| vitchathsurvey.space/img/rain/dollars-3.webp | 104.21.53.16 | 200 OK | 5.9 kB |
URL GET HTTP/3vitchathsurvey.space/img/rain/dollars-3.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image Hash51ea76ff382bff8ef58a9943f7fd21d1 5c3d6ad6620fbde5ce3dddc88604e6d54621eba2 0240f30fc542fb5c2d532f33bc793b797199adaea75e22a7d9f04674b80d9a32
GET /img/rain/dollars-3.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 5938
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-1732"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J37xW6VlGbalbWKVyOc6SuxNL4N1oqF%2B9fU2GtRa5dcptON6t1fwtybuIcpgXCHdSIQ1xMHHs4w5b6EG3kRTIGfmpyyX2OmI4OjruKzth15o%2BVKjCJJhyTbeKTC6kwkLKyn%2Bl%2F%2Bp3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f05db9456bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/rain/dollars-2.webp | 104.21.53.16 | 200 OK | 8.1 kB |
URL GET HTTP/3vitchathsurvey.space/img/rain/dollars-2.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image Hash8b4203d496c3f52b116af082a0cd4017 de5369e9459e240950bb7eb5261eaac1db26907f 8dd1f04088c25e20d15e1bc23129604830aab2b4d3d0a408a5f047f9768f39a4
GET /img/rain/dollars-2.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 8140
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-1fcc"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K13g0x%2FYvi4YmXdfOtG7cK6%2BSEko%2Ba7hK2YxXNFEqzkV0UrhrHVEnvB3QLkpjisNV05oLapdJF9ljHVlArKxHniBz7fcR%2BOrliV6DTWrPCOfwwf0fSBzZYv%2F8JnMeKd%2BLA8wbP48KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f05db8856bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/framework-8940d626f3bfb7e9.js | 104.21.53.16 | 200 OK | 20 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/framework-8940d626f3bfb7e9.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (25995), with no line terminators Hash33a34c525e2bee14a166fe1289835308 4afb650772181930d19dca9a41490beea5087932 bebac61ce044debeb2025b1fbf1c95f1b9a4bc97d0702676dea22b0bb689b555
GET /_next/static/chunks/framework-8940d626f3bfb7e9.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-658b"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KM845qaI7CCkX7uMRnmKibVvgSPhEeneE0QWJ3EfSgN83Ri90HNBbUlDLtHVz8hdc0cYe%2FecMFoGe9FObbC3k%2FrkUWK4ZhovRoKhPyInAgbVm7z8oRHAGHEQjAPnrWZLg5xbCi3Gng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b90356bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/8904.396665ff0f4e920f.js | 104.21.53.16 | 200 OK | 952 B |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/8904.396665ff0f4e920f.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (762), with no line terminators Hash24aba77bced4c775fd9f4db2aebff7cc 4589162c15ecca261ace5ab5e280be4f81430be6 6724add7152194eb45eb91f2fe146c827784d21c5c2921e40994c5a1173c8922
GET /_next/static/chunks/8904.396665ff0f4e920f.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-2fa"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2BsKme0sqv%2BoaziJN7HoGDEvitWHSaDXUdaZjSzU1v0BfizJ0bqn0AGhN2j0zAXjPlaBafu%2BTPBHLwREEgB3HYEmw1uKs7ohWmvE7ok7%2Fm4A5h%2FBcUE1Ui6Y2XMZmdPtWahdbFex1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e0a56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/6223.f75ac61ae8ab7ac1.js | 104.21.53.16 | 200 OK | 2.1 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/6223.f75ac61ae8ab7ac1.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (3821), with no line terminators Hash63e42624a0a2e938e43c9f253bdd2af1 6c4bd2c6c56338138db1d18413a1e333c08d6a40 6a5a6b8e03f61bbb48eb6c298071e6d028dda863efd959e45eefb94cef57ac2f
GET /_next/static/chunks/6223.f75ac61ae8ab7ac1.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-eed"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BCHzDinJu1RCxPztDXXPb9dImsHAYQ5s%2F%2BKNNAt2z6mtNQJqAKVxYnwDqTpk%2BodEG3ffxHicVku9Rzhrxh8OQNn3gDKZS%2F8WaIUNvIhnMZ%2BEMPDmXO9t%2FMujR61A4tp9fTNEYe1rAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e1056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/86.1605512c42332a2f.js | 104.21.53.16 | 200 OK | 1.8 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/86.1605512c42332a2f.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (2846), with no line terminators Hash4454dd8d20da57e5b4febc37bbc817c4 444023ea84fd9aaebd6126ddc692ef85dfd2b76b 67e0c13ad56e50a9388106a54d2e16a566b8aeba3e2b69b08c3accef0c522cd8
GET /_next/static/chunks/86.1605512c42332a2f.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-b1e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lSL18l0JXymaoAUKADaIH8Q1I2kRRWGjBZqTQo%2BcHWocyb2PUjb9HQ0w5ii%2BZsvR2ODukszJLlGLePnQ4l4ZVrAtQtokH%2BCyDMMaoOcw7G87VVsn39PGt3jvfOEAC78ZLb5VrzP2RA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e0156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vitchathsurvey.space/
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-length: 0
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/_next/static/chunks/5927.37a5338b8ac59a08.js | 104.21.53.16 | 200 OK | 2.7 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/5927.37a5338b8ac59a08.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (18708), with no line terminators Hasha385421104bc74c949dc4c6191ef7df9 30827209462e4ce7b901e71b238109574cc117ba 441f4699276f051e940137c231a4d48a7d4a0958ceeae78958482cd8a89663be
GET /_next/static/chunks/5927.37a5338b8ac59a08.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-4914"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O6H21YpJAOiBSZpobylUxDzSvM%2FE9RHb8rpz1lDLG3orAEW6nB%2BAm19EBVphKCELrXBjLB70I6AzUv%2FoyH%2FEQLhdy1g9grvJ2AIn%2B6i0xVob8%2BpGVDTod%2B0uE0R94CCaO1YZIOpnUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e1856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| my.rtmark.net/gid.js?userId=yq8nwdb1gqd9ia5at5pxp0oi763sptr | 139.45.195.8 | 200 OK | 64 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=yq8nwdb1gqd9ia5at5pxp0oi763sptr IP139.45.195.8:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectrtmark.net Fingerprint90:47:5A:A5:5F:5F:FA:E6:7C:6F:AB:D2:06:D1:D9:BD:F3:54:9E:6E ValiditySat, 11 May 2024 20:51:41 GMT - Fri, 09 Aug 2024 20:51:40 GMT
Hash2828907757d89e5130722882799b84ee 6c502e37cb564572c28c6f5d8c35915d66bbc3cb 70a3ef415eceb62360e11ce3489e9525113da10f04102d85e8f58eb145afae9d
GET /gid.js?userId=yq8nwdb1gqd9ia5at5pxp0oi763sptr HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 64
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; expires=Thu, 15 May 2025 16:05:44 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-2.webp | 104.21.53.16 | 200 OK | 2.2 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-2.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hash8f8ffbb278de1342e5cf44cd0c677c23 1b4b4428e409479cc8a8acfce6f537c2aeea7556 ac4284ed6941963c4fa0db306537f42f3a0b1fa18710bc7b9e1e62188961d83a
GET /img/comments/finance-survey-people/person-2.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 2220
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-8ac"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z6rLTw1PSBZfVmwK2qcp4hBSA%2BskfltzBnZP9YJ%2BC71%2FgQM86Hta6GYU328%2BGiVmyWinCCi%2BY5J2TDfygrBtu3JCL9pkypVxycOby7vP24kJxSgpB21JMw3g61nRjfsHnVuHjfDTXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f0869a556bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdntechone.com/stattag.js | 172.67.195.28 | 200 OK | 8.9 kB |
URL GET HTTP/2cdntechone.com/stattag.js IP172.67.195.28:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectcdntechone.com Fingerprint3D:20:D4:11:5D:06:B3:63:9C:08:BF:D9:D9:16:22:D5:DC:3B:9A:CB ValidityMon, 22 Apr 2024 03:33:58 GMT - Sun, 21 Jul 2024 03:33:57 GMT
File typeJavaScript source, ASCII text, with very long lines (18452) Hashbec2755dff94190fec0365b0db53807b f98c36e7e9e06325d03fe39c3b98879062fc2704 ccb15ff22ece6946136f1501ab3ae74155399187c8e85beb10399d56bb8e149a
GET /stattag.js HTTP/1.1
Host: cdntechone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:04 GMT
etag: W/"65c37cb8-4a9e"
link: <https://datatechone.com/>; rel=preconnect; crossorigin, <https://datatechonert.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4679
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jELT1OCG%2FvwO6SDuCFPosYOPXjGEUWp3bAUqESqb5SDuV56HHDqj%2BfjEFsSuEz30Kg0AjL0P2NHdUoF3YnKOj%2FzcBJxi5OAIv%2FG%2B%2FfgsWZfy82kkLmjv6B0OVYvSXmb%2Blg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88445f07cabc56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-1.webp | 104.21.53.16 | 200 OK | 1.4 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-1.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hashc5da2ea294623650bae71fc84401cf60 f1f62ea011cf81953cefe28254c134e992453b91 09a846c5b1af2c6100ff3193789be1e0e21ba9fc45c268f76f2007c78f1e4ac1
GET /img/comments/finance-survey-people/person-1.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 1402
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-57a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPiW4Za21bzHjKXXYaPIXP1w%2Bya3EUr%2FaN6ESYykHR0t%2BR6ZbhE3tf51Nt6Qlvg3XMnqpWIK5Vbitq7s5kxWNt0WBkjKRDpiXbfC0omzRvfiOP5%2F1N5%2Bw%2FGTggjjmd3DNwJrVZwtWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08aa1656bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-6.webp | 104.21.53.16 | 200 OK | 2.4 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-6.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hash7be25941ac032fcec25b1bb4ede296d2 cfc4fb3733844326076b6d7632087204c0bea34d 0ff9d28c4ab7516d2790e8df4d325cf602bc8f9eb787a7cd9b6554edd9530e4e
GET /img/comments/finance-survey-people/person-6.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 2440
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-988"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OiINrlzXs772v9Oq%2FlLl8OoqYo4oj97w0fONI8wkHUn4iZfXngu%2F1943sRnl%2BRdWCoDePB8STMWxt%2FLYd2MuAmFLv9o6ZSxt7BEFnSgcpb2Or%2FXvlhKbPiGBOMRgLE%2B8CRz1U279tg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08aa1456bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vitchathsurvey.space/
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-length: 0
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/_next/static/chunks/2734.6269ca0cf725ea17.js | 104.21.53.16 | 200 OK | 4.1 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/2734.6269ca0cf725ea17.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (4147), with no line terminators Hash48072be51722d2894982d56f13a52372 c1fbbdcb8b12079d61205284dec041f93390f47b b0ab49765bb74cdb8c46c171f3adad413e1934203046a3ca23d4872c892894d5
GET /_next/static/chunks/2734.6269ca0cf725ea17.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-1033"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vhL5V8ct7DSrTVWn0NL9INKUvocURp1lsAQKy7BTtTN%2FlmLCD9kVjyMc%2F22PHB57zdTYJ0pG%2FOlmOa4h9qritRHuINSDAOBNbaPc2TTDaqADo4XbADf0U%2B7qGprntfndXUlOIs2AzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f06fdfb56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-4.webp | 104.21.53.16 | 200 OK | 1.8 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-4.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hash5dc160f6b521dc8f6c670b140b354fed 22e15cda82b532067b99932ec28f86ea2cc1ecbc 09c6c6de57458ec0c4e7a3d2375e0c7b9c037de9366b63e3685cc0ca94d838b4
GET /img/comments/finance-survey-people/person-4.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 1798
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-706"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RXsnxOls%2BmMKeDZ%2BFymBUrD6fNcLSKX3RLRy0lFq4BxvTUY7Gu2lXbECRZoSrxu3pHy9oPi6Dx999NbSG7lcQ9I2ucZ66FKU%2BRdm9vWlUa9kE160Ma%2FKrsUcygsne6jK7pK8daWcww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08aa0a56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/
Content-Type: application/json
Content-Length: 392
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: dfdfa9e2336d79ec596ab72cc02cb96e
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/finance-survey/icon-survey.svg | 104.21.53.16 | 200 OK | 736 B |
URL GET HTTP/3vitchathsurvey.space/finance-survey/icon-survey.svg IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeSVG Scalable Vector Graphics image Hash9a8ba19b913810bd358e5caf3a7c2a75 6eff5e84f2b82772bb6029088ed852a8161b3252 58b0a3aa24ef605d4b812bcf92cbaa2e7f78bd43f929ca6362bc259da610399a
GET /finance-survey/icon-survey.svg HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/svg+xml
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-a72"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9V8RrxTM1SXcKIS4cdZo3Y1jb9Xu27A3DZjlhYDQf7y%2F9CgitSGiFnqKBMji7e6Co3nn3V3NAt%2BFmPXid2QYt1W0nk%2BSX7fDKwTmVM1SBWOwKjcjeL54RwPWg3oCX9AeMMfZYcgpTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08aa0856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-do | 139.45.197.248 | 200 OK | 0 B |
IP139.45.197.248:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /sync-do HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vitchathsurvey.space/
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-length: 0
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-do | 139.45.197.248 | 200 OK | 179 B |
IP139.45.197.248:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash081142aa1c9267422ee7fd25ac457579 cf8a223610da412aab4cc9aec68f6f304258b3ce 58084d495376ed2e41f026c352cabb187129c58109f2b15caeb1a539deb2cd19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sync-do HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/
Content-Type: application/json
Content-Length: 161
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 179
x-trace-id: 46e82d1fddde017e25453b2aaa067bce
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=96ce3a3b-766e-4dbf-b9a1-6b966be257c3 | 37.48.68.71 | 200 OK | 12 B |
URL POST HTTP/1.1datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=96ce3a3b-766e-4dbf-b9a1-6b966be257c3 IP37.48.68.71:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerSectigo Limited Subjectdatatechonert.com Fingerprint3F:E1:50:2C:9F:FC:F9:37:03:E3:B6:34:00:06:89:69:01:E7:C3:27 ValiditySun, 10 Dec 2023 00:00:00 GMT - Mon, 23 Dec 2024 23:59:59 GMT
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=96ce3a3b-766e-4dbf-b9a1-6b966be257c3 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1432
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 15 May 2024 16:05:44 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://vitchathsurvey.space
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| vitchathsurvey.space/sw/universal.js?var=7339789&ab2_ttl=5184000&zoneId=6679101 | 104.21.53.16 | 200 OK | 884 B |
URL GET HTTP/3vitchathsurvey.space/sw/universal.js?var=7339789&ab2_ttl=5184000&zoneId=6679101 IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
Hash3720f9cee1df8fca36fe99491eab215b 1705d72778aac160278f15d86a8d1aa2bac785bf 08c09c04a09d4a2fe27fc50189a08f18cfe108a3b966d4a36c77819275c0d81d
GET /sw/universal.js?var=7339789&ab2_ttl=5184000&zoneId=6679101 HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Cookie: OAID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; syncedCookie=true; oaidts=1715789144
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-5b2"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z9C2QnC03SSsH8knIlUu1Z%2BYamzSEDrc7JUYCrP1mib9ulNwuFu7tvDB8UQsqlC3lpMeM43Grq598XnD63QdylHAyyknB7mYE8i2sqwnzPCb29teltIoybfV%2FthGGvth2Z2ESwY%2Bzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f0afec256bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ofklefkian.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 405
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0a3078e30b5b153ab94535e7118e383c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ofklefkian.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 408
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 1d7419bf46f703e548c9463e8732fa86
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ofklefkian.com/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 407
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: fd040709f9321813d089ca45136781b4
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ofklefkian.com/zone?&pub=0&zone_id=6679101&is_mobile=false&domain=vitchathsurvey.space&var=7339789&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.506&trace_id=e4f57545-68ba-4c30-83e9-e4f4d0e6001e&action=prerequest | 139.45.197.251 | 200 OK | 0 B |
URL POST HTTP/2ofklefkian.com/zone?&pub=0&zone_id=6679101&is_mobile=false&domain=vitchathsurvey.space&var=7339789&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.506&trace_id=e4f57545-68ba-4c30-83e9-e4f4d0e6001e&action=prerequest IP139.45.197.251:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectofklefkian.com Fingerprint04:A9:FE:8D:C9:B9:EE:6F:3A:C4:29:EA:19:AD:C3:1D:7D:3E:14:02 ValiditySun, 14 Apr 2024 05:38:05 GMT - Sat, 13 Jul 2024 05:38:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=6679101&is_mobile=false&domain=vitchathsurvey.space&var=7339789&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.506&trace_id=e4f57545-68ba-4c30-83e9-e4f4d0e6001e&action=prerequest HTTP/1.1
Host: ofklefkian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:44 GMT
content-length: 0
x-trace-id: 653464a202cb183886b0499856f6ede0
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/_next/static/chunks/pages/_app-bb8a4cedbff5260d.js | 104.21.53.16 | 200 OK | 28 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/pages/_app-bb8a4cedbff5260d.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (42154), with no line terminators Hashde2db00d02a9896568e99d7bb4001638 c920e4879ce427f11913bf340ed4585e4d0a95d8 4a306360eec828e5ed23efe8f52e184ad7e2fe2aa9cbbc30f5385f1b3dc371f3
GET /_next/static/chunks/pages/_app-bb8a4cedbff5260d.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-a4aa"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=COXElHroQP6jUeQ4HN%2BJ9suy1TndaIvhMbzNRKmY4kTqESBav0JRQgkkb%2F8wp9BDWiHKWkp1eEj2Lr7i62dVOndHZNPmk1ZaNXF%2FbTB1ufJEEeoluW%2FbglxlksxJRM6D77HxuD73hg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b90b56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashca0787d13b4dd85debf64a4acf4f6f76 32de830feb222980ebf73266a96ac9e8e954746a a83c355fe44ca7b68a2f212638828e8208c940337e7911fe0dc5fc5cdaff934f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/
Content-Type: application/json
Content-Length: 1818
Origin: https://vitchathsurvey.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 15 May 2024 16:05:45 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/_next/static/chunks/1561.4bf12370d85b766f.js | 104.21.53.16 | 200 OK | 9.1 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/1561.4bf12370d85b766f.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (9272), with no line terminators Hashdabde04f69c638428630c14ae4b4cb4a bd087891e0650581e39fd2b58fd4ea2b847c89ce ac0fba826e52015abab3f1f2497e92911db9e85d044257aa59d9da4c56e4b31f
GET /_next/static/chunks/1561.4bf12370d85b766f.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-2379"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y44LZ0iPn2tEnm96Kc9OvE0SrTKH6kfPXVQAA6n7WApi2Ua2A8pwKb%2BEaQF5zMyz728ziFCDqArWKVetzG8VAP7RKNJNrakDmDlEF5tq72mv5zZNDA%2B6sL5YKZk5rVT2hrQbozOjSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b8f756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/6335.a0333d91d8b7dfab.js | 104.21.53.16 | 200 OK | 54 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/6335.a0333d91d8b7dfab.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (54339), with no line terminators Hashee5b69ccb71234fa758f0fef9dab27f9 c1beac23a263e3fb973437211c53d79b71c6f778 f0ae40fe7a44bbdf3f4b2f0eb05c5932a015a04def7bfbaf3af0dde3f9a6573e
GET /_next/static/chunks/6335.a0333d91d8b7dfab.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-d443"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ldBqMwuT69ypMoKIVVmlVDeXuhlAPUJ60tQK2knjrGQEOljh2W3Nt9oVWSbGhBSFf%2FfSJfKpp2eZctUZ%2FKNIbZ7p3O6uZLqGylEkhfuxuCGnJFaOAxogUcFKEif%2FC%2BbzuY%2BGQcY8dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b8fc56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/xFN0WrOG0chXCUKhD738H/_buildManifest.js | 104.21.53.16 | 200 OK | 1.4 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/xFN0WrOG0chXCUKhD738H/_buildManifest.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeASCII text, with very long lines (1498), with no line terminators Hash93587b4e5087c133d57f8aad745d468b b6163b115b23bacdd0619012c7b75fd78a59d1f7 c3bbf7cf7b84ec64f350d2f92ee65795f5ce036fb79f2feec1c9f1c3660cec6c
GET /_next/static/xFN0WrOG0chXCUKhD738H/_buildManifest.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-586"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1bz82AmLOTetpyUdMS%2BZFdgdElz3cAxEAAF9KncLGqFiN62%2FWBC8mXZqpFmiQCnOrZzJxtVz3kzt%2BWfn317DGtqLFl1geo90Ap7Zx116WbTRSYM98S7jLLxvFWLWauuUfkbDIMx5ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04c91b56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/1754.983ed55293c299ce.js | 104.21.53.16 | 200 OK | 13 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/1754.983ed55293c299ce.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (12711), with no line terminators Hashaaadd1fe7166e1641b80d4a871e91a77 44dd71230caa2b99dbe1a804fb3e444fa2dd8255 918408a27b1ee2472daf8940c82be10db3c347bf9111c15eb4b23bd34600153a
GET /_next/static/chunks/1754.983ed55293c299ce.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-31a7"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I8QiUQeOvNTbnnzXIkOo0azWnT3tU%2BjtGyegVPsTXnhx6BwOXhNxV9tGCGJZYv4TcbusVlE1akqBn2%2FE5JFRvzO%2F6NZdnmyAkCND1ScoTMrsEr0bKltYP5pvXR%2FGJwXjl0huTKZ8bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08ba3e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/favicon.ico | 104.21.53.16 | 204 No Content | 0 B |
URL GET HTTP/3vitchathsurvey.space/favicon.ico IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Wed, 15 May 2024 16:05:44 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pwe%2B3AGlkfkZUzFhXaVAZOoCvexhKUijFEIf2JmMRaq%2BKEGPCilS%2BuivzuCHCZd0BECOuEp%2BzMfx9vyzi3Ww8J39es5%2B8ckYQz7OjvePSbwIGcmstb6fVOBeEWiBzQW5s0QsgDZ65g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88445f097bba56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=7339789&ymid=&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&btz=UTC&bto=0&z=6679101&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 | 104.21.53.16 | 200 OK | 37 kB |
URL GET HTTP/3vitchathsurvey.space/pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=7339789&ymid=&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&btz=UTC&bto=0&z=6679101&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (37220), with no line terminators Hash4f1f82f0b7474cb8ab27b2faa4c0c7c6 1cd285df738b5de83a86d9aff4e42cae8449be3c b022db975feae8be7cc27a50858b440c6d124e6c89f54283ad86e480e3fbfede
GET /pfe/current/micro.tag.min.js?sw=/sw/universal.js&var=7339789&ymid=&b=&campaignid=&click_id=&ab2r=&rhd=1&var_3=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&btz=UTC&bto=0&z=6679101&cdn=1&domain=ofklefkian.com&ab2=&ab2_ttl=5184000 HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Cookie: OAID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; syncedCookie=true; oaidts=1715789144
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 11:18:57 GMT
vary: Accept-Encoding
etag: W/"66449a21-9164"
access-control-allow-credentials: true
cache-control: max-age=1800
pragma: no-cache
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NTsZAIT%2Bp3q3PNnG%2Ble44VKGvXb6hXIPS0eLXa1Z4%2B1RmQxrTcIuZvahXmLMWdO%2BRV1IFgogO2WiU4boG4en0Dtgsb6pMURC18FoBPg5n%2Filewg41ldXy2xIWPlSHDronc10uL1rdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f0a1d2d56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/rain/dollars-1.webp | 104.21.53.16 | 200 OK | 10 kB |
URL GET HTTP/3vitchathsurvey.space/img/rain/dollars-1.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image Hasha5bef813a0113d018592091106451c8b 59365e96c4abca5eb98a0c56db0af0bb5cbffebb 036beb7de9c9d450e1442d593ff70ad392ca4be6754e7feaec249c0009e1bd83
GET /img/rain/dollars-1.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 10546
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-2932"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YhTv1aYZdbUgNL%2F%2BwXk8ErMGAKIuoyY6Qaxp0ctsnhP3q52kMYZ8RHoBmZdKSsJc0H7SqhabZtvyfGAgxhPgsDns8gGSggHLDLR1oSjCbOtJUIFbg4pBu3EGaH163iCgQLF0JGnjtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f05db7556bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-3.webp | 104.21.53.16 | 200 OK | 1.5 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-3.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hasha747d227c2e10b5178fd942484301d7a b3c5cf90dd5fd2c26c7b17dcb2d35b6dd47065be 9f4fb1281b7141b9dd48925953f7b039b6c411ea0e6e5b158d3e000d75316e9f
GET /img/comments/finance-survey-people/person-3.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 1454
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-5ae"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JW3DmwCieRlyZjIkF27lJdqHrr0baEeGd24woxy2DH9QpsYjsoJIJOpZbaJ99rlkaC0F1AU0YL5XYQhiRvCL5N%2BQ4UBZg3UmUSiZhIIMCW6BbQH9fWJ86kQVnayYI53Nt1PV91I3LA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f0869a756bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 | 104.21.53.16 | 200 OK | 40 kB |
URL User Request GET HTTP/2vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 IP104.21.53.16:443
CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: text/html
last-modified: Wed, 15 May 2024 15:59:07 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VbQM1YTzF%2B%2BXnW2MBIjR0oRXReaeZerAXEtjnkdTHIRK%2BnKNn36ZzvzyQPvMRFjH38Q0B1PJz4a75cpjwNMfNsegqylN%2FHiaXVFYKM77x%2BpfRoiaLQtfKzNQoGMIK%2BvDgl47JSXfRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f020efd56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vitchathsurvey.space/_next/static/chunks/3091.b65aa8fd91d609ab.js | 104.21.53.16 | 200 OK | 2.4 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/3091.b65aa8fd91d609ab.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (2471), with no line terminators Hash1be01bad7b71ce09adbbf2828b0fd71e 9caddad3e9c78b49eedde929ddbb095f1623285b a42b5cc1b883ee56b6785b9fc0e2c3c5db1b22f973bf2a49a0394501c324fbdc
GET /_next/static/chunks/3091.b65aa8fd91d609ab.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-979"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XxHPBUJXoeOXtswJvJ9olUX3xCE%2BeZNTAcndHbrWmsqpO0voYd42Sn2Ky4hcnG2PmRQ3vBk32UaxnHaTf63TFufpOB%2B6Fn3Bm%2Bncw3eOO6n3jQ529iI1fcM7MkVYw7ejWeTNDDtdtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e1456bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/main-beb6af9e60a8e042.js | 104.21.53.16 | 200 OK | 109 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/main-beb6af9e60a8e042.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size109 kB (108887 bytes) Hash44ec1451f689d71d5f33a10d4aa44658 0f7e72050b7bf72366d9463a16038ae94e232f46 1708144463d376da261c16eab17b1d2fe5c49351847f43a46c6ae4b347fd9304
GET /_next/static/chunks/main-beb6af9e60a8e042.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-1a957"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ub3KUzZw2yN3cKYniTCIti4pcq1AOnvjEY64qbE0gwGslWveWbtU1Sls60KqC6CxrGG9ZcalEuukvGaSLwcfTsAgRFbnfSsmk6BxZN%2BOmyheeDGcgGo4DVg6p%2FilOO5FK6q4kxqsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b90756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-b2d9a926c9355083.js | 104.21.53.16 | 200 OK | 72 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-b2d9a926c9355083.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash3c07a40e2aca18d21993047f7292a3dd f234d77806e5c1383bc8bb6a7949e2bcbdafb68b 2d707225e9ffbb97afd1e23d3e0c8bbebf868e54c677261ac404b6574f46ec86
GET /_next/static/chunks/pages/%5BlandingName%5D/%5BconfigId%5D/%5B%5B...slug%5D%5D-b2d9a926c9355083.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-119c3"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=klO6J2hSBhn3WJ1k%2FcWQMnODDLUjwWBzITG8W%2FVGl7%2F1z3tP0CGT5wd3gQvI1NkRG18r7%2BJlItZHetktfFsrUVlhVFBIPEgj9j8eoV4p%2Bx9SjQgxuM9p1NBch%2FxHuSujc9AV%2BNlfGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04c91756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/xFN0WrOG0chXCUKhD738H/_ssgManifest.js | 104.21.53.16 | 200 OK | 134 B |
URL GET HTTP/3vitchathsurvey.space/_next/static/xFN0WrOG0chXCUKhD738H/_ssgManifest.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeASCII text, with no line terminators Hash8ffe0d99020b7535af6db34ba54a25cf c9e0b6379bdae795228998c3050d295d14e65669 1f5fd7652f124b236dc9ef40458fe6fbbd3b09ef521cd3e4f22602450525773c
GET /_next/static/xFN0WrOG0chXCUKhD738H/_ssgManifest.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-86"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WIGmpyyuK5Or%2B%2FeTuUHxir2ETcrdIHbTZmu%2Bpz9c%2BPg2laXWiY1y2KUMEH3LNcNh1Ap9xyRjsxC6RAS8CFsTNO2HWY1Nlce9y%2FCaWIl%2FszBEZKIkgt5C9iVAo1lhi9OzgiRXVkPt5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04c91e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/img/comments/finance-survey-people/person-5.webp | 104.21.53.16 | 200 OK | 2.4 kB |
URL GET HTTP/3vitchathsurvey.space/img/comments/finance-survey-people/person-5.webp IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hash188dfcdf19da1d86ed162d54ed03536d 98b1baefbb803548b2894547091b4c7773406524 4f8251665e3cc796f127ea6cbdc00a9ec450adff16acb4ec74463c446b6f4ba6
GET /img/comments/finance-survey-people/person-5.webp HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: image/webp
content-length: 2384
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: "6644dbc7-950"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b8DSw6Kpr81tlZk6Wp1GUUOiDLzKeSrsGhunFv3tP0RllM8Fp9kYg8V0ROtmOI115lqWApXrcea%2FGtsnLq%2BxhVIkCj3BEK3Mr0gQSRYAZU1k3twTxIZOtWE%2BCiZAbpH7U4jObrADgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f08699656bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/7903-dd238946c7924507.js | 104.21.53.16 | 200 OK | 32 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/7903-dd238946c7924507.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (31896), with no line terminators Hashb5dd343db67bd22544d11da18268f5c3 069b5b221dd75af58d93192460778b3d07835e74 6347f1d4083f7a0a2ac3d8b12aae8832d9ea6914aa6e137d16a4d41869d14ea5
GET /_next/static/chunks/7903-dd238946c7924507.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-7c98"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DtTRKaKqMjmsYHK0nddR7f9jAj%2BZQfK4w%2BShlA5P3yUax32%2BBvVS8vbFUHVP%2Bp%2FyGVJX993527xqrO5Yju%2FIWnbiqpZcY8HfW0%2Fp28axoK0C1CZnu4le7KvFaAnywNV%2B1SeqmbwNlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b90e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/812.7027cef6620548be.js | 104.21.53.16 | 200 OK | 13 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/812.7027cef6620548be.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (13202), with no line terminators Hash0cdc7044086bdb0ab8c55df3e1576c7e fc66dfaf7e67479c19b68476453cfca37df28469 6253c27cf319c795afe04117585b004d5cb4b20150e2ed3da234f40b7dcfe568
GET /_next/static/chunks/812.7027cef6620548be.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-3392"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4r9kZFpzyKYsvCAv87cZ6YqTX2Nw9di84xAz1IeZzOJXV1mTPcKyyXt4IEBnpkWVT5%2BuvzXnG354j3n9rV%2BpsZOR4DlpHSFaUSlFYCelmudZQULnBb3U%2BbqUwFFj09dqkAd6BD9nyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b8f156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/2090-960b1e6f7b611313.js | 104.21.53.16 | 200 OK | 11 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/2090-960b1e6f7b611313.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (10792), with no line terminators Hasha42bed172c3f212f77799f5e5c2031fd 567afc22ce306ec12b495baccf756704faa48f3e 8d2c5930078e70d671417685fd36df677208d55c6bca780c41929643397bbdd5
GET /_next/static/chunks/2090-960b1e6f7b611313.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-2a28"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qGk4E7hTLU4fzUCBhRgAQKalIX8pJElogTJtPdHNnBZrIzCBstW30OK3i2tLY28q2cTj0e7O368VCORUo8qkD8Biob8JZB%2FgjUTMo%2BN3nP33GObEHyKKC8ANwoDeWmJHVNZwV64Zzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04c91556bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/rotate?zz=4292518%3B7000963%3B4326652%3B4949467%3B5381241%3B5381316%3B5381307%3B5381339&var=7339789&ymid=&ab2r=&var_3=&var_4=&os_version=&uid=yq8nwdb1gqd9ia5at5pxp0oi763sptr | 104.21.53.16 | 200 OK | 5.3 kB |
URL GET HTTP/3vitchathsurvey.space/rotate?zz=4292518%3B7000963%3B4326652%3B4949467%3B5381241%3B5381316%3B5381307%3B5381339&var=7339789&ymid=&ab2r=&var_3=&var_4=&os_version=&uid=yq8nwdb1gqd9ia5at5pxp0oi763sptr IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (5355), with no line terminators Hash480a2632f49f1107733103312f8ef08d 8266a0f450ef638190d2ba9b803eec1877fe0ac7 f083f5ea153c9213a87cbfea2001871c2311be8da63a1e3cfea00d95904e480b
GET /rotate?zz=4292518%3B7000963%3B4326652%3B4949467%3B5381241%3B5381316%3B5381307%3B5381339&var=7339789&ymid=&ab2r=&var_3=&var_4=&os_version=&uid=yq8nwdb1gqd9ia5at5pxp0oi763sptr HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
DNT: 1
Connection: keep-alive
Cookie: OAID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; syncedCookie=true; oaidts=1715789144
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:45 GMT
content-type: application/javascript
vary: Accept-Encoding, Origin
x-trace-id: b79a6dfcaa85c06b9273a7947ff3542d
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
timing-allow-origin: *
expires: Tue, 11 Jan 1994 10:00:00 GMT
access-control-allow-origin: https://vitchathsurvey.space/
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
set-cookie: OAID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; expires=Thu, 15 May 2025 16:05:45 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=42PwyFOSfhHSPSAvf72NkZbfhCFYYb2uIHQZMeSiCHQq1HOSDdyYplo1AFgSpdCn%2B%2FxQ8zKD%2FqvjfOcnvxJNw4BbywULdrvAUOwIzwBkJAiMPuIDz59yXhWNnTmyvJveUOgxQov2UQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f0a0cfd56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/4981.2a332d38c95dc4f9.js | 104.21.53.16 | 200 OK | 20 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/4981.2a332d38c95dc4f9.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (19546), with no line terminators Hash223898374dd56eccf76322f878b326f7 dc004d92d8fb70e324e193f138f496b190164126 56c360551aebd13f55666a056edd4c681b39fd1b3832ce1233fc2dae7640ed46
GET /_next/static/chunks/4981.2a332d38c95dc4f9.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-4c5a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ss6yMC2BeZk9%2BUmGpkfeP3pcwCDCBUYijrDDbiNIA7E3eZFkmEsGlZ1GBrftYGtfOeFGAq7%2F%2Bc3P4MXLbuY0RmrDM1PUhQDQ2myM%2BL4KJD5mmn%2B4dPpUuNviwkJJLCSpHsVjQw%2BjCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b8fa56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/css/0bc0cde260d08b97.css | 104.21.53.16 | 200 OK | 1.8 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/css/0bc0cde260d08b97.css IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeASCII text, with very long lines (1843), with no line terminators Hash64b2b4fa42c7d558d735e2cd28ecf88a 03d6da6e55b1201b51689590520da495a9233d67 2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea
GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: text/css
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MB8O3k8%2FG02j4kUFodhp2l1i3lFGM1VYKeOGnPbkJi9EcP%2F5B%2Fz7iLXwO1GZzSTjW%2BbbMMimWl81QWGQOvlZuT1ZMnyKBhovW8TAB9XU8%2FW2hAHBYfXsCfDcaTYQ1yE8N6lC4hEE2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04a8e856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/810.22cb7b2fbea31071.js | 104.21.53.16 | 200 OK | 3.1 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/810.22cb7b2fbea31071.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (3227), with no line terminators Hash5823b8ff0871c306007fd9b66b72dff0 88e6477ad703fae2e07ca4a43c63e715457a7e19 a47e843dfe9b823c031cc090cbbec19aafc7890bfefa1416f56c809bb646a444
GET /_next/static/chunks/810.22cb7b2fbea31071.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-c4b"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bo0uz0VAwDvaRtwmfU4Rjb72LV2M%2FHq9fXbz2KIWxbXxE19p7Ix67cJL4P6F7VZVpUv5tu5dZgzKWT4%2FqqaRoik42rmrJeq2WTcTEfYtgTTtJdBAKQry6uEFE7uGoVp6iuaZMjK5KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f070e0756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/track?dry=false&request_var=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&var=7339789&var_3=&var_4=&variable2=Wh2fTkQY76sBagbSESZsh8&ymid=&z=7339789&offer_id=14162 | 104.21.53.16 | 200 OK | 182 B |
URL GET HTTP/3vitchathsurvey.space/track?dry=false&request_var=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&var=7339789&var_3=&var_4=&variable2=Wh2fTkQY76sBagbSESZsh8&ymid=&z=7339789&offer_id=14162 IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashe6246b04b7d99b675f7086e756e1f242 9f3b5f5cb9b34830dc20448a0acc83bcce5d2727 5ecadcf1c19edd16643f48e47f530b024c97a5653f98a47e14c61d5270dd7881
GET /track?dry=false&request_var=&oaid=yq8nwdb1gqd9ia5at5pxp0oi763sptr&os_version=&var=7339789&var_3=&var_4=&variable2=Wh2fTkQY76sBagbSESZsh8&ymid=&z=7339789&offer_id=14162 HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
DNT: 1
Connection: keep-alive
Cookie: OAID=yq8nwdb1gqd9ia5at5pxp0oi763sptr; syncedCookie=true; oaidts=1715789144
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:44 GMT
content-type: application/json
vary: Accept-Encoding
x-trace-id: 72a69a89ee8325084d995d971600f2fa
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://vitchathsurvey.space/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i1go6eezXOjV9x2WPLOemucdRDu5bJs1SPalOXiKMY%2BFLBt1iiRLJM0HktfAcCj1Oz0uS35sVyAAH5o%2FU%2FoTL1i4ni5EC0slFKHwAztL8HFURs8OaiHNYsRYPMhr6MNj90ye%2Fiw4xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f09fcd256bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vitchathsurvey.space/_next/static/chunks/webpack-4e015d889fe3ad31.js | 104.21.53.16 | 200 OK | 6.5 kB |
URL GET HTTP/3vitchathsurvey.space/_next/static/chunks/webpack-4e015d889fe3ad31.js IP104.21.53.16:443
Requested byhttps://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8 CertificateIssuerGoogle Trust Services LLC Subjectvitchathsurvey.space FingerprintA7:20:D4:C9:77:70:2E:DD:F7:50:86:FE:70:23:93:5B:96:BD:E0:40 ValidityTue, 16 Apr 2024 22:17:31 GMT - Mon, 15 Jul 2024 22:17:30 GMT
File typeJavaScript source, ASCII text, with very long lines (6795), with no line terminators Hash65fbaaebec7856591b55d3a919c6ebff b280f2775d841fee767e33e6e13ee26ad96919e0 9392bcb6ccb7c60becd87d0d507f7a73b17daec43ad7d9e4ed1625ddf1187433
GET /_next/static/chunks/webpack-4e015d889fe3ad31.js HTTP/1.1
Host: vitchathsurvey.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vitchathsurvey.space/finance-survey.html?z=7339789&offer_id=14162&var=&ymid=Wh2fTkQY76sBagbSESZsh8&ymid=Wh2fTkQY76sBagbSESZsh8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 15 May 2024 16:05:43 GMT
content-type: application/javascript
last-modified: Wed, 15 May 2024 15:59:03 GMT
vary: Accept-Encoding
etag: W/"6644dbc7-197f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KXD1vBYDQMHZvvHQYCMSSsCx1SYdhEAzTXvfdwJkUIwWIpNL6kQvrB2l1Rv%2BO6El%2Fb3qRv8MN4VIHXMyM%2BqXcrSAlYkVqhLZCAbjXvlFcyAdxRr9EDSNEWl1mb1SS1NSzKj0zA6VrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88445f04b90056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|