| code.jquery.com/jquery-3.5.1.min.js | 151.101.130.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.5.1.min.js IP151.101.130.137:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 19 Apr 2024 12:06:01 GMT
age: 3485203
x-served-by: cache-lga21981-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 19743
x-timer: S1713528362.914999,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ | 188.114.97.1 | 200 OK | 31 kB |
URL User Request GET HTTP/2ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typeHTML document, Unicode text, UTF-8 text Hash6495ad119ad4ebc9459c145968eadaf4 df100abf7ea8c3e7ad96452c73c99d570009dc56 c478bc86446ffcd9bde901c5695df502e84434f0e69a18922f5390da46dba71b
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 12:06:01 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ezTovPYjMucwaMj4zY7FO6H87Y8okwsLbPDkUlM9%2F21H%2BsmZjWneIU3DKpebCtKGbpB69wZqzf3ilJYw5Pwz8yLPQLzpr5j%2FpexEfWgaCJHCHYZgd%2B8EpVvzlArFzDnzLmU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876cc423ae7eb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js | 104.17.24.14 | 200 OK | 8.9 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js IP104.17.24.14:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (26997) Hashf38113141ba37f6d39da0f22fb96702a bec789ca106293f96d2cf31285236398776b911e 64cb11eb2a5237cbe1e05ccf25acefeed578f32d1a6923d58de35c8a0145e8cd
GET /ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 8889
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f902e0e-72d9"
last-modified: Wed, 21 Oct 2020 12:48:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 745828
expires: Wed, 09 Apr 2025 12:06:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p3O5bl4Ygi7lsBSdi0jsM6mOvvuyNRjWyHEUWwJORdzIG66otUDorlSrp8ZkTswst511w4EzCAWpjoLI%2FchN%2BZyxNER1lKr5XO6PQU2QvxAUj%2Fk5ws%2BVezRNJ4StfH9ArxGjTSpi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876cc4277916b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/utils.min.js | 104.17.24.14 | 200 OK | 44 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/utils.min.js IP104.17.24.14:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashe8a9b2127b0197d558dbbbcb99d80973 cb793f12ac3b8f7ac9cc69c9581bc2dc5d439ad5 cd5ab58bf994afd3ff9a1000a9a22c9619b08dda258ddb055e2d34bd41bd97e6
GET /ajax/libs/intl-tel-input/17.0.8/js/utils.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 44414
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f902e29-3b7cd"
last-modified: Wed, 21 Oct 2020 12:48:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 327672
expires: Wed, 09 Apr 2025 12:06:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z7ZTgSYPUw87yyXm6QDpA%2BL09BGYQkqqC6gaPt%2B%2FlEbVNfLvbbUBwbHm5odSA4FzENvHsJxXBWH0b74BgaL7B9RkOKFsam%2BeSwsXbfZ2T%2B%2FwNdr5JxSyIRPnDbG2tEkiEn3HymlP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876cc427791cb4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css | 104.17.24.14 | 200 OK | 2.0 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css IP104.17.24.14:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hasha69aa970266649e0b08c2cb4bc166568 d9314a52085a2bb6d284421bb18a4c546ecb73d4 ad32b1248207ba91fb945a37d38e7c9deafcba849245872203482db42930d491
GET /ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/css; charset=utf-8
content-length: 1970
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f902e0e-62a6"
last-modified: Wed, 21 Oct 2020 12:48:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 330573
expires: Wed, 09 Apr 2025 12:06:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tzaEnjTZQNvxUus9tv83eUincEViJzsz3nrOT3zHCfYmNq2GH0zBqLa1XB1wRvfI6846nqCJk%2BWahK677Pbm16QAWKiucVtTqea0e9ArdvX%2BsOq4tOQlEGb2taucpqUR1FwtXiAg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876cc427891eb4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/logo.png | 188.114.97.1 | 200 OK | 13 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/logo.png IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typePNG image data, 807 x 324, 8-bit/color RGBA, non-interlaced Hash5f908901e20749b364d0f061c34e430b a05411e6cb008d3fbfe47440d251ce721073f84c adcc726ea7bffda30b0f77f6077a3408338a814ae146d15c9dd8b9c99b8e7138
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/logo.png HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}&
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/png
content-length: 13209
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: "65d62f11-3399"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XbsfVD4NQzmAB%2BqpL8F2FValYDIXcNlMsZZjxKfabbEB%2FypEFWwcTW1UvpwSSPc854Fu%2BYq7porw54KuYcf7irQFLcCviWTmg9xzbXtVKgdJ8aHPhPyrRBogvg79VFcFHrQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4274a550b3d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:14:58 GMT
expires: Wed, 16 Apr 2025 02:14:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 294664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 273690
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 | 142.250.74.163 | 200 OK | 27 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26736, version 1.0 Hash8404cfed82d322c1be8e149fd9f40eb8 3e3657246db3b889e68d520904ac294a230db56d 8f76526e440538ec1300aa89f671acd1b746925833f7160f6c0e29443008f97f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:58 GMT
expires: Fri, 18 Apr 2025 17:21:58 GMT
cache-control: public, max-age=31536000
age: 67444
last-modified: Thu, 14 Dec 2023 02:00:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 02:14:58 GMT
expires: Wed, 16 Apr 2025 02:14:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 294664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 | 142.250.74.163 | 200 OK | 21 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21288, version 1.0 Hashe648b4f809fa852297cf344248779163 ea6b174e3bca31d6d29b84ffbcbcc3749e47892e 637f545351fbed7e7207fdf36e1381b0860f12fffde46a6fa43bdafcc7a05758
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:45:34 GMT
expires: Fri, 18 Apr 2025 02:45:34 GMT
cache-control: public, max-age=31536000
age: 120028
last-modified: Wed, 13 Sep 2023 22:43:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 | 142.250.74.163 | 200 OK | 21 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 IP142.250.74.163:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21288, version 1.0 Hashe648b4f809fa852297cf344248779163 ea6b174e3bca31d6d29b84ffbcbcc3749e47892e 637f545351fbed7e7207fdf36e1381b0860f12fffde46a6fa43bdafcc7a05758
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ai-usmhigh.shop
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:45:34 GMT
expires: Fri, 18 Apr 2025 02:45:34 GMT
cache-control: public, max-age=31536000
age: 120028
last-modified: Wed, 13 Sep 2023 22:43:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ipinfo.io/?callback=jQuery35109801268685460887_1713528362429&_=1713528362430 | 34.117.186.192 | 200 OK | 672 B |
URL GET HTTP/2ipinfo.io/?callback=jQuery35109801268685460887_1713528362429&_=1713528362430 IP34.117.186.192:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectipinfo.io Fingerprint9D:3E:28:56:62:A9:9F:DE:23:E2:E3:28:72:EE:AE:0B:F3:A5:C0:63 ValidityTue, 05 Mar 2024 21:14:09 GMT - Mon, 03 Jun 2024 21:14:08 GMT
File typeJavaScript source, ASCII text, with very long lines (391) Hashca72ed0860828c3a38da20f8d6c84e38 26e21322b9df9c60a3a13b79473ee4d5e3336083 36241877c14813e85d2c2f1787239a624adcd71ea703bc6852f8b85c05da1168
GET /?callback=jQuery35109801268685460887_1713528362429&_=1713528362430 HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/javascript; charset=utf-8
content-length: 672
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-envoy-upstream-service-time: 4
via: 1.1 google
strict-transport-security: max-age=2592000; includeSubDomains
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap | 142.250.74.74 | 200 OK | 233 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap IP142.250.74.74:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Size233 kB (233158 bytes) Hash80fb6a7d490f4512350a8f2a38379295 35dcb8bfc7420ebc7ec7359bce28026a9ea2600a ca0503149f639ea84fdaf4170345d3c913ff0d436801be1a86db3e15e17e0893
GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 12:06:02 GMT
date: Fri, 19 Apr 2024 12:06:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/img/flags.png | 104.17.24.14 | | 71 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/img/flags.png IP104.17.24.14:0
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typePNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced Hash416250f60d785a2e02f17e054d2e4e44 21572c9751e5a3dc20395befa0fcb349c32c4811 0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
GET /ajax/libs/intl-tel-input/17.0.8/img/flags.png HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/png; charset=utf-8
content-length: 70862
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f902e0e-114c9"
last-modified: Wed, 21 Oct 2020 12:48:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2549612
expires: Wed, 09 Apr 2025 12:06:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J2j%2FUp0ypv5qH2%2FxV60O5IGKhMS%2BHWbSm3fcRQ7BgBvup4XZdbVCv64rApGUSwx3iZUUtYEmNhPbqXSnXHZOPQoUW8liEW7aq0HxdWOGz2KS7AZ%2Fp5oKewWAmHwuNn65fDvqQYjf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876cc42aba45b4f9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ipinfo.io/?callback=jQuery35109801268685460887_1713528362429&_=1713528362431 | 34.117.186.192 | 200 OK | 672 B |
URL GET HTTP/3ipinfo.io/?callback=jQuery35109801268685460887_1713528362429&_=1713528362431 IP34.117.186.192:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectipinfo.io Fingerprint9D:3E:28:56:62:A9:9F:DE:23:E2:E3:28:72:EE:AE:0B:F3:A5:C0:63 ValidityTue, 05 Mar 2024 21:14:09 GMT - Mon, 03 Jun 2024 21:14:08 GMT
File typeJavaScript source, ASCII text, with very long lines (391) Hashca72ed0860828c3a38da20f8d6c84e38 26e21322b9df9c60a3a13b79473ee4d5e3336083 36241877c14813e85d2c2f1787239a624adcd71ea703bc6852f8b85c05da1168
GET /?callback=jQuery35109801268685460887_1713528362429&_=1713528362431 HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx/1.24.0
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/javascript; charset=utf-8
content-length: 672
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-envoy-upstream-service-time: 3
via: 1.1 google
strict-transport-security: max-age=2592000; includeSubDomains
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& | 188.114.97.1 | 200 OK | 18 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (583) Hashdf22ffe7e84fa2d89741fba06c0bcdb0 7e994c03c298c37e300e667d3d2828c2f5309515 133fee38acd6434a48797d33b408f233b7345c3a0f96d136cb32388d78c43bbd
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/html; charset=UTF-8
set-cookie: subid=%7Bsubid%7D; expires=Sun, 19-May-2024 12:06:02 GMT; Max-Age=2592000; path=/
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qZBtNaGVstGzygd2OL29FP04w7XX6DMqNg3POt1FBzNL%2B9X6rk%2FFJeudeVlgt2n2fjXpuferGCGVlZ4GZ9CvHx6hDUOG9W8nmUR7lDfCYX4y4DDtTCPxW7LzkU44ZfUFRKA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876cc426897a0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css | 188.114.97.1 | 301 Moved Permanently | 8.5 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
Hashd0e7d7d1d0856399189c402152deadda 6554e66b1e3a3ca9e9d14ec3874ff2f55223b346 8f048ef385779d3bb0926259f1288f8f56e49012378ff4058912c4c017e9eb80
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}&
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/html
location: http://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1AutddM%2F2zezXzze4YOONTTUnGAtizGGhHHjFUMl5z%2BfC8Q%2BgnsWzzpCmts3mhU%2F3qATWLzZ9DH%2BeHScMcSOyEAfuEBG%2FLAiC5kVOBnioIbEcFzA760Q9HtmNUh2ycjUcfU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876cc4274a540b3d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/favicon.ico | 188.114.97.1 | 200 OK | 5.3 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/favicon.ico IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/ CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typePNG image data, 225 x 225, 8-bit colormap, non-interlaced Hash0f1bcd199f0a5e6d976f5220432f3feb 269b37848997700270c755f1dd2f3eaba58f6478 225374ccd7369c4ee37da6a34d857b4904fb02f36dd86a112feff6e35a8b40e6
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/favicon.ico HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/x-icon
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: W/"65d62f11-14b9"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L2ukUylSr1v7WDJFZO0ChbK2qEW0gRM00vuEE5wQLXYmDyFj8LERFVhyNY2FIRLlb4cDDGD4ONQZ8WBgvzYtEZlH5FFf6EvguzknRqWObmIv27RvjdFk4Mqc%2FXuaZFwvTG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4272a460b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Right-silver.svg | 188.114.97.1 | 200 OK | 856 B |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Right-silver.svg IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typeSVG Scalable Vector Graphics image Hasha6d901084527d38a64e0d09e74eb0a89 a34fb86c8f157eab2f8c5bcbcde3a747d362cb57 072e5193b8589436bb0e6c1d80fc8fd57bab163d024cba17249e0cf2b0aff73b
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Right-silver.svg HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: W/"65d62f11-358"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SwUvqQ3PU%2FKqO6o6%2BScNhUIqxzRnVQe7QlO3GaF93ZlvYkpe05y%2BbQVF9mtnptyPcBhCREC4%2BmgtNk7DcqS7ijzIF7VN4zkDhOr%2FqHgpawGi9cylE%2FviyIEg%2FNCGmJ3nlgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4292bc30b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/bg.png | 188.114.97.1 | 200 OK | 230 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/bg.png IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typePNG image data, 2860 x 1402, 8-bit/color RGBA, non-interlaced Size230 kB (230281 bytes) Hasha5bd6120e8983f86e2337abd2f8a0400 da5f244add422347a5b3724cc25c4b3117ffaec0 df92f43aefe26c94476e3e107195ddf5ddbea8d02deac729d543a89805c28cd7
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/bg.png HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/png
content-length: 230281
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: "65d62f11-38389"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1o2gcOtxEFVVfFkT%2FC7dAtZcU%2Bn6%2BwzRzRYmazNp%2FgZOpsy8hIgtym324G4VxDiDTgRDV%2FtafGJ6yGZ93D5%2F6Vl%2FGAyhj0DQwcFhnXjscq8VRFvur6MMYgA03JQzPguoEBs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4292bc00b3d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css | 188.114.97.1 | 200 OK | 24 kB |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typeASCII text, with very long lines (360) Hash5b7522b14d724533d78c01bf5458a750 4eae645a753f243ee059e4327344b3fe91e05df0 0845d6d17d46184edbb2c7db1e19104cff0c0532c5acbc6012bb33255f17c257
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}&
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: text/css
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: W/"65d62f11-5d1d"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yLMLz3ShjNnYrvahwL%2FjczbGQNQ6ghrqnnhwyN3lCZgYp7fgFMR1HPUp5NCkQRF9%2FdNL%2FgdIWsb%2FJRct1NCbJ3WoT7Z9sOn4W9VenHDgqJS8iJPAHIruTm8jwmhqftPFNFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4273a500b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Left-silver.svg | 188.114.97.1 | 200 OK | 750 B |
URL GET HTTP/3ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Left-silver.svg IP188.114.97.1:443
Requested byhttps://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/?_token={token}&subid={subid}& CertificateIssuerLet's Encrypt Subjectai-usmhigh.shop Fingerprint9E:86:16:4B:AA:10:3C:56:D5:09:31:5B:4E:41:7F:C2:4D:19:E8:92 ValidityWed, 10 Apr 2024 16:48:45 GMT - Tue, 09 Jul 2024 16:48:44 GMT
File typeSVG Scalable Vector Graphics image Hash87c2d5210e22d12f71dcd2bacfe37c70 25f1f924d23c5fb2bcd89be2737b4daf20ca371c d5679b98f2dbfe21020bff5a8990e9283f034f70ee71907a34e9f663c43b6d2b
GET /lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/img/Arrow-Left-silver.svg HTTP/1.1
Host: ai-usmhigh.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ai-usmhigh.shop/lander/gazinvest_quiz20-ok-bg-politika-_obj_js_v2/land/css/main.min.css
Cookie: subid=%7Bsubid%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 12:06:02 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2024 17:12:49 GMT
etag: W/"65d62f11-2ee"
expires: Mon, 29 Apr 2024 12:06:02 GMT
cache-control: max-age=864000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SQvIPdR7%2B1K%2FjcJtoS14aWKct1caj9cdOWUrWXJEnyf2Reg7mFkmKYqoPDSpUtCk8xwiwy2HSu2CnDiIu83nJQfFrZh9oKdQK5F%2Bsxovz18QCDl3ZBnSNN3zsM%2BA3T0CstE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876cc4292bc60b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|