GET /survey.html HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 172.67.71.106
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 21:56:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 22:56:55 GMT
Location: https://dollarsurvey24.top/survey.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GQJX2g6MHOQ6ARxXFyChHkGMYhekCFpm9enifYQtQSsudiyO4dtFDoKX1QWrGMBswJMvElQHHUkVplrA7PwlIr0w%2B6cLbC8%2BBSsJyj7qc3EbFcC3buSkzcVhPKleeMj4c9k%2FMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747aefd84e501c0a-OSL
alt-svc: h2=":443"; ma=60
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 21:05:27 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IYR4UgconPPFR7gFnk7ySGWqbE7bQV-VHqlylS8IGDtHWMIkry2tpQ==
Age: 3088
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5917
Expires: Thu, 08 Sep 2022 23:35:32 GMT
Date: Thu, 08 Sep 2022 21:56:55 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hdKxsMsNu4yn1y0pag2wDzFbG6br8_X4FX_JlOFQUverGxckF9FGbA==
age: 65421
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 08 Sep 2022 21:56:56 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 345
ETag: "E84897E33891DBDA12CB8D48112EA807F37A36B74A93AD844D9FFD38FEA989F8"
Last-Modified: Thu, 08 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Fri, 09 Sep 2022 03:56:43 GMT
Date: Thu, 08 Sep 2022 21:56:56 GMT
Connection: keep-alive
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 21:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 22:15:17 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Gl-cujrEMf-b14aAoQRz7p7VbbhE0EeUVESXU0F31BSs8yk3H6jfzg==
Age: 1118
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3639
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 21:56:56 GMT
Last-Modified: Thu, 08 Sep 2022 20:56:17 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
|
GET /css/style.css?v=1 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: text/css
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-9f61"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6p969%2F5z90SI8h0xuB06HoZrylEknbiM0h1osYnzZCIe4igorksyrLLxGqz9zqOEkAgnqdmXGbHZEWkD%2Bri8dvx7VvfVinWqN32KQEDvMERkjAvgi3QHz13E%2FuMa00LCVmnj3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc4c311bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: nginx
date: Thu, 08 Sep 2022 21:56:56 GMT
content-length: 65
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=25a61b8a3bc64288b499e1c2d26dd895; expires=Fri, 08 Sep 2023 21:56:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
GET /img/comments/unnamed.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 1378
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-562"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xmW15OPi%2F3OPPTTX1iJjxkU7Nkgij6fGUeRWrNovq9CNdk1sl3Ndgq7uKetLurz7uBpJ%2BWtkGtR%2FnLYQ44otp6rltiRjyUho9K%2FCol8%2BERshtEGQnQ4GEETLU8litvr3YWxgkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe01ed91bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-4.jpeg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 2709
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-a95"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UKOvlNp87a3uO5%2FzoMnbJ%2Bbcpdy0ZLUmDVhjEX8BI3yEz5XUllm%2FU2lJxa25NGCDK7bG66A8KDjFw%2BWAQTCwyI5vZwaS4vZcUKLiWFhAghIbQy3HsPsU%2Bo5U%2F%2B%2B836Y0EqJwbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe01ee01bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-14.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 5392
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1510"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EygghW5ZlE%2FLbj7a2Xo6Z9GhbEg%2FRWAXyc8XL4dWfRlZPgaxWI5j7yddwhE0W7TWlOtqvHKXKV0IfOGrHhmbVEl2ODm5RuPB0n0diy%2BiCw7ZUM5GApLC58ow5Nx8jA6mk4jLRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe01ede1bfa-OSL
X-Firefox-Spdy: h2
|
GET /survey.html?utm_content=zd_public_v2 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: text/html
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:34 GMT
vary: Accept-Encoding
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hpj2XfOqtvwpXf9hbORF50wG62xUTzl8k8uLUl61%2BtG7wxpalJb3VtUcbDnmHTCXwR5DrGeeDgJ45%2FT7EhMiQ9L8iR7boKR%2BVlVpx4YKOO7DDRyMZxSIZtdS%2FRMa2IEaeEZL4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdd1cb31bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /js/config.js?v=3 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:34 GMT
vary: Accept-Encoding
etag: W/"6319dbba-fe90"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eOV2Nt2kmgkOzaCjKN1FCYOzQwCmwYFhX5YUGwJGl0ntSAOPMAgiWqtAjXizMAbZMdG0UVOs1iuE2O2rNDL2PHROgXALsSwzKyX9fEbmrXllN%2F79FeSGT%2BRmKTgdfDhKDRxuAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc4c2f1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /img/comments/person-11.jpeg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 4175
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-104f"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wWDsIp9BvcWpX6%2B8Mk8sYhp7cMlgmMItGrIVSZczewZj%2FUhigcqA%2B2uaKZTKEUqbMue00%2Bhr3FxLwwJq23sx1aKP3IoTWfLQNU0DxRRHN2%2BF8JppSdwViBFe6eZ8A4gdoodoMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02eed1bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-3.png HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/png
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 7368
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1cc8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4NYnUhqCt2H1YPfF5PnALheJptCmEXrGEE3jRZ2aq78hincyoRhYZosFlDOHVgNprZ6aHH%2Fz9TXwRni%2F5wxjy66qitGnuq2eTzJaonDXSYevbwjEH0FOlMgCA8rnvnfEsiuklQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02ee91bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-13.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 3172
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-c64"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=viR%2BXSDTe2lZjyfS3W86nXfck1bkbvuBoaQfwXoIaolXGRXW7pO5%2B8zLp%2B14i%2B47Orl1O7UoIj3%2BzDgSkh7hS0Rzst7J5D300NEZV8H3pF%2BpJSSqe8f2HqVJsGRc3gRKQaOmjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02ef71bfa-OSL
X-Firefox-Spdy: h2
|
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:56:57 GMT
Content-Length: 939
Connection: keep-alive
Expires: Mon, 12 Sep 2022 18:09:57 GMT
ETag: "dcedc6eb596918ae74e21b015f5580e894336420"
Last-Modified: Thu, 08 Sep 2022 18:09:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3513
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747aefe07b74b511-OSL
|
GET /img/comments/person-1.png HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/png
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 6577
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-19b1"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HjZot81STTs6eK3vMtXIZ0Yasal3QNCzGIPe5YJq31i2MIdnOYmJEd0v0%2BwPISUKMGtnkbdYhORngCYuyl7VZigtpglxD7TiSLj42JC2WVbn5iuvzV%2F15MD9H%2B1Rx21y%2BAFKAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe01edd1bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-8.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 5748
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1674"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FEnvQK1IR8kehvzJxvLWfsiGdc%2FcTivkq%2Fiuk9td0k8TAUDPea6yuKUytrv1Hr0C2jYVerLcEUZhh6m%2FkQflJRmnrLwi79IFtp4pBT9cKx3fSDIGrwiQGb0M9RLcdiwPkpif4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02ee61bfa-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Size: 5748
Md5: 6b10e71656e51e27520e854712b44f1c
Sha1: f78b92dded977e9f275aba726453138155420bcf
Sha256: 64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc
|
GET /img/comments/person-9.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 5190
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1446"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9he%2BcRTJHqvidW0c4vTpBFWFeDLTLn2GvLmTJa4RMuLkR7hGhhNGvOVC3Ba1fbC3wkcp5qBWn6nw4E20iKKi4hIRlRlkiHIZENQT38xpsbpqu6qEs%2BhJ%2FuojXCUOYPcSwsbnLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02eeb1bfa-OSL
X-Firefox-Spdy: h2
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4YBU9Xt/7Zq72Om+X1Fnpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
54.70.239.215
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AfWMBLIRqv0O0fiSIZmS0UHp9fA=
|
GET /img/comments/person-6.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 4392
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1128"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=10nmiU%2FRpqo%2FOqF3k8g6ZwIJTrgwaJ1BrehyuaKxlFVpIyETVYAJr9JF4bc0FdODLvu58IjQO7F3kBagErOPUqXsgbhy3Ck4Nf3fxIt2mkvB67WN595Rz26kPwK4TOzv7ZisVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02ee41bfa-OSL
X-Firefox-Spdy: h2
|
GET /img/comments/person-10.jpg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 6178
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-1822"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rPNRWUtFQRJzld9JslDzl8RoCJKak9r8z7OMEacb27x0sycqt3iFXrnxw8FJKxQeV0yGprxi3zCEudSF8c55FYbJOPIy8EnHUopdZsPROb9NZk%2FyIZyvUNSnbX255%2FDnc0lu7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02eec1bfa-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Size: 6178
Md5: 044ab37551bfe632f53b8f15d991f36e
Sha1: 77fdc6210608e5e36e1d36ac7fd867104cb20d9e
Sha256: 36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91
|
GET /img/comments/person-12.jpeg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/jpeg
date: Thu, 08 Sep 2022 21:56:57 GMT
content-length: 3519
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: "6319dbbb-dbf"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yz7vP9p%2FHui1jYk96fhZUku4s1WbHyvEP8jcozgI1FslxA3lM0HmQ11Fa%2B7CZSrI6HaAadpfHgjrKy1zLVogC6dMwYOOX%2FM2cYynzPSYC7IDfWVXiLl5rEyOChT5jLlrxi4KIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefe02ef21bfa-OSL
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:56:57 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 01:33:17 GMT
Expires: Tue, 13 Sep 2022 01:33:16 GMT
Etag: "4c5bc75ca69d522ae90263adf3d9b81aea605e72"
Cache-Control: max-age=357978,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747aefe0b9a80b55-OSL
|
GET /js/comments/en.json HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/json
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-11c6"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U3FLdvhb%2F60O%2F%2FAibr%2By%2FcvXWwhViXjWabSVpKGUI5e2EW8Rw8KvwuES9GKAwVGI1%2FQUaZXvflP%2FqXx%2BebgHtyn6kkgmmOK88T%2FhC8YETCDzSwjBK9QMYn16tO1USlJ46wqdmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdf1e2c1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 77.88.21.119
HTTP/2 200 OK
content-type: application/javascript
content-length: 72380
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: *
etag: "63186565-11abc"
expires: Thu, 08 Sep 2022 22:56:57 GMT
last-modified: Wed, 07 Sep 2022 12:33:25 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: *
etag: "63186565-2b"
expires: Thu, 08 Sep 2022 22:56:57 GMT
accept-ranges: bytes
last-modified: Wed, 07 Sep 2022 12:33:25 GMT
cache-control: max-age=3600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
GET /watch/66423859?wmode=7&page-url=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&site-info=%7B%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A222%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674209%3Ac%3A1%3Arn%3A199448660%3Arqn%3A1%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C42%2C2%2C%2C0%2C%2C161%2C2%2C%2C%2C%2C333%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674209%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 302 Found
location: /watch/66423859/1?wmode=7&page-url=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&site-info=%7B%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afp%3A222%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674209%3Ac%3A1%3Arn%3A199448660%3Arqn%3A1%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Ads%3A0%2C0%2C42%2C2%2C%2C0%2C%2C161%2C2%2C%2C%2C%2C333%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674209%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
set-cookie: yandexuid=6266282971662674217; Expires=Fri, 08-Sep-2023 21:56:57 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6266282971662674217; Expires=Fri, 08-Sep-2023 21:56:57 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=405673521662674217; Path=/; SameSite=None; Secure
i=Z9Fivuwz+Nr/0sxoGWBDkzKf1k6VQGsVIpF6PUq6/aZsjhp5sQ7iWKQhK+yVaSl5iByZ4fJ5MntD7IOgJYSRTo9Mvfg=; Expires=Sun, 05-Sep-2032 21:56:54 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1694210217.yrts.1662674217#1694210217.yrtsi.1662674217; Expires=Fri, 08-Sep-2023 21:56:57 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonSurveyStart&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A468571049%3Arqn%3A3%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(3)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 44
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonAdexCall&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A672491561%3Arqn%3A2%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C981%2C981%2C1%2C%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 16
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonStepChange&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A4960255%3Arqn%3A5%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(5)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 43
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonAdexLoad&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A643499764%3Arqn%3A6%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(6)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 16
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonUnique&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A896943633%3Arqn%3A4%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(4)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 37
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST /watch/66423859/1?page-url=goal%3A%2F%2Fdollarsurvey24.top%2FonTrafficQualityCheck&page-ref=https%3A%2F%2Fdollarsurvey24.top%2Fsurvey.html%3Futm_content%3Dzd_public_v2&charset=utf-8&hittoken=1662674217_cbff16757e623d9724f79557de91f948d3e0d2ea4d822f523d43889c986033e9&browser-info=ar%3A1%3Agdpr%3A14%3Avf%3A62hjjpdks93ktul5nsnaw%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A893%3Acn%3A1%3Adp%3A0%3Als%3A998205088596%3Ahid%3A601842515%3Az%3A0%3Ai%3A20220908215649%3Aet%3A1662674210%3Ac%3A1%3Arn%3A52995417%3Arqn%3A7%3Au%3A1662674209518937232%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1662674208434%3Aco%3A0%3Awv%3A2%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662674210%3At%3AWould%20You%20Make%20A%20Great%20Career%20Online%20And%20Become%20A%20Millionaire%20By%202022%3F&t=gdpr(14)mc(g-6)clc(0-0-0)aw(1)rqnt(7)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 50
Origin: https://dollarsurvey24.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
77.88.21.119
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 08 Sep 2022 21:56:57 GMT
access-control-allow-origin: https://dollarsurvey24.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 08-Sep-2022 21:56:57 GMT
last-modified: Thu, 08-Sep-2022 21:56:57 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17434
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:56:58 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17434
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:56:58 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17434
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:56:58 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17434
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:56:58 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17434
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:56:58 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:16:27 GMT
age: 85231
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:35:22 GMT
age: 1296
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8162
x-amzn-requestid: decb1d93-bcc9-4a71-a054-c537ad7d1add
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJvndF1fIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2c95-27cef2465fd0e6c849da81af;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:55:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: C_J0m9xfkCb5qsoO934KB2Ldk1-yMaMXkgiv9gWus7JqjN3M_HCpdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 17:56:29 GMT
age: 14429
etag: "67ae4acd88571da51b81fa7ed963b7f2a71845b4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: z7RyNwWgq5r9B2WMa5ibpo3d8DXFSFCCrEHpMvc0Q5SqE2x1ovaV-g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:41:33 GMT
age: 83725
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 58942
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 84232
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
104.21.82.172
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 13:22:18 GMT
etag: W/"6319ec8a-a89b"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6767
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yDzK9L3%2FCGFxK5cCcizW8wpSkfWWe0fKFqrPfiCZze7bN1Ui7yQcUeCEdRUWwyi1nuasrV4g10VsZKTkXKSsffCvFjOeLfXiyb4Lke%2FINeip7j1KXPCXQsjYUUMiubMYMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefdf2d511c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /js/binom-pixel.js HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-4a3"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=12MY%2FW%2FIZ%2BbfZJOWZA5Q1NoDbm2fAtVVC2GzMsEebubm10iNtmaoe%2FIe%2FDc1FSuqzuLeKUvuCANEuDOjsUN6YHQ6GUSrw0lzIOjmU2COxIOJuzn4hMfPMym5MUKiFszbDevhqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc6c461bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /img/icon-survey.svg HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: W/"6319dbbb-c26"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2BGldJBfTMYoLRGQbdto2vfL9hRuJGiKR70OXkAIFlXDetwz%2Bt3SsYCebY%2F2H2O5%2BDRTvEHZVNlgLXRlQ5yLXd0ZXRYJeT3qPY7i%2FQ1jseiA73GzYSLdSfw93NiJgevgBII8Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefdc4c321bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /js/data/sd-1203056.js HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-3fbe"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r3mgDGddlkOFMrxE7kxLS7ltyoatTa%2FbE8tEJU7zMXDUXDXxPgOdQk3LZ4rFqyFX9WbG%2Fo7hhkDurxPeY8QMAbg%2Bn4QlkDYZGkvbIigKgpGrDnt1uzSB4lb%2FKsQvMAt7%2B0LyAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdd1cb61bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /js/data/rtc.js?v=1 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-3ae5"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2FiZwFIErK5nWzBEl3DoCKD283AyicnjGxeURx9lwokoF6TMcTYbkCk96xYxFz%2FtN3lxldz%2Be9j6KajJHKDTa%2FUVrh%2FH814VVOWmv5nrjoNiIdl2SP8h%2FOpDIVSudjrYlX42LA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc4c2d1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /js/data/_global-config-sd.js?v=2 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
etag: W/"6319dbbb-283"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=va7d3sBRP2DHI6bsoOlaLA7JqGd5fq4%2Fqb5gswDy1Wn6UP4yyy%2FNlCHA2ZugkJCeDJuypDWwKHhzUF63kLWhLuO4r3oK6jTBt6BFjVN34tKXaF0qegE1vUf288bNhwYd1EJX9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 747aefdc4c2c1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /css/survey.css HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: text/css
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-4d7b"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MEh65R%2Bc1CnP6hteSShWK25PLHmec%2BP2zqD4lh8sR06D8LyLmMgUXXNZVlIhJ24vQGhnFYKrVwKtwz2VJ0KHDhL3AQUo8%2BhL3LRgK8zEpxDsSzhxlODK1YL2lNsMMMraOXnT2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc4c301bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /js/survey-site.js HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
etag: W/"6319dbbb-edd"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0lF4t8zl0mO8iOEjqhHkMXKv%2FeUJ%2FR91OubNpIK92Jc9n2iG8H9IRqbYq1o6xs%2B2u5HSLLd5JVza7FTWqD9g4UuopSPRbgYBoytUMXk8mi3EQDW04%2BHpVLyjdTVE1LJWF66G9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdc5c331bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /survey.html HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
172.67.71.106
HTTP/2 200 OK
content-type: text/html
date: Thu, 08 Sep 2022 21:56:56 GMT
last-modified: Thu, 08 Sep 2022 12:10:34 GMT
vary: Accept-Encoding
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wWFgJRQqhFVrfou5JAXNxpELU%2FgYarR7%2F6s9jVCgZkC2YFiS9yKtOJlE47MfqD5vJANmf5iI0vSNKqkIZ1%2BVNrpp4hsO%2FDgP25M9R5wfxmvaW7ffTf2F21FUwMaVga9hNUeaFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefdb2b5c1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
GET /js/survey.js?v=10 HTTP/1.1
Host: dollarsurvey24.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
172.67.71.106
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 08 Sep 2022 21:56:56 GMT
cf-bgj: minify
cf-polished: origSize=301658
etag: W/"6319dbbb-49a5a"
last-modified: Thu, 08 Sep 2022 12:10:35 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xl5GnkiPUZGFh8eLRbDwydZmra1o1jiTfIEU9feUOdySrUULNghjVxg3DQdG54EYi%2BgT7tAburTAcCn4idBMm10LumGO5tDJsy4B%2F7yC8JUVasrlcx%2BQLpZZNfwlJYIYzFHhiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 747aefde4d841bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
--- Additional Info ---
Alerts:
Blocklists:
- fortinet: Phishing
|
188.114.97.1
104.22.24.165
3.70.16.242