| winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 | 178.128.101.154 | 200 OK | 1.7 kB |
URL User Request GET HTTP/1.1winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 IP178.128.101.154:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectwinpromo.xyz Fingerprint00:34:DC:A4:C3:47:F8:C5:72:74:56:85:C4:72:2D:3B:40:A9:C8:08 ValiditySat, 06 Apr 2024 22:20:21 GMT - Fri, 05 Jul 2024 22:20:20 GMT
File typeHTML document, Unicode text, UTF-8 text Hashdbbb1edb7dcfc4e16827a07307f2259d d053bab013aac5336b522fabd285d02168ac6224 6a8d0573fa057338dd460baa57f4f31364271e3100ab29ad241a5a5d088bfe19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 HTTP/1.1
Host: winpromo.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 04:20:34 GMT
Content-Type: text/html
Content-Length: 1716
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Content-Encoding: gzip
Expires: 0
Last-Modified: Fri, 10 May 2024 04:20:31 GMT
Pragma: no-cache
Set-Cookie: _subid=376l60jc41lo6;Expires=Monday, 10-Jun-2024 04:20:31 GMT;Max-Age=2678400;Path=/
_token=uuid_376l60jc41lo6_376l60jc41lo6663da08fcab0e9.23970838;Expires=Monday, 10-Jun-2024 04:20:31 GMT;Max-Age=2678400;Path=/
94f74=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI3NTRcIjoxNzE1MzE0ODMxfSxcImNhbXBhaWduc1wiOntcIjM1NVwiOjE3MTUzMTQ4MzF9LFwidGltZVwiOjE3MTUzMTQ4MzF9In0.8wpSoThJ2hBE8m3SyTCtJH3FSikAoKQIu98Kc423ilA;Expires=Sunday, 18-Sep-2078 08:41:02 GMT;Max-Age=1715401231;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
|
|
| winpromo.xyz/ | 178.128.101.154 | | 13 B |
IP178.128.101.154:0 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerLet's Encrypt Subjectwinpromo.xyz Fingerprint00:34:DC:A4:C3:47:F8:C5:72:74:56:85:C4:72:2D:3B:40:A9:C8:08 ValiditySat, 06 Apr 2024 22:20:21 GMT - Fri, 05 Jul 2024 22:20:20 GMT
File typeASCII text, with no line terminators Hash1e6cd917ed71a1241e4bedc29264bd98 5b65037351caeb0e5a48d963d7ffa88d0271d546 7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: winpromo.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 10 May 2024 04:20:34 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Fri, 10 May 2024 04:20:34 GMT
Pragma: no-cache
Vary: Accept-Encoding
|
|
| cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css | 104.17.25.14 | 200 OK | 4.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css IP104.17.25.14:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65348) Hashc0be8e53226ac34833fd9b5dbc01ebc5 b81ef1b22de26af8a7a4656f565fbc91a69d7518 5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f
GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 169761
expires: Wed, 30 Apr 2025 04:20:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vd9Q3c3M16UUSXEKlQG%2BtDvgYJn17cNjXLrvkRZmexivfNnMZz316BPchpOW0Mj0IwAEU1yytCatLqI3hQVxjMKtqnZQ6pF1WmonvSixZ%2FVON32oKUVJJHSFey79Ba4mPgBoJ4gW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88172332cd8f56ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.131:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://winpromo.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 598336
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/style.css | 172.67.69.125 | 200 OK | 18 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/style.css IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash3a19bc987f9ce40713a46b293563285e 4b973bbc5d15f50c964d296536d5fabdb1c39dcc 4869ad3208f6baa0bbbb8731bc47c49164d3101407fd30e2167f084f52731de1
GET /trading-survey/en-1/style.css HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: text/css
last-modified: Tue, 16 Jan 2024 08:23:00 GMT
etag: W/"65a63ce4-1c32"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ibb0iWnakhO8xVXnKVdTRoBep%2FiwofZWj9hOfXW4VXg5bTn9r0dTU0VFZ2CwgBdCDhrrrEOD3%2BEbnf0E7FGwrg9zqhH%2FmFliODP7cLMCllnJDn7fmhlpySayjn07dNPe3ntezAPquydU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f23b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP142.250.74.131:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0 Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://winpromo.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 23:17:14 GMT
expires: Fri, 09 May 2025 23:17:14 GMT
cache-control: public, max-age=31536000
age: 18201
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| winpromo.xyz/favicon.ico | 178.128.101.154 | 404 Not Found | 162 B |
IP178.128.101.154:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerLet's Encrypt Subjectwinpromo.xyz Fingerprint00:34:DC:A4:C3:47:F8:C5:72:74:56:85:C4:72:2D:3B:40:A9:C8:08 ValiditySat, 06 Apr 2024 22:20:21 GMT - Fri, 05 Jul 2024 22:20:20 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash70461da8b94c6ca5d2fda3260c5a8c3b 994bc667720c21257500e29038c1a5f61e25da1e f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: winpromo.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040
Cookie: _subid=376l60jc41lo6; _token=uuid_376l60jc41lo6_376l60jc41lo6663da08fcab0e9.23970838; 94f74=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI3NTRcIjoxNzE1MzE0ODMxfSxcImNhbXBhaWduc1wiOntcIjM1NVwiOjE3MTUzMTQ4MzF9LFwidGltZVwiOjE3MTUzMTQ4MzF9In0.8wpSoThJ2hBE8m3SyTCtJH3FSikAoKQIu98Kc423ilA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 10 May 2024 04:20:35 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
|
|
| club-millionaire.online/trading-survey/en-1/images/robot.svg | 172.67.69.125 | 200 OK | 6.5 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/robot.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash718980ea2730f466a715e08c8a71a81e b1caded1f3ea9744229f51a76b20c554fd2a2c3a 5bccb70407090f3834f01aceffd2ac3c1ed877bc085dfc0466b26c3d2bd0e3de
GET /trading-survey/en-1/images/robot.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:50:20 GMT
etag: W/"65a3ae5c-1985"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bc9Y4NCsVkSjUTaDNxNWQM9p1eJrKr%2BpVLO6F8nRCB0auvJ2UHW4Ywy21nKX7SWVT%2Fje95rWqHDk7QjQvLUocLkVbSJz%2FMjm0dGmj1fo7aawK9h6XMcUmEGO02oQKdM8nCl5oWGmu9Nh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f0fb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/script.js | 172.67.69.125 | 200 OK | 1.0 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/script.js IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeUnicode text, UTF-8 text, with very long lines (985), with no line terminators Hash5caa4f0c6a59eb5c57cce47cdeb471fe 336ddbc1bf24378d7382b3c6d981ed1423193fda dc41ef49f174c82e1f40165d08ff3d20ba66b72cc0b22093365e3ab9ec5c94fb
GET /trading-survey/en-1/script.js HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: application/javascript
last-modified: Sun, 14 Jan 2024 14:44:28 GMT
etag: W/"65a3f34c-403"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6PeY0jQSlnNE5JzynCb28yOWCUelMGN9%2FyxtLk7ZhBiXXLGTtNlYh5qgHZn9AVEhsJFN8YwR9zxy%2FxjdVdBP5ctbP18b%2FWIs16fsZiPOrFrGnYPjqBMq3lo8w6m2oqvdf5Ve1z9axg3C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f0eb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/time.svg | 172.67.69.125 | 200 OK | 18 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/time.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash93eab3efb4b06d63782b6d57f07c208a 5665eef4beb75613c48c34a1312f6a3d6010fc7b 524cb68ec8163e8c5b52bd1e4741a0d1c3b9957672c84245f1fb3e28272b31cd
GET /trading-survey/en-1/images/time.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:47:56 GMT
etag: W/"65a3adcc-4677"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wDiuzuBEQLINP9o6Op1ENVVj%2FaaSNkltYJIOUcKqB9se4af69KV9w0kuoaj92SeXO7wX69b%2FYx7LpMIAqluLmt%2BlLCG8k9L2wTbcVuInOE3Bt68aOFZ5i0qT7LlYsYPKhlNis8UrRW5d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f18b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/speed.svg | 172.67.69.125 | 200 OK | 16 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/speed.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash7f3ac9769644152e69f7af381d98a91c 440a89c036a90214d2a7cca09041ec52562a0a2a 3671d5ab49ed24acb87fe6be573fff822cb012abfd32845325d71c449f333008
GET /trading-survey/en-1/images/speed.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:48:14 GMT
etag: W/"65a3adde-3e85"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZUG0FiFO29jF1l%2Bkyy9Cp69a5TOT%2BmoFVz8Hl8XxhVcAHEkhAAp5XwKCv%2BgAfzbqOXUrZzJQCKe5ItuVVNqe9b0oRXuV8VQQd8E3uILd0kUOwE0zrkQ6%2FEuH7LZchba%2FWlRXuHZh8LoS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f1bb51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/bear.svg | 172.67.69.125 | 200 OK | 7.6 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/bear.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash06baac69f0460ad2dded0a1421ed983e e286e2d034c9d964bc7ca7149a3e49eb87e642c9 70d98fe2b0ca483ce9f27d48a54b5e6fb341525cd641441940488bab4394e8a3
GET /trading-survey/en-1/images/bear.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 18:53:06 GMT
etag: W/"65a42d92-1da2"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D%2BSSyG4Na5Yy7mdFDULACSnhPvWznIaCyUblQftLUdHIj%2BxqVtlVLU%2BH6Hx%2F0w3CvrwSPOGAZ0X5AtKeVIz0iRYhx3WUAsVa8375m05aJ01L3dhJZIYgBeCpHmudPtmx8mkgP5P2PSTn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f16b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/loader.svg | 172.67.69.125 | 200 OK | 2.9 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/loader.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash8b1a94c56c288200fffdb0fcdbd844aa 1d35f898a8d6a52c42f93759cd1b09f376630e61 52b0e5f80f9c4823ccab70b74708fbbbec2bfb456a5ffdd526e987f41674c3a8
GET /trading-survey/en-1/images/loader.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:49:50 GMT
etag: W/"65a3ae3e-b6e"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=olx6TyfBlj%2FAt2Xpn9sGE3KYJt8JyFpC9jF4LyuyThP5chMm6A4awWrvSRhDTNITHmVP%2BJhya%2FDmhhO7ErS1irkkfyUqoHSbRtm72%2FwzG5B8vfUIvTETbCTwRA3L7SvM6M22TuqzLzxW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f21b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/candlestickChart.svg | 172.67.69.125 | 200 OK | 14 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/candlestickChart.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hashb1b4ec69a051d625e42e93085788865f 5f0b506fa9113a88ef85040bc0f5d2e6704de9e5 5bde49d8f6c9147a20bb434eb0f37e281838bf04cf6a6e561bae3cb9078117a5
GET /trading-survey/en-1/images/candlestickChart.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:46:00 GMT
etag: W/"65a3ad58-3780"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eGJ8D5gUp78yfiuZw74YPIPKtdw6ldWZ2EX2Ti%2FsyRAzXmmqy%2Bep9b4q0XJwe4I8Vw8z%2FoWJ0BjsRvwTa8Yfs00THb2nzSfIeilifwScEsl%2BeRPzkrlX7iMU3oGkxDN%2F1VsiVv0DPPM3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f13b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/bull.svg | 172.67.69.125 | 200 OK | 8.8 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/bull.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash526a7d28cd3ce4ac965d9ec78e5b18e8 145abf03b8134be48c3ec2167932f69538338b2e 0d54a4ea1618e75d817f9ffb135b3ecb2f69726e1d1f5402549664fcd916a244
GET /trading-survey/en-1/images/bull.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 18:52:40 GMT
etag: W/"65a42d78-224d"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1tTlbfsjlr%2Frbhets8KXSr%2Bo%2B5jLPp1qx3xjwa1Ty8sYrU2SxNmsTE3Nl6ThmDMCnf5P9IX1RO%2FXhnDdWmbaOwPgKonOazLuBSjtwFnz6VyRpzSOYvNss3opgO%2BL0gxsqjFEfCFd5LtV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f15b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/logo.svg | 172.67.69.125 | 200 OK | 23 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/logo.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hashfaedf085a88fd1992bec0d44b4537044 86ff8a51d0d754f1e2cb787ac2c30a9d10d6dd6b 37b4df624e8223c1a8a954928610d1b4eb0190ff89c9ba2cb203063c147742e6
GET /trading-survey/en-1/images/logo.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:34 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:43:44 GMT
etag: W/"65a3acd0-5acf"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQMZEKnc5wJWQZ7eVSSjC2RVPllLCnOroR%2Bde4mlV7mMPpgUCTRBApbq4McBaZK7j2x3tKy8VRZUKeph0NuC98ebooqYfqC4O7trmV8gwgGcVAIA%2BEoUNFTZtHNuI4up%2FEsqAqW4r6Eb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f11b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| club-millionaire.online/trading-survey/en-1/images/robotLoader.svg | 172.67.69.125 | 200 OK | 5.8 kB |
URL GET HTTP/2club-millionaire.online/trading-survey/en-1/images/robotLoader.svg IP172.67.69.125:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectclub-millionaire.online FingerprintE0:7C:60:CC:8E:60:ED:BE:E7:CE:78:E8:26:A6:57:9E:D2:30:86:F2 ValidityTue, 19 Mar 2024 15:56:44 GMT - Mon, 17 Jun 2024 15:56:43 GMT
File typeSVG Scalable Vector Graphics image Hash427e8b4bf5493d1fbe7cba34747c8e20 3cf9bb3b6c0e6bb083193e74777fe872fe6832cc b92d325a52e79f62f86d06e7f0607d70762f8558da7f4d7ac7a94a292b058188
GET /trading-survey/en-1/images/robotLoader.svg HTTP/1.1
Host: club-millionaire.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 04:20:35 GMT
content-type: image/svg+xml
last-modified: Sun, 14 Jan 2024 09:49:28 GMT
etag: W/"65a3ae28-167b"
expires: Sat, 11 May 2024 04:20:34 GMT
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wNqUOuXhWwKT%2BPd%2FZ9A7f07Nj0lcbkWZKXVN45TCp4Z73AZXG7jnwfauVOeycYkp97xwdJOH3gBf1xOdmO1SDIgn7jTF7kYPuFuJAkoSwZA59bT90ZP74OceN4NkoNggTkCEksyqdT%2Fx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881723337f1db51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap | 142.250.74.106 | 200 OK | 28 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap IP142.250.74.106:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash7b1884acc9afa1fbd97c1e3e29d13b55 c4b4171b50d3f29d7af642875e63d8427d0067aa 7e7fd9f1e6fd2387dc2a5bb83cb72a1c44206347ad8ffde69bcab829cf88b1ff
GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://winpromo.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 04:20:34 GMT
date: Fri, 10 May 2024 04:20:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.131:443
Requested byhttps://winpromo.xyz/sam7h221c?keyword=22040-b30cf673&external_id=M7367221011311231011&ad_campaign_id=ce5a88&source=22040 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://winpromo.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:46:32 GMT
expires: Wed, 07 May 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 236043
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|