j6k.topsurvey360.top/js/v-react-dom.production.min.js.e83bb12a.js
104.21.79.173200 OK 43 kB URL GET HTTP/3 j6k.topsurvey360.top/js/v-react-dom.production.min.js.e83bb12a.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c045abe2654f983e8ff47660c3b596c6
64563091c1e1dcae3dda8a4bc4c335b7e3dda9ec
9cac2dd9f98306673ce4bbcd12a89d7e1131cde15c649ec65ce13543139f9cf3
Analyzer Verdict Alert fortinet Phishing
GET /js/v-react-dom.production.min.js.e83bb12a.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-1f8eb"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mHI8UaYLqr81xIydx%2BRT02cXdHCeOwHPMBVx8Xj4tDGyFYooSPcEruQcyoVNSutHvEmkdIot8LzXdndldVrfJAkxtID1nedMmjqG3rJKYyWkcCUJ84i%2F8Rr2Um9w3EqAXgXBh%2B%2FVFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a58410b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint74:B2:31:E9:6E:77:8E:33:B3:9D:61:F0:29:AA:AA:21:BB:5E:45:12
ValidityWed, 15 Feb 2023 21:34:45 GMT - Tue, 16 May 2023 21:34:44 GMT
File type JSON data\012- , ASCII text
Hash 9aef58db75201c00b2dad92fab38ea3d
9dfcb9a31655a97e2995568cec6d70a4a66aae00
8ee63d914346f6a6597554293e315a8b37bbfbf5ba0eea02f9d0e93765c6c11e
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://j6k.topsurvey360.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://j6k.topsurvey360.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=be0bd12d705c4a12bfc1ae1811c4e8e5; expires=Mon, 06 May 2024 14:01:20 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
j6k.topsurvey360.top/js/_is-browser-supported.5463af36.js
104.21.79.173200 OK 1.3 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_is-browser-supported.5463af36.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (1027), with no line terminators
Hash 5906b128cdce89550148c9c4141d1b30
0f377f03a3ed0f37c00139d58ac5e215412f087e
b6fe09a3a8d853d62c03a16fa8a8e2f5d676dabd4682bce53c06e3c675a0e459
Analyzer Verdict Alert fortinet Phishing
GET /js/_is-browser-supported.5463af36.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-403"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QgGFTz3JOwY1YZTuWDMb9OloqiffSrIaICQ0nMAHxCBOM0l1ltLAuQVrm7jddewyGBfnqJmnGH6klKQMn0J2KWwimQScy68oa9J7yQbEAedpoW4fE%2FdVhx81gAVXR1w75y1tzWhnZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c39eb0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/config/dict/cookie-consent-1.json?v=10
104.21.79.173200 OK 3.4 kB URL GET HTTP/3 j6k.topsurvey360.top/js/config/dict/cookie-consent-1.json?v=10
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JSON data\012- HTML document, Unicode text, UTF-8 text
Hash ba76d7c074fd2cd4f1967b5f82c77ee6
ceba4e1aa7f08ec2152736646235958d924970c0
8648444ab21f04728a67b4da55705733a3d5d119030e583a153da23345f8389a
Analyzer Verdict Alert fortinet Phishing
GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: application/json
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-1a65"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pl5iI0lGbvrNtUr%2Fsq%2BdycaMfgpKYEx6KXl3cU3OXd9V2Xu5vjiuVhA7efHsfaSH8IsN4y060H7xc1BLTskHApPwohjhhRIEu3Kj%2F2txNKzIhN892nUqQa%2B0eFfFmayqRx8n%2FeVNdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe9269170b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/v-immer.esm.mjs.55c239db.js
104.21.79.173200 OK 14 kB URL GET HTTP/3 j6k.topsurvey360.top/js/v-immer.esm.mjs.55c239db.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (10496), with no line terminators
Hash 77d3aba2b7b8cd89b67fe96149f7df7a
28202336d9b124c38caa32433161500ba33fb3ed
d4e75e7b315c0c667c087d44a2e4c9e587b170bf5ac94a9ed377620dc8bbe1ce
Analyzer Verdict Alert fortinet Phishing
GET /js/v-immer.esm.mjs.55c239db.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-2900"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Idc4AQtz26QYCISC1Da1xj5QWUOtNw%2Bhpyy3eTWY%2FxxVmNpYHPGUYUJ7J77EWyUlTz4QOToefCMIEYHmRRCDYtEI5B9Mn%2BkElZngA2ZQ62mhqJ86kjEXt5Mpe26Rx0CD83ShOtAnPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a583b0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.google.com/recaptcha/api.js?render=explicit&hl=en
216.58.207.228200 OK 558 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=explicit&hl=en
IP 216.58.207.228:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint22:2A:81:06:18:D1:68:C5:1A:F7:E4:D9:FB:DF:C4:9B:E3:FD:BF:6E
ValidityMon, 17 Apr 2023 08:26:19 GMT - Mon, 10 Jul 2023 08:26:18 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash 1a9df4958fab68039920ed0738d7307a
da3e6d32bee6e3692683b856e5572916c65f01f0
7c33ed469e4a988a4f015963c8776721b91e8098b41612c7679c45c21c2dd649
GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sun, 07 May 2023 14:01:21 GMT
date: Sun, 07 May 2023 14:01:21 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 558
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
j6k.topsurvey360.top/img/comments/unnamed.jpg
104.21.79.173200 OK 1.4 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/unnamed.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 449aaf5a54e3fe3aa4f0f5875bede090
b2b897362626700277b7f8baca8b1f292d08b7e5
4200f94af9e21196c339a50a85d3d50c769e8655857fdaf67df6e99678b9ad59
GET /img/comments/unnamed.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-562"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hpr4uqI3qgQE0SNnj4igYCM1wXLTUk%2FobeVk6f74%2F0%2BzRJJVjkFy8opdLRCpI8EZ9DBA5V5%2BC%2BGw%2BdYK7z%2F9wuazCtYGo%2BJyplASBiRrGaY%2FDTvvfAZPx977Qhe7ErB6PvEzr2rlOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe93ca6d0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-1.png
104.21.79.173200 OK 6.6 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-1.png
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 8f9a954bf05965bb41cf97a7ddb7a375
de9db936bbea75043e08a55d1f371678fca2270c
a787bd40650924a7bbc61d6ea0bbcaddae4b3129fd8028b68c3629210e41e26d
GET /img/comments/person-1.png HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/png
content-length: 6577
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-19b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sO0qsnS6qKj1yWsp%2BlRnqGdkiMPEC2GK7Cfjh7lhUfa8YK6KMdn%2BvT8JBp%2F2fsQApYh9TTGbCvl8k503WxoR%2BJG%2BWDj0h1MUxB63fef2t6jF3KTHVb15DFZ7Dw%2F4VxHrjxW8vRgdpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe93ca740b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/_rtc.4f1fcdb4.js
104.21.79.173200 OK 13 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_rtc.4f1fcdb4.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (11189), with no line terminators
Hash a56b4b4009d23d1caf479ec2ef973ed2
79cbdb1d00420a5aee6268fdf16049899c63c2a4
3373c7a9485f00fcc212f3fe7c8cb650d126ea5d89594ef7cacba08cf5356148
Analyzer Verdict Alert fortinet Phishing
GET /js/_rtc.4f1fcdb4.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-2bb5"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a8tCh5Wn0Q3e3Mo4U%2B%2BqbVVMw%2Ff2PMMNdu%2BPMZ%2BdMWA98gvSDLuuprcaqq%2FacOcxHOWwe0Kc9CoZdSbRoK1Ur2DncbgEPzITZa%2FLI9CSIuunRMk0pcsF4YzeC8b0TN%2F2VTERwzUM%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c39f40b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/_rtc.4f1fcdb4.js
104.21.79.173200 OK 20 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_rtc.4f1fcdb4.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (11189), with no line terminators
Hash 5625a6059d8f5f39b90f3ab1d6f9642d
a7be4ce2045c33d493589fb815421773e991067f
14e5b5563d8596c4e5f333dbb214b7d8a7904fa843054444c4252a1a87591adc
Analyzer Verdict Alert fortinet Phishing
GET /js/_rtc.4f1fcdb4.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-2bb5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z31crAZWtzlLqjcuV%2BnJftkk2xaFulyKQ1cqq365CUwMZXTLgwwaF1ARWLwvaVAjnQRNABOFGa9nyR6jfCDQu1jK7rkF7H69LWNMfl5w%2Fhg39JLYCpJctAF7ChihmB12PkFF4gcJfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a583d0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/s-storageService.js.24e15119.js
104.21.79.173200 OK 10 kB URL GET HTTP/3 j6k.topsurvey360.top/js/s-storageService.js.24e15119.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (2572), with no line terminators
Hash a9f144c7700ab024ee45c15a0f9ff51d
89e5afe3320bfcd028a3d67d8d9e8425cd306fb6
8e7eb98793545d60305132e0bc05859482f377b5788c206062ded2ea66c21735
Analyzer Verdict Alert fortinet Phishing
GET /js/s-storageService.js.24e15119.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-a0c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wRcWyOAZaxE8PiIVrKZdMgLoytDN6lz8qDrczwsEvlrmHRNfUyXjtC9ePOVKMe1DV3fOQW8FPz5qwE%2Bf0UNRB59nUOZbn8sMusNlF%2FzXV4jppc6d8VqTxHfWBQSkkuEPWNgi9ZX9NA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a583a0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-12.jpeg
104.21.79.173200 OK 3.5 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-12.jpeg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash c937339f4ba54ff7dc150b9865c29084
44206828ca23cbed303193bde1dfe47bdc532972
8e872daac17de58d352c9f4082e6e35af76a8b2138c142a8cf0fbacea195c73e
Analyzer Verdict Alert fortinet Phishing
GET /img/comments/person-12.jpeg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 3519
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-dbf"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KRg%2BkAf06sHq%2BlnounKJ2OGEng4FNbsO3mnnToE0LACDw2ZeUd%2F6rI0YplsdBL%2B%2FW%2BBGjzX40utQ2DOKHDMhLK%2Fr2ckWR6dIUEIilV1%2FEvJCIfsLXfwiYpPIl3ZP50fjLsEzcC380A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940ab80b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e7deb6f71c33df266ec8f5bb6ed1a380
ecdd4d0ff3913d9f1969d9fa4d57769f0f57077a
ec3d6088ddac595cd64bddb0bb011f749f150409f846533bd364c1c03f8120d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 14:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
j6k.topsurvey360.top/img/comments/person-3.png
104.21.79.173200 OK 7.4 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-3.png
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 2f62e53b6333bc904be22a37a1fd0ace
6e972fefcbe0193d9b28817c47c1ceab2a0235d1
9128194f1b1bf44435a3e80f994157b94a40a3365cd8f0794dcadb41a24c3b41
GET /img/comments/person-3.png HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/png
content-length: 7368
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1cc8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cSxO1A9vkHOTdbMnetqTrq7UArwjKRw90M7JaQ9T89X23oRvpl299k%2BJ6hKgpK7u1YtbZodN8JatdqIPQNqnLWSpmouPitz2yfyeBb0E%2Fv5EfgDzJVtnl5ij%2Bb2pqFIcpAYr2J5VWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aa50b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-14.jpg
104.21.79.173200 OK 5.4 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-14.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6012ff0d59aa6a34aaca1ea8f2fa88fc
ef59662c9b666106486039e9f1deb40fb4a8ff77
2c020310e91430067c7128425f14ac0ff1710aea5e67c144a8fceac46311182d
GET /img/comments/person-14.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 5392
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1510"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=usm8sXdAzemhiwqM%2BULfY5gt002o0CC1lKOxEfzDMfQqe09ioe%2BHMv6BLXbxOecwNx67pU4%2FDCLz46eXWHgezYzsmugXlrrqc%2BhY1Hs8v2D6rbMgzY%2FVB3AGIV9vcKwB83X5L%2Fz%2FnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe93fa9a0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/_global-config-sd.00b2116e.js
104.21.79.173200 OK 49 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_global-config-sd.00b2116e.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (1042), with no line terminators
Hash d2cf0eea96a2730325b23198d1c6522d
3cc0ed5be6d243ad70baed7dd4cc141d9f33ce52
1ba57bb2aa82f475c71d9918fc044a6a28d7aa6303023b8362fbf4bba669b8cf
Analyzer Verdict Alert fortinet Phishing
GET /js/_global-config-sd.00b2116e.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-412"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0wkqcWGAOK0dI9ZSNuWlTUfklu%2FSEUliDot0IFC2mEGpI9RK2Oo8bLZEwqAI%2BFhY4KZv8%2Bmt3iTTKNLE0wCW0QXPirHTpzDPuK0jhCt%2Ft9tY8KNZiCoinDw%2BPyE436QskgiAUlhzug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a482b0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/v-redux-toolkit.esm.js.42d1b656.js
104.21.79.173200 OK 25 kB URL GET HTTP/3 j6k.topsurvey360.top/js/v-redux-toolkit.esm.js.42d1b656.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (11317), with no line terminators
Hash 1d41b9c41f341311832f4318309674d4
d4673302d28c37b4bcd42e608716fe12965a92fa
5248e8f3a1e077e5e7e131c85b22baf11ee78c6bd0d8d12498c64c653fe2762d
Analyzer Verdict Alert fortinet Phishing
GET /js/v-redux-toolkit.esm.js.42d1b656.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-2c35"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RDH5MHKT3eQyOWdr%2FZzUg%2Fs%2Fhyn1RZe8gPd7gRI3pxVQq9m%2FhrCHR9UuW49HrkUCDCfBuweC%2BGZhI%2B4RJINsuSLJWwyi1tiHBeazb%2BHKlybe6IXy%2B4UMyunbRXr1SumI6OmVEjwr3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a58380b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/v-index.js.9b795027.js
104.21.79.173200 OK 22 kB URL GET HTTP/3 j6k.topsurvey360.top/js/v-index.js.9b795027.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (40285), with no line terminators
Hash ce0cd2ccfc412c68e2f40ee8c98f30b2
c0a470d91f1428aea9aacc31a55f141363381f4e
c4aa6191cdcbec768e032b69238f3d2c4855258f399ee540e7e0c906b6bad838
Analyzer Verdict Alert fortinet Phishing
GET /js/v-index.js.9b795027.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-9d5d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S72gRE5KtLAvkdr%2BrIHBVT6L4lsXhfvyBg7DHHcZIyl9904ljgm92fvmjVKmzSdBZ0%2BAT9VWwAs73sD%2FOxlyfJtk8ZO7xh8vc1ambe%2FvBqo0BOqo35TThG40qKgQWMwXG7q9CqXD6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a583c0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-4.jpeg
104.21.79.173200 OK 2.7 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-4.jpeg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 6cf64555e2de0ff8b5391081b648b89a
a32008bacf7f8cd3859eb86c6c8d36eeb15dbdf0
d4f513bf3a5691b900739cf79285d18ef09ef4b81eca648261b15a693d21818d
Analyzer Verdict Alert fortinet Phishing
GET /img/comments/person-4.jpeg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 2709
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-a95"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3lB5ZMwcF0%2BfJ7rO10VK7cTQQFxuFc166aeufVw4xPFYhPu6QEyYWED0gJOsn%2BjC4qDj0Sdh8XRpV9zsDWkkBSnqy1orNlMDaBknAQTTSeBzObjvcuEnVxkQ3a8RjJ8vrflji81HgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe93fa9e0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-13.jpg
104.21.79.173200 OK 3.2 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-13.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash a3364ed9e772ae6f696b814072001bf8
b8f34c657c31bf1e4d42b5d864b2519493d80e92
88f30b8552d0ab928d895390b337a0049405f3b1e8446631e606ba787e1205e1
GET /img/comments/person-13.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 3172
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-c64"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rzZh02C%2F6gDOQYhIx2b1CrNOaXeZA7kslgve5hEPFx8JsVf2rCf56xqxIMeryYzNHBRvYqwm6ZfuZyu9ZqFeNJNq8V04hzmSfGvTJbOFjQaaN1e3j4bfjZP8JUl%2FSQVV1u692TMJUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940ab90b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/v-index.mjs.0d8adb16.js
104.21.79.173200 OK 68 kB URL GET HTTP/3 j6k.topsurvey360.top/js/v-index.mjs.0d8adb16.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (35051), with no line terminators
Hash b7411206cd4d9242deffdafa9e49b698
35c96854f510624925f375d18eae391ae94720b5
96ae2c2707d183328939aec97685b65fa733ef44520deced2ef49b8ea19d570c
Analyzer Verdict Alert fortinet Phishing
GET /js/v-index.mjs.0d8adb16.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: application/javascript
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-88eb"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r4T0AxGV1mKssFHuMPvzwVL5pSZk3tj5QyikZ1ewkUnemU3DkK1RQA2qI%2BzSFjQDep%2BQ80JBthDnCFGBjhx1Zah%2F4kSBFKNDnPW6nAPFwkEiFSD8%2Fgcv0RtSLjb6aQmM08VWk1ZEqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8a583f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 14:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
142.250.74.67200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
IP 142.250.74.67:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (624)
Size 166 kB (165536 bytes)
Hash d0689623f131fcb540b6b70ff1c8b55a
50726cae90a7d1cd36246d1d929a2ab77a785de6
345aa90fb35c263b36c1fbe3dbe0d4151029eb80bebb0b759b5344960e950883
GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://j6k.topsurvey360.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 May 2023 14:02:44 GMT
expires: Sat, 04 May 2024 14:02:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 172717
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 14:01:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68 471 B IP 104.18.32.68:0
Hash e2b7d2b9ae910143de872991a742aae0
dd656ae7f6aefe95ff9130f1e66a93255f5f3497
9772ed7d4c8e46b25d45160c87d755ff851c7ef9bbba34fa0d784ac62c8596e6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 07 May 2023 14:01:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 04 May 2023 05:19:52 GMT
Expires: Thu, 11 May 2023 05:19:51 GMT
Etag: "dd656ae7f6aefe95ff9130f1e66a93255f5f3497"
Cache-Control: max-age=313709,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c39fe955db8067b-OSL
datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
139.45.195.253200 OK 12 B URL POST HTTP/1.1 datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a
IP 139.45.195.253:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerSectigo Limited
Subjectdatatechonert.com
Fingerprint6F:17:15:C2:7F:CC:16:6C:9D:C0:AD:C3:EE:DA:69:61:8C:77:0B:5B
ValiditySun, 18 Dec 2022 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1311
Origin: https://j6k.topsurvey360.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 07 May 2023 14:01:21 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://j6k.topsurvey360.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
j6k.topsurvey360.top/img/comments/person-8.jpg
104.21.79.173200 OK 5.7 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-8.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 6b10e71656e51e27520e854712b44f1c
f78b92dded977e9f275aba726453138155420bcf
64588485da7d470991fdba6c20a6d05c7ad39f92cca72769a95cbe3d873e8edc
GET /img/comments/person-8.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 5748
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1674"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z36BmvpItq6%2Br3k55IHP7xQnw6mEbFGyIxNRA6Gj8vzccGeDSSJwbVwZLysMfT2hy1ylwFOQUCvNjCMik689ZFVBGAuh56sk0yHF7DkcVyVEyrNsDOFaFCtUWN7HdjBTLkzwMXhQdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aab0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/favicon.ico
104.21.79.173200 OK 1.2 kB URL GET HTTP/3 j6k.topsurvey360.top/favicon.ico
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 668ba1a9fa1890ba16cb8adc28d3dad8
5e35223b2541265114eaf61b9da2556c812fea17
7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2
GET /favicon.ico HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/x-icon
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EkdAnb2qlT1h3BnEr1cAOvSY%2FOnqjTgaFruBINQ3MPJ8S5HbqzS6oB%2FXfuLJfLzcublzWGAJOgsHhsthoJ84aRGmIqxsdL8lbPimOTMKdxJCOKV0OQvkXMtHn90Kl6R9NaSeVe6rsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe959c2f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/_each-land-config.c6bfbc66.js
104.21.79.173200 OK 52 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_each-land-config.c6bfbc66.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (51675), with no line terminators
Hash cb70910d7d66d0381406c99dbb671e48
9da320eb097633a90e6dd174af65488c5db4af05
733cd3a65184db19e7fa4af85a991d6ea5e4c6a2396738cf1f6354a97b7a3e7e
Analyzer Verdict Alert fortinet Phishing
GET /js/_each-land-config.c6bfbc66.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-c9db"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uRN6IQnZIqsqOn94EOUcE%2FRqZ9Om4pEmscf0LtwgvUNZqXDwtP%2B9Q1lzfu7s72IrAtl4eUk%2F0rD%2FS2kzRQesbtK2Ym6%2FXQDehydXM4SnJNU3Ew7O%2FsTqpeAd7yILi20o3DrSW9987Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c4a070b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/_core-survey.88ddec94.js
104.21.79.173200 OK 208 kB URL GET HTTP/3 j6k.topsurvey360.top/js/_core-survey.88ddec94.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
Size 208 kB (207650 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /js/_core-survey.88ddec94.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-32b22"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ryRO%2B9tgZo1VJM6hA4i6MX%2FqLlC6J5SRZ28bF7Ljyr0EwlieT1aeX4lA7M08J%2BNZfu7Vj%2BvAyrhUlgqKsE4zXrbT5vvBhH91o5eCQiuV8Wa65CnAFoITebYIsjYpp3VsEZZvh2VfJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c4a140b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/css/_core-survey.26c0898c.css
104.21.79.173200 OK 3.2 kB URL GET HTTP/3 j6k.topsurvey360.top/css/_core-survey.26c0898c.css
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (3187), with no line terminators
Hash 2e6143d07cb0a0273cd0fded0cd7b430
4853285adf3a468cc8a42b1c6f17d8353cfef896
f2690b871425a66071365ba5be475a5089e8074dbdab7df95a71bbee62e2f5fb
GET /css/_core-survey.26c0898c.css HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3194
etag: W/"6454ed7a-c7a"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7s5G53Tv%2B9EoaIM1wAYr9lQ8lgOPe9QiOvgLMulb2giJ8S6Ty5SI3616S8MSMI0Pt%2FWrJlyLh%2FYkdbUbMv%2FVH1iZCR4EZnjap5KAWvVsATcSftGqhh%2BJiyJzbzxpSw%2FdbDAWrwhhxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c5a250b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
104.21.79.173200 OK 4.7 kB URL User Request GET HTTP/3 j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
IP 104.21.79.173:443
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4929), with no line terminators
Hash 28c4fe972543bf8b1b9353b88bf20f61
4b221c1a3610d96f9a938eb64f7cf3429a7b8d65
6c1a46b01fd630c4b5a4137e74f2ed6b067145ea7df38f2f7e4183aebc68626a
Analyzer Verdict Alert fortinet Phishing
GET /finance-survey.html?utm_content=zd_public_v2 HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:19 GMT
content-type: text/html
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZJN8vG71Ry3YNleIrqE6ibGwEMkb0AWcqQRVfFQg8iLmNyiYpxpGnb%2FQJVzWxcQwFOOLUXv23YczB6SbjtwMj8pywXidY%2BwqA2gamCzn0iHLmch3TSRGB%2FXZM90FDZsW5TUUjdpVJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8b69270b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-2.png
104.21.79.173200 OK 6.4 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-2.png
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 3e6eaea87b2891590972dd11373b09a3
f038c6e6306ca708defa2b601bf9477f0cf78a3d
15aadd2e7f4f83e79f35e760da382fb8b5045d2cf506f531bdc15b7b27f699a5
GET /img/comments/person-2.png HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/png
content-length: 6428
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-191c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kPRHpAcA3G63h4506ChzTUmVCvaHU0fCcBgHkAb6MX6MoMLMCQHyvWH8k99gik5UC3AIQwoEk6W%2Fb6Maf8ezDI56OPZwo2nQHu62qof3o2DMyhjcGnxprkt1B9xgNSN1nSjxli8Qdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe93fa9c0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/config/comments/en.json
104.21.79.173200 OK 4.5 kB URL GET HTTP/3 j6k.topsurvey360.top/js/config/comments/en.json
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type Unicode text, UTF-8 text, with very long lines (5176), with no line terminators
Hash 0f8a677240ca082b8875f3c8d3bf5c42
19641ee3e340098b44d1d248e7c1a99dd0daafdf
2f5cff997105c8b995ec55f36e2656e14e1676f23244471f6115bc1d04c821c1
Analyzer Verdict Alert fortinet Phishing
GET /js/config/comments/en.json HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: application/json
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-11ad"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kb7hGVdFNCwzwVWqp%2F2afyBxlyqpcEL6an%2B1aiWiSEdqyx44nt67dqzW3aUz89gGujGH%2FDJw7yLsX%2F4VMURCnbuRqiU5Voe%2FoCzfnwgtQ7x8BjLFG2zVK1n9PIPIRO8wDeGPQmJxnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe9289270b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-10.jpg
104.21.79.173200 OK 6.2 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-10.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 044ab37551bfe632f53b8f15d991f36e
77fdc6210608e5e36e1d36ac7fd867104cb20d9e
36adcb32026c016feaff678063911fcc9e7985e9f0c56bb1daa776f98964ef91
GET /img/comments/person-10.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 6178
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1822"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ndRbHPaK%2Fl%2FnzlA4gncO5BEC8c7Pu8IzXWGp8I4rc2R8mnP1elKD9Mm5tz7UqDSbSUHnElsUgsRFJhyqO0lS7oYVOTI%2FYmOCMBXfdmjS6%2FjoBVnHAk%2F3vg2%2FxneMh22ydMuemIRPiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aad0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-5.jpg
104.21.79.173200 OK 4.3 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-5.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 21fd6ef6d69b527c02e92a8c23d28d52
5980b75edc23f7fa2f57fa257cb67c9efb86fa58
f37490dbef620959d7124e3de027c5b5c43a57dc90737163947a6725444051eb
GET /img/comments/person-5.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 4333
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-10ed"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IPZ39h%2FcYgik9CZtWylCDR%2B1FiDMduBjIY6IpquN%2BrRQ%2By1Im11AYmzD2IOGjm1sbOxNnWwDSdcpzvpTbHEbDDm%2BkS9c%2FjWLFGO%2B070wR0M4CUI0z3wdYWV7cRZtEyfZFrBzZthLPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aac0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdntechone.com/stattag.js
188.114.96.1200 OK 18 kB URL GET HTTP/2 cdntechone.com/stattag.js
IP 188.114.96.1:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint22:B1:48:87:A8:EF:B2:9B:65:EB:D6:C6:FD:8D:EF:A7:A7:DE:52:29
ValidityThu, 26 Jan 2023 00:00:00 GMT - Thu, 25 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (17823)
Hash 5c95ffef354b8177b1fafe6602dc82d8
efa7460953cfa1684507c2eb70db4402fc04ec4d
3d45b2164e7d4b3463daed6795455b3a92c97f008b419ab071c7298d02171144
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: application/javascript
last-modified: Mon, 06 Mar 2023 09:49:58 GMT
etag: W/"6405b746-4829"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1696
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2RlRArSmQz7fbdQrHpu%2BWjBsFbgAavqxLQVhzpVQKaBWJpaClGkHDekrTfAp1OBuMyBrwN5VoH1aJ7unuROY17RwDlf%2BsFen8wId2uueE0EDnILa5HODFgNbhdz4fINjjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c39fe92ebb00b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
j6k.topsurvey360.top/img/comments/person-11.jpeg
104.21.79.173200 OK 4.2 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-11.jpeg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 3924bdc784dc4947f52b779aa4d5a0aa
1e3f3fdd99490addd60014aa7327fe27c6bd5589
b3f882f57f9a213d85eb1c5c6a8a1451bd16dfcd9e4bd00e0a74584422dbd950
Analyzer Verdict Alert fortinet Phishing
GET /img/comments/person-11.jpeg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 4175
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-104f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MrU7QXRfFo5PeY9YzbBcq%2FhV5HSt3L%2F3IZMNlOd4%2BubdgTzoik5GdQMSwbrB63k6POSjvFrhyyqR07SPabZDW9p4ezsbOifVwGvleNBE2jIAcHfUkvpezDEqu2yOqODBPUHHMiKABg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940ab50b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/icon-survey.svg
104.21.79.173200 OK 3.1 kB URL GET HTTP/3 j6k.topsurvey360.top/img/icon-survey.svg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3164), with no line terminators
Hash be0098d1d8838c0172c3107086338256
924bedb900cfbbf46aee1acc68b09666d1cd08b0
cce75f9c57b1c4430adecff06f7575ac7316c3381477a841f557646d0ac6af8a
Analyzer Verdict Alert fortinet Phishing
GET /img/icon-survey.svg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: image/svg+xml
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: W/"6454ed7a-c19"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPAV4UBuYQz4Wga2tI9AeI4slYwMtzQisXhZ7Nvk5%2BFNWuCSw2MQvOo%2BpG%2F19CJZV6Vj2Iou0dcJfLcM3GhyQllP96ICNV4HPqibVJq7AGvOBRZhWhTMApcv2%2BCqgONx8Z8qB3ePzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe913f8c0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-9.jpg
104.21.79.173200 OK 5.2 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-9.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 529370f9fd3b0f4da6c81ca91a931155
1a4c3e0e7af1ce30dc2ca18d48b5fc3f1b40aad3
cdf1b8dcdce4e9b76157ce90e086ebafb100063eaeb091e97087d97f5d0fb50b
GET /img/comments/person-9.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 5190
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1446"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3NQi00IpE3sF9UQj7gfkDMzCoivMBCNPcEnRj%2Bq2uM9gfXVjMUhzlm3kcfwKKNDN1eiqNkhQZp2TT%2BIbOiIkRWjioPmyxoFZ4HLtVcmnTHRHzfIxq7wtwKZNGyN6nzveNilOAVXSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aaf0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/css/survey.2bfeef83.css
104.21.79.173200 OK 67 kB URL GET HTTP/3 j6k.topsurvey360.top/css/survey.2bfeef83.css
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ba8ddbfa60d2feec516710cd5de1746d
9ddfc2f60deda512e71fa888c546c4300e3a530e
04ea2783c47b74e28c9583983c12e1ea4ac25e5ab50f0270829687607a03a782
GET /css/survey.2bfeef83.css HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=66591
etag: W/"6454ed7a-1041f"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sztmE6V425U77Xeeo4UpDiODeEsU470jWZ6WLtC4uQMuJR5bap5J7nOJ0rPjqCrj72OEd89mezPPb18DGF%2Bo%2FSYdxjOy%2F0eno%2BOoPRAyI2u5cx21sqDgpWQy%2F%2BQ2F9QbCzGRRaO2RA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c5a2c0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/img/comments/person-6.jpg
104.21.79.173200 OK 4.4 kB URL GET HTTP/3 j6k.topsurvey360.top/img/comments/person-6.jpg
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash be9ff88491a5bc0745579a3813eb2cbe
870f88a7fae9fdd928af33f47c5ffdddc6a4082b
698d413ddf6b2ec37acf0e982237d239bd912cb097e243cb355855ac2b8548d3
GET /img/comments/person-6.jpg HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:21 GMT
content-type: image/jpeg
content-length: 4392
last-modified: Fri, 05 May 2023 11:50:18 GMT
vary: Accept-Encoding
etag: "6454ed7a-1128"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qNXxguMG5pZYTWmRQybrO5eUyKpgvBhTebqgyHH1GVG6Gulns751f1UWd2RgSEIWA4XUslDUt8Mcn3dIIzQ8cOiUOHP%2BiaB2WxbsEH5ZGB8AyV28z%2BfhEvSRn%2FtiDFZ0eZIk0ZHE7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe940aa90b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/survey.7cf777d3.js
104.21.79.173200 OK 5.4 kB URL GET HTTP/3 j6k.topsurvey360.top/js/survey.7cf777d3.js
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (5583), with no line terminators
Hash 6ee6c4aa9cd922efcc584501b9728c6c
84d58fd39b9dbfad73dd9f99195b35ab4f8aec70
9e3635269ca25774818daf2614ebccec09dd5de363325ebb989e12813c0cf4c8
Analyzer Verdict Alert fortinet Phishing
GET /js/survey.7cf777d3.js HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-153d"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zBCnepbpWvzToomfb7PnnCWx90wcO37b02mFWQX0nQRvJuEIj1p8Ei3fajvd%2FSSoJMs2w%2BnCNUUwnpEo5HWz1055%2FMHZHL9O%2B5cJ7fqpKbFMmsMt10VwyLR5PwjucAFx6A%2FBWWX%2B3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe8c4a160b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
j6k.topsurvey360.top/js/config/data/sd-1203056.js?v=10
104.21.79.173200 OK 8.0 kB URL GET HTTP/3 j6k.topsurvey360.top/js/config/data/sd-1203056.js?v=10
IP 104.21.79.173:443
Requested by https://j6k.topsurvey360.top/finance-survey.html?utm_content=zd_public_v2
Certificate IssuerGoogle Trust Services LLC
Subjecttopsurvey360.top
Fingerprint4A:2F:55:8B:76:99:65:8F:48:CB:A2:57:FF:D1:61:AD:C9:A6:9E:98
ValidityFri, 21 Apr 2023 14:42:48 GMT - Thu, 20 Jul 2023 14:42:47 GMT
File type ASCII text, with very long lines (8479), with no line terminators
Hash 76ffa5bfeaaeefc37b9bddd1efe7998f
2ef5462e8007bf1bfd8bbefcbab935c69245af67
549e06744c32a3d2fb74359080ebfbfe00259347cc52743c35945486e0544f71
Analyzer Verdict Alert fortinet Phishing
GET /js/config/data/sd-1203056.js?v=10 HTTP/1.1
Host: j6k.topsurvey360.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 07 May 2023 14:01:20 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"6454ed7a-1f26"
last-modified: Fri, 05 May 2023 11:50:18 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AkzKFCSpqdCTBKm%2B01BVBn3%2F76yMEuAHX4ROJ07zk0FA2uxpjjWvifrANGoj1fdj0IvWERhQLhQ5UZgXs3asIY0cSe3BTDWfc4k13Z1KeWTeymF0VibrZg6H2qNhQmND3bvRToYdSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c39fe917fe30b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400