"646736c9-4859"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UOb3%2BHp2nSlIbm5XJF%2Fy22vnnkWPzD1dNDG6Uqt52y0glrdM%2FPXL1zTljFXj3XQHKp6eH37hQMIKIsY8rcO9V7LY48OUvNTj8gJtiwDBrXpxgoAO6lGYwZp%2Fl%2BRxqNBmYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d11db7d8c5ab50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=explicit&hl=en
142.250.74.164200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=explicit&hl=en
IP 142.250.74.164:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash 6eb227f49545693ff09e7e868952f4af
dc2cfcf4a5d33b127c8c5d18dbe577c1e690dfa9
0a22aef6916a4504fc4c1b3f83cf9ad8dec879e875888b7598ee8edde393d86d
GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 02 Jun 2023 18:46:08 GMT
date: Fri, 02 Jun 2023 18:46:08 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dortmark.net/sync?userId=ae3112e2281fc8f5b1a45749b71082e5&partition=finance&duration=5184000
139.45.197.248200 OK 45 B URL GET HTTP/2 dortmark.net/sync?userId=ae3112e2281fc8f5b1a45749b71082e5&partition=finance&duration=5184000
IP 139.45.197.248:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectdortmark.net
Fingerprint2D:58:01:B8:69:29:6C:35:45:78:06:E6:15:E1:E3:B9:8B:47:F6:52
ValidityTue, 11 Apr 2023 11:46:30 GMT - Mon, 10 Jul 2023 11:46:29 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 3a3f1feaf390c0ac0c4d8f7982c5f637
25f7e6950e24af49200a70e086a3b16047ddd929
5cb75dcc6005f10fb71984449d8bb3614293b4e8b83d19a2ca76e1be545de58f
GET /sync?userId=ae3112e2281fc8f5b1a45749b71082e5&partition=finance&duration=5184000 HTTP/1.1
Host: dortmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://whaujimisurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/json; charset=utf-8
content-length: 45
x-trace-id: 6be7c4ebdbcb6a49c9408b3cb8a79e05
access-control-allow-origin: https://whaujimisurvey.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: finance_ID=ae3112e2281fc8f5b1a45749b71082e5; expires=Fri, 02 Jun 2023 19:46:08 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash fb4f137ffaa414632ee6d79358ca7663
738174c00230645a31d26ab956eaed98f1c7eb44
8820e77977fcf5b5ff317aa91f5792369e4241204d3b2e8cc41a3cfa8e4b476d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 18:46:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 18:46:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
whaujimisurvey.top/js/_global-config-sd.2d740028.js
172.64.169.15200 OK 5.5 kB URL GET HTTP/3 whaujimisurvey.top/js/_global-config-sd.2d740028.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (1410), with no line terminators
Hash 15cb25fb388b6ce841d68c478a48f0c9
cc2ada5f0d6b7fa5d79c487315e08f36f14918ad
09c4db6fcdedb3623e653fb0660b495d4fe28db67ca358fabfbec1c8fe297ca9
GET /js/_global-config-sd.2d740028.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-582"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8A7hQjGbL%2BuBCTOtwnfTlYs9v5bHUfNlmsHse4TRPpb7Vv6KF0sQJmKtXAfdhmJjtWCxJxYBN2Q89QYhRgUOToAq%2FGs8%2FvKXJdL9cavjzvRxqJHBWcl0OWorAEhHgIvaIdN1bQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db790de07525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://whaujimisurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 13:27:11 GMT
expires: Sat, 01 Jun 2024 13:27:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 19137
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 18:46:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
laugoust.com/zone?&pub=0&zone_id=4842618&is_mobile=false&domain=whaujimisurvey.top&var=5812857&ymid=&var_3=688570699060884298&var_4=null&dsig=&action=prerequest
139.45.197.250200 OK 0 B URL POST HTTP/2 laugoust.com/zone?&pub=0&zone_id=4842618&is_mobile=false&domain=whaujimisurvey.top&var=5812857&ymid=&var_3=688570699060884298&var_4=null&dsig=&action=prerequest
IP 139.45.197.250:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectlaugoust.com
Fingerprint99:7C:6B:09:6A:A1:BC:70:53:D5:2F:97:56:F3:C0:A5:06:9F:80:C9
ValiditySun, 19 Mar 2023 05:11:02 GMT - Sat, 17 Jun 2023 05:11:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4842618&is_mobile=false&domain=whaujimisurvey.top&var=5812857&ymid=&var_3=688570699060884298&var_4=null&dsig=&action=prerequest HTTP/1.1
Host: laugoust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 18:46:08 GMT
content-length: 0
x-trace-id: 3eddaed8003c554e941bbd521dcad66f
access-control-allow-origin: null
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
whaujimisurvey.top/img/comments/unnamed.jpg
172.64.169.15200 OK 1.4 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/unnamed.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 449aaf5a54e3fe3aa4f0f5875bede090
b2b897362626700277b7f8baca8b1f292d08b7e5
4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59
GET /img/comments/unnamed.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-562"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1855
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tPqoGrYI4WU5fcGUwosDddlvkR00c1u%2B%2BTWYXaKeHP%2BSqkszmxKgFIVrx5Cdtobl0ZmBG3Jz%2BNYpFYX1x2cgo4matr197CVIkRsgjdB%2BF%2F7APRIBuOhyyhMl%2FrOs3eydFx35KWs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde627525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-1.png
172.64.169.15 6.6 kB URL GET whaujimisurvey.top/img/comments/person-1.png
IP 172.64.169.15:0
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 8f9a954bf05965bb41cf97a7ddb7a375
de9db936bbea75043e08a55d1f371678fca2270c
a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d
GET /img/comments/person-1.png HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/png
content-length: 6577
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-19b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1855
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Uyh02XccVpP3Lz0uSwNX%2BpjxLTZ5hFJfsPRstNd1chIxmrlD0Bv%2FLHsBiK596QkgXCTXWB9DqqWbf9Jm9eNVTEjwt%2Be%2FZjPmokZo7ohoWde0zmgcMjEauoVyx9Ahqun%2F7R%2FtAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde667525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-2.png
172.64.169.15200 OK 6.4 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-2.png
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 3e6eaea87b2891590972dd11373b09a3
f038c6e6306ca708defa2b601bf9477f0cf78a3d
15aadd2e7f4f83e79f35e760da382fb8b5045d2cf506f531bdc15b7b27f699a5
GET /img/comments/person-2.png HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/png
content-length: 6428
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-191c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yuz87Sa5TiO8w9ICWWVcLknVv7E4LeOKaDnge6ck5bCTOhKMKT%2FbVluRst2R%2FObStuJZYAXc6XNS36QJDVW9rOgQYYkYGcYio4mnU90OTXT7Ur6LR085BIieJ%2FNf2y3RD18wXXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde697525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-4.jpeg
172.64.169.15200 OK 2.7 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-4.jpeg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6cf64555e2de0ff8b5391081b648b89a
a32008bacf7f8cd3859eb86c6c8d36eeb15dbdf0
d4f513bf3a5691b900739cf79285d18ef09ef4b81eca648261b15a693d21818d
GET /img/comments/person-4.jpeg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 2709
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-a95"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6vSFdreM9c0tpoL5OVIhgY7YrXXiwMylxPlRyvnC4x%2F4K6jywXvPomx2DqphS4NZqOGtkKAV7jaw75mFVEAUOKleyGmW5SY6JRSaNoVtrlbobITuGLKAwape9Ite3W9sRByk2n4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde6a7525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-14.jpg
172.64.169.15 5.4 kB URL GET whaujimisurvey.top/img/comments/person-14.jpg
IP 172.64.169.15:0
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6012ff0d59aa6a34aaca1ea8f2fa88fc
ef59662c9b666106486039e9f1deb40fb4a8ff77
2c020310e91430067c7128425f14ac0ff1710aea5e67c144a8fceac46311182d
GET /img/comments/person-14.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 5392
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1510"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2bX2szNtJamYcjxPvIVbOTtM9tOINiWlYCrCKuoGRuHuCctpJ4Ry4rAGUaHIBKts8624KPi1eznTFVi7VI9sE1DvziUcSrtnY4NPFcOAiVp3wAmVlix8sP44IGqCowiRA06Dk8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde677525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-5.jpg
172.64.169.15200 OK 4.3 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-5.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 21fd6ef6d69b527c02e92a8c23d28d52
5980b75edc23f7fa2f57fa257cb67c9efb86fa58
f37490dbef620959d7124e3de027c5b5c43a57dc90737163947a6725444051eb
GET /img/comments/person-5.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 4333
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-10ed"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JG30047Lvjd9b2z13LKd8Z3N4yDpRZuOdwOJEIj4poyXNUYNMcayzYJUSZ46wbHRgXXLnM899mYLqEKZEvjojnAohXmTgXGp9uWGPCf3Juk3sm8G6lYyxvSTHaImksrqeXsqLu0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde6d7525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-10.jpg
172.64.169.15200 OK 6.2 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-10.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 044ab37551bfe632f53b8f15d991f36e
77fdc6210608e5e36e1d36ac7fd867104cb20d9e
36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91
GET /img/comments/person-10.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 6178
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1822"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UDOkjfAlI2UGmHpE8FTcqoiaiMHVnbRao0CaJ5Evbt7llN5U55qvYXwytxuTLK%2BZyeFjmnDMxZi6IjAiCY2Aw261nclXsy1GId2RzSkZwReOxL3Hzqw5mk2Fgl21XCP4KG9i6MA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee7a7525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-6.jpg
172.64.169.15200 OK 4.4 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-6.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash be9ff88491a5bc0745579a3813eb2cbe
870f88a7fae9fdd928af33f47c5ffdddc6a4082b
698d413ddf6b2ec37acf0e982237d239bd912cb097e243cb355855ac2b8548d3
GET /img/comments/person-6.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 4392
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1128"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0omex0ELIwZe3hl1D27z6zHzIBrtgJFBz2UqFzHjUIhguGZJUHm35Fc0YfTuKg3MpTUX3dZLn0tCrXcrSTfXlGFLnBWNME28GUwcEjvYg6P8wnpCDlu%2FDJV8DRX6tPTQ2dqlxt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fde707525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-8.jpg
172.64.169.15 5.7 kB URL GET whaujimisurvey.top/img/comments/person-8.jpg
IP 172.64.169.15:0
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 6b10e71656e51e27520e854712b44f1c
f78b92dded977e9f275aba726453138155420bcf
64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc
GET /img/comments/person-8.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 5748
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1674"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FtxLUhNevR6W3tQzYJ5UEpBlY8uJQ4MoptxDTVwoKcE48bP1J0HHcypAsPGm8AaTzSMNvxEbFPhprFwdzkdh2iTLnJ7PiyP5tr%2BQe938n%2FR2XCQhsuPKHJAnln2hWo444Hk0BvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee737525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-12.jpeg
172.64.169.15200 OK 3.5 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-12.jpeg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c937339f4ba54ff7dc150b9865c29084
44206828ca23cbed303193bde1dfe47bdc532972
8e872daac17de58d352c9f4082e6e35af76a8b2138c142a8cf0fbacea195c73e
GET /img/comments/person-12.jpeg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 3519
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-dbf"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kIVCVSgaG1VDnoSiGSxCxtr1CgzpryhtBP7XrM8AovXVnue26gI%2FLJvPcDK6cajZBQrzSErBAFdvjmkXsMh56yG%2BJThFqukLurHn79HtBiX6uaLkk3RoGfCgHrSImKbE9ZZobbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee807525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-3.png
172.64.169.15200 OK 7.4 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-3.png
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 2f62e53b6333bc904be22a37a1fd0ace
6e972fefcbe0193d9b28817c47c1ceab2a0235d1
9128194f1b1bf44435a3e80f994157b94a40a3365cd8f0794dcadb41a24c3b41
GET /img/comments/person-3.png HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/png
content-length: 7368
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1cc8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=23gU4Ab62RyVuSBMmKaNfCyzMNAoAQZZKv%2FW4rHJaKJ7GuU%2FjKavLhNM0R4McqWivf%2Fp9HyCfBdm1l3QITb84MuDxmirQ265W8zqe9BTlW54F6CmGdlypbDz3S3f5fkkJc4CscM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee747525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-9.jpg
172.64.169.15200 OK 5.2 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-9.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 529370f9fd3b0f4da6c81ca91a931155
1a4c3e0e7af1ce30dc2ca18d48b5fc3f1b40aad3
cdf1b8dcdce4e9b76157ce90e086ebafb100063eaeb091e97087d97f5d0fb50b
GET /img/comments/person-9.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 5190
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-1446"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OHm0T7yfcxuQVr3w7dmJCBtoV5a4e%2FlrF0G12Uf4DVe7cknCTWS4F9DiMGV7Y1sBXXXSNNBw8oESKyuP0wHo%2BDcvwlSjb9NkmBtyicq9DlSQCc9k7hOJI1DpVAadCyzyL2yHpnI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee767525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-13.jpg
172.64.169.15200 OK 3.2 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-13.jpg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a3364ed9e772ae6f696b814072001bf8
b8f34c657c31bf1e4d42b5d864b2519493d80e92
88f30b8552d0ab928d895390b337a0049405f3b1e8446631e606ba787e1205e1
GET /img/comments/person-13.jpg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 3172
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-c64"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cvRkj792fNYC3RSoubRZPUH6RSv6GMVr7T3Ku%2B3AqrpxnSCfsvXUBbQu79DCWsUMT1%2FlvC0Qx4bhmA0cGgr0fBKvDanZ7FMFtxjqY%2FleFZngZQN33QhrcHEHq6KbrkPc3hZBEPg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee857525-LHR
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/comments/person-11.jpeg
172.64.169.15200 OK 4.2 kB URL GET HTTP/3 whaujimisurvey.top/img/comments/person-11.jpeg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 3924bdc784dc4947f52b779aa4d5a0aa
1e3f3fdd99490addd60014aa7327fe27c6bd5589
b3f882f57f9a213d85eb1c5c6a8a1451bd16dfcd9e4bd00e0a74584422dbd950
GET /img/comments/person-11.jpeg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/jpeg
content-length: 4175
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: "6478a1ef-104f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buyMjLeconYS2c%2B7psEuiTA2vW1ZgeI%2B4IV7NLf1dCbaV00lg1iA4AWrpNOfGqmwutLCST0sEjbtfBCRZ%2FYm2PmilE%2FNrZkuYe3iCoQKiACbv6PG262vTJ%2F7e64HuGiiWFBhD5Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7fee7d7525-LHR
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash dc5b07fe1615d68b82c10372a9a494d9
0b59b437171859b898d1ab432b5979ea105b0272
184c24bffe7600ce8aee9e68816ecd4bf2211b57e10ef72bce520457b90e0ea1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 18:46:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 05:19:53 GMT
Expires: Thu, 08 Jun 2023 05:19:52 GMT
Etag: "0b59b437171859b898d1ab432b5979ea105b0272"
Cache-Control: max-age=470271,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d11db7fcb2f0b3d-OSL
datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
37.48.68.71200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
IP 37.48.68.71:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1565
Origin: https://whaujimisurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 02 Jun 2023 18:46:08 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://whaujimisurvey.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
whaujimisurvey.top/js/v-redux-toolkit.esm.js.b2bedd2f.js
172.64.169.15200 OK 11 kB URL GET HTTP/3 whaujimisurvey.top/js/v-redux-toolkit.esm.js.b2bedd2f.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (11317), with no line terminators
Hash ac9121dfc38a96f9146a7121ce322045
06ccd82f9b12b0e28763513da15d61fce4b9197b
2994e8f29a919a18deb772d218fe3fb77e45df892ae6512d448f8d862e2b3a71
GET /js/v-redux-toolkit.esm.js.b2bedd2f.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-2c35"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1v1GW9eTEFZqhijqg91Qn0%2B7TXpPbke9xOcF80FCaMKu2%2Bm3eBcWHZBfxOOZIYmnB0SY85tTL686kjADUncKioN1NqiwL0oC51r5IKIRkF2CpbWqewijJbuAZY2NGQ7ryH3JGI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b78f87525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/css/_core-survey.26c0898c.css
172.64.169.15200 OK 3.2 kB URL GET HTTP/3 whaujimisurvey.top/css/_core-survey.26c0898c.css
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (3187), with no line terminators
Hash 2e6143d07cb0a0273cd0fded0cd7b430
4853285adf3a468cc8a42b1c6f17d8353cfef896
f2690b871425a66071365ba5be475a5089e8074dbdab7df95a71bbee62e2f5fb
GET /css/_core-survey.26c0898c.css HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3194
etag: W/"6478a1ef-c7a"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v8XtUh9iTdvW%2Fs%2F7Xwt35Y7B2VSoI2T%2FdPytYEyWh7w%2FeuSAP%2BvhootRVTtrtzkHpehc5ERm9mUASjmq4gqUxckDeQQhxiPhJunnF7MMEQAj0qiPp091t2JhwNdDMNeQoS8j3rM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b890a7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/s-storageService.js.2dc48dda.js
172.64.169.15200 OK 2.6 kB URL GET HTTP/3 whaujimisurvey.top/js/s-storageService.js.2dc48dda.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2624), with no line terminators
Hash ff4c29feda7e805fa2b689efdf355178
ad1d6d3e48fb9a19ce34d18fd6c22b19b9ea5756
12e747466a5ee2ebcc49ebf0696d383095bfe881bfc339283c24a3cdb039f509
GET /js/s-storageService.js.2dc48dda.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-a0c"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ELfQuP6g3zivgSB6PfoAjJAw9I1OwXHWyGaVXwb8z7RYmlVKFvrxhpXEh0%2B%2BMSPangSKtr%2F3WxMI4wu5iyGNXGruR3mA7Rog4vQF%2BZ9Su1UCbOQ72geJejSIiZXn%2Bdmu9Q5NOhc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b78f57525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
172.64.169.15200 OK 4.7 kB URL User Request GET HTTP/3 whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
IP 172.64.169.15:443
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4929), with no line terminators
Hash 26de6480612297db791b37fc60de79ee
782348fe6a88d506c1e6de65a586c0ac6a2ec34d
b9f53a6b7ddb29070ed1bdf87f44f45126cee362599b1049f4aa3edad01194d3
GET /finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2 HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: text/html
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0aEtYkzQAHX2d4kk%2B2FUAOvJzi7UgjBAJi02auMAGCHkAXsSpJPWQPH0jlVhuBFPsAQL13KlXoZk0f3%2BSFqkA6Br6arzWTIWKy2ELH7BXc5leilR8AWZ9YzkTTwqP%2BG6c%2FXWriw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7aafff7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/_rtc.692696d0.js
172.64.169.15200 OK 11 kB URL GET HTTP/3 whaujimisurvey.top/js/_rtc.692696d0.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (11189), with no line terminators
Hash 769aca51bf83343eb2ac227aedcd4ff3
2a193572dec77357bdbcc9d02e629afb942fe61b
7110ad0251bd71ba0caa74c691d850c8e3ea55d53d6195408d21d4777e2cf293
GET /js/_rtc.692696d0.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-2bb5"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MXxphWWhqCD748vEfZwfIFIFQRxtjtBX18Js5SwwF12LlBLIVs2pqEbicwQuaDW%2BWZ9r8D0Wm7sdSIZZzpAzOXBGrAr0TK1FQZ2QQahkYuv6Nk%2FanKCngz0j9Q0A%2F5P%2FBq29b%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b78f47525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/_core-survey.2e2c57dd.js
172.64.169.15200 OK 230 kB URL GET HTTP/3 whaujimisurvey.top/js/_core-survey.2e2c57dd.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
Size 230 kB (229458 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/_core-survey.2e2c57dd.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-38052"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bCvf5bmzvlRrdl1WZCRIzeXb6UnleCpUNDOtmCfd2eufa%2Bn1ah7ayoqt%2FdISM0mmlRCFIHXU0Ydr%2BAdpTUuSMWZMG%2FuNd0u5ynoi2US%2BeUNc%2FtGw2kXdD4CIGt9HnREecW1LiDs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b89037525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/config/dict/cookie-consent-1.json?v=10
172.64.169.15200 OK 6.8 kB URL GET HTTP/3 whaujimisurvey.top/js/config/dict/cookie-consent-1.json?v=10
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (6009), with no line terminators
Hash 4b2ff958e811a50d2f641818590b443d
6abae297812bb55fad869e953e7fdf7469cbe1ae
9c77a5f3d0028d9ba122ed15728ee7b144619431f8302503a19c5785ddaa06b8
GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/json
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-1a65"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tw283mge0fgp4pkraqqhe37ugah2lRboCy0C4%2FFJChfnntdrXBvi9VrkLzJbwS4jGstr32UCgh2kO8QpstKLr8a91qsxcmZ2pMUzEOIPZwdEz2ypKsmSkqmJVSBxngpxm1RVaZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7ccaaf7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/v-immer.esm.mjs.28802142.js
172.64.169.15200 OK 10 kB URL GET HTTP/3 whaujimisurvey.top/js/v-immer.esm.mjs.28802142.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (10496), with no line terminators
Hash 18f8b1a5408bb552103bab2a9e5cba70
72ba4dd83f4e85a45017492cd8ceedceabcc7587
1fce72cc05122f77f6dfd7ddb9fd43853cc9ee2d3cda9478afafcd48388e122d
GET /js/v-immer.esm.mjs.28802142.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-2900"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JzAC%2FACaTFEYr%2Fgs%2FUdh0Ltpv0ni%2FWk4rQkM4T%2B8xzhkUhtx8YnkAOV0iE8baPuAJ1ALeO7cnAYjEnvOsD1FJ4MhCRTREHA5LTE5PQAF07EhmGHstFxdkxOx3HYadVcqG3eqqFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b88f97525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/css/survey.2bfeef83.css
172.64.169.15200 OK 67 kB URL GET HTTP/3 whaujimisurvey.top/css/survey.2bfeef83.css
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ba8ddbfa60d2feec516710cd5de1746d
9ddfc2f60deda512e71fa888c546c4300e3a530e
04ea2783c47b74e28c9583983c12e1ea4ac25e5ab50f0270829687607a03a782
GET /css/survey.2bfeef83.css HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=66591
etag: W/"6478a1f0-1041f"
last-modified: Thu, 01 Jun 2023 13:49:36 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hTAyUxUmW2UG9WotWxoC43AlYczQ2DVnH9pv7OtkapkAs6wUWRTeKJ5OnCx9t3lZ9pknEPd8lEG2eRXwgvsi6DKhXVcKYHeaE8ttHQ0T0%2FSugnshN%2FLZBMAKAPWm7fEx%2F5FC8ss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7ba94e7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/img/icon-survey.svg
172.64.169.15200 OK 3.1 kB URL GET HTTP/3 whaujimisurvey.top/img/icon-survey.svg
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3164), with no line terminators
Hash be0098d1d8838c0172c3107086338256
924bedb900cfbbf46aee1acc68b09666d1cd08b0
cce75f9c57b1c4430adecff06f7575ac7316c3381477a841f557646d0ac6af8a
GET /img/icon-survey.svg HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/svg+xml
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-c19"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2407
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMTi5DH5qS3dWh%2Fsf7x%2BmWHHiWh4z%2B%2Fznjv92GLf%2FK8T%2B0uV0PWg9ngazNaO7l%2B3t9X61En6ig40PH723ry2eYNTSRqO%2FxhfxkHENAgrpwpXKXugmNrI17wRH2kGU6Q%2BYzuVpmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7c19e47525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/v-index.mjs.7a6f6513.js
172.64.169.15200 OK 35 kB URL GET HTTP/3 whaujimisurvey.top/js/v-index.mjs.7a6f6513.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (35051), with no line terminators
Hash 9f7ddd785647e7de7ff506bbe6ec7ca7
b04873210640ef785259fb4405f01c5e6f96d5a2
10338634d2cfa9fec434ea07a265687bf552d382e11b107d7afe649c05ac5627
GET /js/v-index.mjs.7a6f6513.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-88eb"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v41WwiXp4nJFO3zN9QHI3eqbJ%2BlKL6DgcAkNu7CCWj5rZdGnbTpb0wH%2BnFobL6wlY%2BQ%2ByFrTBcqTJITiw62TvfSYFOwYIMeTyeaYRodEiSwWr7w5jE5LYTifxTVZwTx6T6ylNXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b88fe7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
my.rtmark.net/gid.js?
139.45.195.8200 OK 65 B IP 139.45.195.8:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80
ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash fd555d45342fed010a78e2f6e7bf9f64
82e5f64a18c5da85d450e710d154e181321a342f
3d20afec3971967663555299c48f909e5f7a436698de3a77c04d3d1e07975ea9
GET /gid.js? HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://whaujimisurvey.top
DNT: 1
Connection: keep-alive
Cookie: ID=92c2409116b3469d913f0b4c9039f197
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://whaujimisurvey.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=92c2409116b3469d913f0b4c9039f197; expires=Sat, 01 Jun 2024 18:46:08 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offpichuan.com/rotate?zz=4292518;4326645;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5812857&uid=92c2409116b3469d913f0b4c9039f197&var_3={var_3}
139.45.197.237200 OK 4.5 kB URL GET HTTP/2 offpichuan.com/rotate?zz=4292518;4326645;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5812857&uid=92c2409116b3469d913f0b4c9039f197&var_3={var_3}
IP 139.45.197.237:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectoffpichuan.com
FingerprintDF:FD:C9:DF:54:1F:F8:D0:EB:70:9D:22:14:AB:31:A4:CA:18:1D:AE
ValidityThu, 30 Mar 2023 21:17:15 GMT - Wed, 28 Jun 2023 21:17:14 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4581), with no line terminators
Hash 90b2b0d139fc33cf2c85b3fe8a39ea85
ea3d87939fdc7f7f3605c98c8caf5718bde7556a
b0c76b003957d163ae988c1cc28051af7552e4e37463d8918ebe340853e0a687
GET /rotate?zz=4292518;4326645;5128285;4949467;5381239;5381316;5381339;5381332;5381307;5381330&var=5812857&uid=92c2409116b3469d913f0b4c9039f197&var_3={var_3} HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://whaujimisurvey.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 18:46:09 GMT
content-type: application/javascript
x-trace-id: 43c4d889aab5800322c54f6507e63943
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://whaujimisurvey.top
access-control-expose-headers: Link
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
set-cookie: OAID=92c2409116b3469d913f0b4c9039f197; expires=Sat, 01 Jun 2024 18:46:09 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
whaujimisurvey.top/js/config/data/sd-2025.js
172.64.169.15200 OK 9.2 kB URL GET HTTP/3 whaujimisurvey.top/js/config/data/sd-2025.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (9549), with no line terminators
Hash edcdb9407b2987df48166bfe2de6c40c
10d47a89a281d6fcfecd1f0d282af995d5bbcb8d
76279535713eaa977252ab71a88308fa2c09412cc6d22435c00b910565f2ab12
GET /js/config/data/sd-2025.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1f0-2411"
last-modified: Thu, 01 Jun 2023 13:49:36 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 988
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aIXSRKi647ERKTqd97cwuCRRyy4lslaPIX5O%2FDyiXieqQRlQ6EFkmEezUGpKWPBig%2BVxQiIoB6gTF0Qq5Oy%2FXkBc09xLaO9AVZBd4aYKg%2FF6sM%2FBJ8HEo9BZ9HZq7ehT9fpOLhA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7cdac07525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/sw/sw4842618.js?var=5812857&var_3=688570699060884298&var_4=null&ab2_ttl=5184000000
172.64.169.15200 OK 1.3 kB URL GET HTTP/3 whaujimisurvey.top/sw/sw4842618.js?var=5812857&var_3=688570699060884298&var_4=null&ab2_ttl=5184000000
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (1381), with no line terminators
Hash 391176c8bd76a5856ba8000206199492
6cb137aed01a624e854904e2a6ae01033ec3d412
e154691950c0b3cb210001729b9d414ee23f96c1b28b36a91cffc8d5e5baf443
GET /sw/sw4842618.js?var=5812857&var_3=688570699060884298&var_4=null&ab2_ttl=5184000000 HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1; finance_ID=ae3112e2281fc8f5b1a45749b71082e5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-529"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EmqjM3k0NEVs2XtGZCxDbA6A7H1oSfAs1OVerBkXwnzPve%2FkJJIfHXfREl2zA9ClwER%2FCmylH%2Fib2ZG05qL5GTrvcwZv0qJyfDpCh7tfuOWY7153LiamkRPi4DTGEJkzWDYlKyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db809f697525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/v-react-dom.production.min.js.708dd72a.js
172.64.169.15200 OK 129 kB URL GET HTTP/3 whaujimisurvey.top/js/v-react-dom.production.min.js.708dd72a.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 129 kB (129259 bytes)
Hash bf59e2beec56bd492cd1247c25672598
4af373f2ad8d7a2bda18232ab4740abdea6ecb7c
04853b2a6175aa975ebe4d756699da4d7a9a156fef4895cf65b53c8fdf6c1389
GET /js/v-react-dom.production.min.js.708dd72a.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-1f8eb"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FKZK3INiufgFlapE0voe%2FhCVyys8ijLP0N6lDAdHHFVbY3S7NzKrtDQAKRrnLcQ0lG4qRT1uDcwREsqbNjTx%2Bv0z2HWjBl9xmYnXb9c4NSJOm1ybLUkp8F0LzJwfgRvy%2BwWoC9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b88ff7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/favicon.ico
172.64.169.15200 OK 1.2 kB URL GET HTTP/3 whaujimisurvey.top/favicon.ico
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 668ba1a9fa1890ba16cb8adc28d3dad8
5e35223b2541265114eaf61b9da2556c812fea17
7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2
GET /favicon.ico HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: image/x-icon
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2174
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L0m5bZ6GR%2BqjVbJxPkNg7w8cTaU6UtqHwFunNF%2B3qABhWm6VXzq4WvESL2V7jcCZ0VBH%2B1ityrs19v2CjpkWT1BoMezI4JwCJB0lVHCH4sCF7hEijS%2BP%2BzAXC9GRsDvlvlH7jno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7d2b137525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/_each-land-config.c1df2b79.js
172.64.169.15200 OK 72 kB URL GET HTTP/3 whaujimisurvey.top/js/_each-land-config.c1df2b79.js
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6b75c51d58a8ab1832c0c5167c09e04a
3e201ff870f80d120522c2f58a9f4eec0c4eecb2
7790285885c82a7264b458e8c364358aacff59c0e7aff4e60776a5704cea3a36
GET /js/_each-land-config.c1df2b79.js HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:07 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-11824"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 2406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l0grAQDf2lSv8nQNmGh9R%2F%2FTnW%2FbINIkKNY03sA8QM8vqWh8zan%2BG8e8tE27mvgK%2Bo6HOxUu4QlYorbn7lHpDwMAysKJ6ttvl9KGCgwVBuEbHX1tz7UxxRj7Gc5IfhzI38WULsQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7b88fc7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=5812857&var_3=688570699060884298&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
172.64.169.15200 OK 42 kB URL GET HTTP/3 whaujimisurvey.top/pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=5812857&var_3=688570699060884298&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type C source, ASCII text, with very long lines (42367), with no line terminators
Hash e2c1209fa034e82830b27b2c7e00a7dc
0a3057e56de2d45bee9443afba1823ce0629f199
ea6ad99d1789576a76dcb7c3d970a1fb9c81b4b0c493eafc64023b85686a2bcd
GET /pfe/current/micro.tag.min.js?z=4842618&sw=/sw/sw4842618.js&var=5812857&var_3=688570699060884298&var_4=null&ymid=&cdn=1&domain=laugoust.com&ab2_ttl=5184000000 HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-a57f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZWHBbM%2BOtbzU%2FpzqgkkMJKKmSHzPbQFD6ZP%2FT2el4TAhmKvg%2BQFKjkXL7JO3FNndIx9K8Iy%2BDtpIIqgARvQC6wPjcb5BFiJL3yyXn9Y91Hl2S1xbyP%2BmwUPK0jzqZ2X73%2FzkKeo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7d6b5e7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/config/comments/en.json
172.64.169.15200 OK 4.5 kB URL GET HTTP/3 whaujimisurvey.top/js/config/comments/en.json
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type Unicode text, UTF-8 text, with very long lines (5176), with no line terminators
Hash 0f8a677240ca082b8875f3c8d3bf5c42
19641ee3e340098b44d1d248e7c1a99dd0daafdf
2f5cff997105c8b995ec55f36e2656e14e1676f23244471f6115bc1d04c821c1
GET /js/config/comments/en.json HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1; loaded-page=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/json
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
vary: Accept-Encoding
etag: W/"6478a1ef-11ad"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cFIyLfCeqKnzMLckZyJwcrlDf8SGzVhxGit4ZmDo787999kcoqz01i%2Fez7aDc6Ax9TnyTDRy%2B45XrPgFn6sL0NrFdVz4dIkzzcXoTa609yQJXcY7hGWj%2FRMrMf749F2H2%2FKmwhU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7d8b7c7525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
whaujimisurvey.top/js/config/data/sd-1203000.js?v=10
172.64.169.15200 OK 2.7 kB URL GET HTTP/3 whaujimisurvey.top/js/config/data/sd-1203000.js?v=10
IP 172.64.169.15:443
Requested by https://whaujimisurvey.top/finance-survey.html?offer_id=112025&z=5812857&s=688570699060884298&b=17177534&campaignid=6756478&var=&ymid=688570699060884298&var_3=%7Bvar_3%7D&testinapp=4816639&utm_medium=5812857&utm_source=zd_6756478&utm_term=17177534&utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwhaujimisurvey.top
Fingerprint95:F9:A1:96:28:92:6B:D1:1D:B1:28:32:01:40:72:ED:B0:5F:53:16
ValidityWed, 31 May 2023 08:17:22 GMT - Tue, 29 Aug 2023 08:17:21 GMT
File type ASCII text, with very long lines (2839), with no line terminators
Hash 501882c63654cc39a921890ab999f9e8
0d1f94ce2336fcb0f5aa05e50ce579007d1d3eaf
70dfcfb1c3c467b41bb0e0bf33302cd6ce971a2d4e6227c7f9ca4be5b90072b1
GET /js/config/data/sd-1203000.js?v=10 HTTP/1.1
Host: whaujimisurvey.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: isCookieSyncABTest=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 18:46:08 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6478a1ef-aa2"
last-modified: Thu, 01 Jun 2023 13:49:35 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 1548
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mb8LTj0%2Br3miABOK4ostg3bHY9W6gkGgtYOgyhVcI%2Fe59Xw04xqgW3O0eA3vWI0Pp5GTy3AsD2wvS9L6NuBSz4K3441a0GpUUl8yP3%2Fx%2BMHU94%2FVEDo5%2Bvy9IupCP3rYPUYwgxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d11db7c7a557525-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400