e.phoakuxar.com/track-impression-applab?z=6635659&b=19643872&ymid=656e548a2aba9c0001bededb&var=474_89a3984a-749c-48ba-be56-29d12d6d1b93___&var_3=19643872_431653&redirect=true&redirectUrl=https://rewardwin.xyz/KspBKHP8?external_id=${SUBID}&source=6635659_474_89a3984a-749c-48ba-be56-29d12d6d1b93___&ad_campaign_id=forexzeydoo&land_state=before_render&land_id=tRcuEocwPhQjiJJ&land_generation_time=2023-12-04_17:37:03&land_error_code=&ruid={ruid}&mgeo={mgeo}&oaid=c0f9a47536da59c6ef450a52da6449cb&land_type=rtr&isPushSubscribed=false&isPushAlreadySubscribed=false&land_tracker=marker&land_purchase_method=apk
302 Found 0 B URL User Request GET HTTP/2 e.phoakuxar.com/track-impression-applab?z=6635659&b=19643872&ymid=656e548a2aba9c0001bededb&var=474_89a3984a-749c-48ba-be56-29d12d6d1b93___&var_3=19643872_431653&redirect=true&redirectUrl=https://rewardwin.xyz/KspBKHP8?external_id=${SUBID}&source=6635659_474_89a3984a-749c-48ba-be56-29d12d6d1b93___&ad_campaign_id=forexzeydoo&land_state=before_render&land_id=tRcuEocwPhQjiJJ&land_generation_time=2023-12-04_17:37:03&land_error_code=&ruid={ruid}&mgeo={mgeo}&oaid=c0f9a47536da59c6ef450a52da6449cb&land_type=rtr&isPushSubscribed=false&isPushAlreadySubscribed=false&land_tracker=marker&land_purchase_method=apk
IP
Certificate IssuerLet's Encrypt
Subjectphoakuxar.com
Fingerprint3E:FB:65:98:33:3F:57:B6:2F:12:2B:2B:E6:AD:A4:BA:36:98:7F:1D
ValidityWed, 29 Nov 2023 08:42:44 GMT - Tue, 27 Feb 2024 08:42:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /track-impression-applab?z=6635659&b=19643872&ymid=656e548a2aba9c0001bededb&var=474_89a3984a-749c-48ba-be56-29d12d6d1b93___&var_3=19643872_431653&redirect=true&redirectUrl=https://rewardwin.xyz/KspBKHP8?external_id=${SUBID}&source=6635659_474_89a3984a-749c-48ba-be56-29d12d6d1b93___&ad_campaign_id=forexzeydoo&land_state=before_render&land_id=tRcuEocwPhQjiJJ&land_generation_time=2023-12-04_17:37:03&land_error_code=&ruid={ruid}&mgeo={mgeo}&oaid=c0f9a47536da59c6ef450a52da6449cb&land_type=rtr&isPushSubscribed=false&isPushAlreadySubscribed=false&land_tracker=marker&land_purchase_method=apk HTTP/1.1
Host: e.phoakuxar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Mon, 04 Dec 2023 22:40:09 GMT
content-length: 0
location: https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
x-trace-id: de767698bfee98ec97e3d00d9514139e
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
200 OK 3.1 kB URL User Request GET HTTP/1.1 rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
IP
ASN #14061 DIGITALOCEAN-ASN
Certificate IssuerLet's Encrypt
Subjectrewardwin.xyz
Fingerprint2F:05:D6:4D:5C:5A:14:53:22:57:87:C6:7C:E7:36:4A:05:CB:8A:C7
ValidityWed, 22 Nov 2023 10:58:33 GMT - Tue, 20 Feb 2024 10:58:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1d3e05c99dd23a6bf9f06bb3e28dc3bd
ac4503d042f0f8a694caabb1dd0204d0b0db1990
7d2e823b236870c16c93a54a5a917680eae215f6aa37a10f40d5ee675adce5c1
GET /KspBKHP8?external_id=miss_755671249239941931 HTTP/1.1
Host: rewardwin.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 04 Dec 2023 22:40:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: Mon, 04 Dec 2023 22:40:09 GMT
Set-Cookie: _subid=s8hnpagj5t0; expires=Thu, 04 Jan 2024 22:40:09 GMT; path=/
15ab5=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE1MTZcIjoxNzAxNzI5NjA5fSxcImNhbXBhaWduc1wiOntcIjZcIjoxNzAxNzI5NjA5fSxcInRpbWVcIjoxNzAxNzI5NjA5fSJ9.00nWQnBH3nRwk8wHHcAeqVyILqApQX0e8uPifn1AELI; expires=Sun, 07 Nov 2077 21:20:18 GMT; path=/
_token=uuid_s8hnpagj5t0_s8hnpagj5t0656e55495e9a09.69575975; expires=Thu, 04 Jan 2024 22:40:09 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
200 OK 4.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65348)
Hash c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f
GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:09 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1103781
expires: Sat, 23 Nov 2024 22:40:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mY1HLTgmQfB6Lsk8rbV19skJTES6lCj%2F7oKuAQTlnff9vqJRVsMoiiWMQelGqZVPaAsAtMK74qq8u4Ah%2Bm1C4lp3tXH7zG7jQCPubD70vhsZZNTtuRs16AZevL3iLzGmWIfXXWY%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83078caddbc55694-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/gp2.png
200 OK 42 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/gp2.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 480 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash 99d61cda492b94913af8222b14b5f460
108411f3f134b08967804451610f11b11d7a0cd4
4c6a3c841737de3244247e950a5beff932a0e71deee8a64f71af154267956880
GET /landings2023/ng-en/gift-surv-roulette-white/images/gp2.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 41709
last-modified: Sun, 25 Sep 2022 13:40:16 GMT
etag: "63305a40-a2ed"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ki05xT8i%2Bn0iKb2DCsB%2FO6zkgUmOJkAxyqdVRdD824vJQNkdfV9O6wI%2FVAi5lkP01xAtTbWDqG8jkEu37qsbRyAvhMDYwuQ0%2Bs8ypNzCbzM2Bgicu6dEJqOlKtrJeHVA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0956a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/man.png
200 OK 162 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/man.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 419 x 561, 8-bit/color RGBA, non-interlaced\012- data
Size 162 kB (161464 bytes)
Hash ac27ba5226f9d8f678634f906f0b5d71
40cc53808653f13d844e9ecfe198f31768904650
cd6cc70dc9bf12f308cdf561538159955154d1ac924e2d956c5cad1f763295fa
GET /landings2023/ng-en/gift-surv-roulette-white/images/man.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 161464
last-modified: Wed, 14 Sep 2022 13:07:58 GMT
etag: "6321d22e-276b8"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UkmpKSsM6ch4IyDHEIbTk%2FhMtJBLBKz13GqgkCec2ZRHm1FnfNJ0BCSc2nsq7GTKbRbEvigZxf%2FjM3Cfxp6DUEuWDOQFXO14U3B210hBw%2F2NyOjd42x%2Bdnng6r2BCS8I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0356a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-2.jpeg
200 OK 1.3 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-2.jpeg
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 92b944714cea3e478a8e50dea1a80b26
f12fc267be0ab02e2f3585b42df5b8c10d3cd3a5
fa07d78345204bf48b255523990b544e1b28f9a7810aaf2b8a5a356d05575205
GET /landings2023/ng-en/gift-surv-roulette-white/images/img-2.jpeg HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/jpeg
content-length: 1297
last-modified: Thu, 23 Dec 2021 12:57:34 GMT
etag: "61c4723e-511"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bt61q8UPcxxJ0aKfOUCGI%2B4Oljvrgz2bentAbVChW2dqLyTX6fFYoPSrAoAv0r6Eiry%2BwQVQhw64CfTRe6hc3gIL%2BQJ7i720eqbjayFjwVhyZxj%2B0b6dNxCkSFXWXr%2BE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0d56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-1.jpeg
200 OK 1.7 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-1.jpeg
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 0aa137a0a96d58799ecf30ef67ff9c26
306eb4cb9e47ecb4e7bec4e28b39836a17e33686
1a38826964bc3cab6c150187737002c19f10ed32e49de456610efa46d0f4d505
GET /landings2023/ng-en/gift-surv-roulette-white/images/img-1.jpeg HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/jpeg
content-length: 1676
last-modified: Thu, 23 Dec 2021 12:57:24 GMT
etag: "61c47234-68c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AUNxphtcDqe%2BcJcLk3hkVSS1xu8%2Fvgk%2FPPrWaONFam8HgZfKXe9xGw2UzM4S2tPL9LORTNAw8nuhKK3n5Ka5kFUzo%2FHuVszPRECbwJdxYlJw8f3YqLV6oSWfs0LhAz4e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0c56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/gp.png
200 OK 183 B URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/gp.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 250 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash d3af080df97a702f38741ee5e07463d6
adc8355d89eb675514be29259c50377067320cb9
a0fe4f606b5324b677a409fe41e864f9d06bfd671c9a463aa0bee06a7e365cfc
GET /landings2023/ng-en/gift-surv-roulette-white/images/gp.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 183
last-modified: Tue, 04 Apr 2023 13:38:40 GMT
etag: "642c2860-b7"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0CsyHBQ5kLM3g5dBEPOx%2FTGE35BwE6rUZWITyOxcKqXv9e8Xv474VCRN1nP%2FIuqOpUNOfZPwH1TgUdfOi6jYXOCC36SBEK13%2Bco2FZvFaZ36PkGlwhyg1sZCTkJ8RfV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0756a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-4.jpeg
200 OK 1.9 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-4.jpeg
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 897b5ca1190db65d3807cb28a717200e
81d860d075f08e684c900da11491763cb2f19ca6
3c1b498dfa96a398310bb0a0d677b1f4f22738bd4704669ba9fc0e350fd912b1
GET /landings2023/ng-en/gift-surv-roulette-white/images/img-4.jpeg HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/jpeg
content-length: 1870
last-modified: Thu, 23 Dec 2021 12:57:42 GMT
etag: "61c47246-74e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qyoGf2tzfysdM0ASnzV9AvHMguGKR%2Fnu8pehIdBS2T1PDxBFeSMl%2F932%2FykuXEgldURvNyu%2BMgx4Lbdt5g5cBfTf6TorFotH0XNVG05uBqKec0Bm9356%2B9hD93YqpxVe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0156a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo3.png
200 OK 9.7 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo3.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 307 x 197, 8-bit/color RGBA, non-interlaced\012- data
Hash 98aaf44d591cf57853dfc356173b6c7a
78f3eb54bf2b0e2edd79be1000f7428a6d4de938
0a8c73643e999e22a06d005580f82979d31f084230126a5ca055154b863c7556
GET /landings2023/ng-en/gift-surv-roulette-white/images/logo3.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 9681
last-modified: Tue, 18 Oct 2022 17:39:08 GMT
etag: "634ee4bc-25d1"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b%2F0TPA2J%2FBiLGTrUrP3TXrSt965lABQkarof9zVV%2BBWsbRPWz72G%2FjloGXnVdYw%2BsDvVHWHb8KlG8k9RL%2FqwOvcNjV9wP6ZoXT7vbppR%2BenW1M103gSD78Ebuw47H1Ny"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0256a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo2.png
200 OK 4.2 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo2.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 89 x 87, 8-bit/color RGBA, non-interlaced\012- data
Hash 50d720d34263f3367139fd29768b382d
49c4b7abdf12383517837086f9dfc17d44670529
912a90ef6d23d1940dabb7ec57a069909e78f27ae62ef309d3306fbbbc799b27
GET /landings2023/ng-en/gift-surv-roulette-white/images/logo2.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 4162
last-modified: Tue, 18 Oct 2022 16:47:44 GMT
etag: "634ed8b0-1042"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3PflCrPwHRAmQT2P3Pfj1%2FSOsUucufdFLoqGe%2FXPTrvkOb%2F2ajfOXEzdcOIx%2BCCNMSdIMecYSclz4d6wN6TYTFaJcA8Li2jvw8Rwtwn3eL8UvEz7VFyaHVTT2Y6qmrM5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0656a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/caseeeee.png
200 OK 50 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/caseeeee.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 277 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash b08f557ae1b37506ac0288cf6fb90b5f
3bea743e559774ea1254cd20b835cbbb9b98b4d7
705d7cd18555a8a8f25bf74516a8c1bd19a335a07fe2ba357c3e561bc579c0c4
GET /landings2023/ng-en/gift-surv-roulette-white/images/caseeeee.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 49898
last-modified: Mon, 17 Oct 2022 19:08:58 GMT
etag: "634da84a-c2ea"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9HS1UZu33afVOKAF04GHyFVt3NG6CWFO1GNIE1zrytbV0IggHI%2FOdqqdkqjG2rTWsMvQyVQiBmhbmUFhi%2B1j2OB64eNgMpo2leqhVk60n5sDIVrTEkLP%2FeqZwAVEdWtW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0556a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/default.png
200 OK 37 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/default.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 195 x 227, 8-bit/color RGBA, non-interlaced\012- data
Hash 9506a4b9dc07572fb0cb94d3ba0cf51c
ff8ee265f910e8dfa034d949c04008cc51104be1
c31c20a7b054a98299de7d7a32d5bff132800bf4115738c46e2da26ec901af71
GET /landings2023/ng-en/gift-surv-roulette-white/images/default.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 36955
last-modified: Tue, 18 Oct 2022 19:11:36 GMT
etag: "634efa68-905b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bVEeU5iK0RE2G7i4VEmfV1lOdidW5ygy1lG5MqVlTWVNJ9Lt%2FuLpsh5ZRK0wMfuyYRb0zqpI%2Fj31rdd6z7k1Ty%2FSZR2uqpNRGodwtw%2BUC4Lj92mOkZd2vPAW8Sf55gie"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0a56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-3.jpeg
200 OK 1.4 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/img-3.jpeg
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash d6758d36aa9a5b8c024d3caf2dc2df7d
048d80743ff3d60d4633186d81391b94d7c83b1b
94a926b8594e8b7764c73abaad56fddcca385882391b8c07300c11abfadfe72f
GET /landings2023/ng-en/gift-surv-roulette-white/images/img-3.jpeg HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/jpeg
content-length: 1418
last-modified: Thu, 23 Dec 2021 12:57:40 GMT
etag: "61c47244-58a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nMP3NWNJlp0lo5ijlpRzVOmTusUIxdaZDpjXwrrEqWlyfEpuyRThqDKE9xExaeRCkaLegw1rb6be3hS6cgCKuAn90YNKZ1W6UZXmDDIV6tcW74JFUbcPFDD3aCK8pv6n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfaff56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo4.png
200 OK 28 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo4.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 843 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash e277ee34fa285d3ace22c608a12d1a4a
b6e68b54bd43f2e4191b9a53f123955b29f6db84
0b00afe3f7b4688b951537e99130f4ebf90fdde3a050b002612ab4095cdb8214
GET /landings2023/ng-en/gift-surv-roulette-white/images/logo4.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 27531
last-modified: Wed, 14 Sep 2022 15:22:26 GMT
etag: "6321f1b2-6b8b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E5efHBXQWwwYjGC2n38n8D1RYBowK2%2FuLWqDSLoeMVnLhjOnFW%2FGyc47RH29F8JE1Tet%2BHqnvm%2F84%2BENgLxhkUSnDyz426dutjJcmXLZGXeIDjALN47%2F7SbFmA0%2FPvol"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0b56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo5.png
200 OK 60 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/logo5.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 761 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash ec9f7ad20838716e4d650a48ea0cf9a5
266ec7148bc959494d07c5c2e4426bb0c66c77b8
89b8bfce85fd3ccaef385ffb0fd0d4e85f67fadb6bfeea877270ef3adb393a63
GET /landings2023/ng-en/gift-surv-roulette-white/images/logo5.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 59850
last-modified: Mon, 17 Oct 2022 19:06:32 GMT
etag: "634da7b8-e9ca"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nLW4stFstf5dply3PCQUWx%2B%2Bb6m9F5vZGItGG%2Fx7pXt5tvkVMM%2F0qc8N6zYeFsTlj6EVjOlbMvoddvHyJBb9Loj%2Bdtc7dhG3PQ3XupENaINa9hh11nbxgiOuUf6kDpKM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cadfb0456a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/180.png
200 OK 12 kB URL GET HTTP/3 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/180.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a5fb16791029183e2b297c7c23b159b
c6eaa4129c4f6289027e122db0c8e8519e6da21d
5f4c229cf576341a7c0343d2efedac73788e497860eb9d945266f4151d2a8c5b
GET /landings2023/ng-en/gift-surv-roulette-white/images/180.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: image/png
content-length: 11500
last-modified: Fri, 05 Aug 2022 08:14:24 GMT
etag: "62ecd160-2cec"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UvP8Vih89%2B5c0O357wdBPyglZ2klq4BcvcvJFinkR1wgaYFL2JoDml3NqiBfcD2ENW61gt6pKOVbZYgntHxrOw0EBdwKolD4MW6%2FgxVCykpVLbLk2MU%2FiCvVghJUr72Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cb36ed95689-OSL
alt-svc: h3=":443"; ma=86400
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff2
200 OK 47 kB URL GET HTTP/3 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff2
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 46976, version 1.0\012- data
Hash a0efdc198cbe51a0c7c0ed8d60d98b6e
c0694e00c84b6a9b5063dfebde3281a4326633c0
5f69b0d0e007dabcde3b7698a21e4815c221423f56fbe0aac55457d9a8bc8e46
GET /landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff2 HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rewardwin.xyz
DNT: 1
Connection: keep-alive
Referer: https://ubankroll.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:40:11 GMT
content-type: application/octet-stream
content-length: 46976
last-modified: Tue, 13 Sep 2022 13:44:02 GMT
etag: "63208922-b780"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZwwkOpDxR1lvNa6hxcyVMRy3GHEdtfzBeN0I0o95qhDQmZNcc%2FeUo06V4ONSU6Z8n4FzOzLvHssH9ZGnpH0iVeg%2FMYI5nFlO%2Fl8SNRCef%2BfNBh6dZReeC%2BoCIVD2ZBgB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cb2efd756a5-OSL
alt-svc: h3=":443"; ma=86400
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/180.png
200 OK 12 kB URL GET HTTP/3 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/images/180.png
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a5fb16791029183e2b297c7c23b159b
c6eaa4129c4f6289027e122db0c8e8519e6da21d
5f4c229cf576341a7c0343d2efedac73788e497860eb9d945266f4151d2a8c5b
GET /landings2023/ng-en/gift-surv-roulette-white/images/180.png HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:40:11 GMT
content-type: image/png
content-length: 11500
last-modified: Fri, 05 Aug 2022 08:14:24 GMT
etag: "62ecd160-2cec"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FaE5J%2BaMqIBp%2BXVs8tk1s0e62MrAkR18B9UkJrLGGJD%2Bf9jg9ZaBWb654KVVDdrhfWxQbxKU44xFZxjMEIE8qfcaUqp5WcH7cqrNVO1K9kjBo1ub99LrIX32V6v4cHxR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cb36edc5689-OSL
alt-svc: h3=":443"; ma=86400
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff
200 OK 67 kB URL GET HTTP/3 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type Web Open Font Format, TrueType, length 66792, version 1.23\012- data
Hash 2092047a2c2d0489e60bb0d1c7a189ed
33bfbccf9abb57d5e10a39b43d30d1d452677486
e4b59d956b638a7ea25bb7a21098d10a4ea5beb8a4d265e14858910ee99a16c2
GET /landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.woff HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rewardwin.xyz
DNT: 1
Connection: keep-alive
Referer: https://ubankroll.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:40:11 GMT
content-type: application/font-woff
content-length: 66792
last-modified: Tue, 13 Sep 2022 13:44:00 GMT
etag: "63208920-104e8"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=biAeodlJr5D5rSsMLTJErua0m%2FZFDVjY5yMCRzfqml1E9Ljq95KPT53PoTBr0ytHIq3%2F2SAhd%2B3jDnFnCWaQ6U0emgEKyVMEb3dk%2FB3QjdYrJA3pzl6jWgaUyFt3pHiS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cb5697a56a5-OSL
alt-svc: h3=":443"; ma=86400
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.ttf
200 OK 143 kB URL GET HTTP/3 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.ttf
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type TrueType Font data, 15 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 143 kB (142976 bytes)
Hash 9aaa26317398638fdd92c427a85b4b04
62d795f5452d6d810e37c36e9f691af2de34ebf1
9dd0017be60e86cac45755a205f559296e6b2bed66f9440a35e04ac9ec2d48b4
GET /landings2023/ng-en/gift-surv-roulette-white/fonts/GoogleSansRegular.ttf HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardwin.xyz
DNT: 1
Connection: keep-alive
Referer: https://ubankroll.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 04 Dec 2023 22:40:11 GMT
content-type: application/octet-stream
content-length: 142976
last-modified: Tue, 13 Sep 2022 13:44:00 GMT
etag: "63208920-22e80"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XaMuLbjiMeUsv%2BjxPzPAm4C7P8PDH89awCm80wo9LVd76IaD27L9%2B9UTXZANWqgzdPn57%2FHLw5nhbdLEDMZqDrBnC6PfmGGEna2fGx05qNgCVGUpx78vI7T0WYM7WyAp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83078cb78b0f56a5-OSL
alt-svc: h3=":443"; ma=86400
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/script.js
200 OK 5.2 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/script.js
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type Unicode text, UTF-8 text, with very long lines (5599), with no line terminators
Hash eb02d6adf3df42bd70c2b89f0202c0e8
f339c4766a28a1c2f213a3f8c11bf12f8d7c6a42
2eeb37da4f22002a76763b9a8f9d0befd54235a34a58c22770fa62f6bd90866e
GET /landings2023/ng-en/gift-surv-roulette-white/script.js HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 20:06:46 GMT
vary: Accept-Encoding
etag: W/"634f0756-1442"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dT%2FFZjdjQuh0DOJiHsByXNiSPvuuSkdGFlTVpuODicYJVH2OukBFpDEt8%2FlNA9kDSCtLy62iKIYK%2FXNOhOeka1zc91h083I29DG7AHBoSyk0ENfMXGDuqu5WhXllTO1Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83078cadfb0e56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.1/css/bootstrap.min.css
200 OK 141 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.1/css/bootstrap.min.css
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (65324)
Size 141 kB (140930 bytes)
Hash a7022c6fa83d91db67738d6e3cd3252d
1ae238d0c533b209ea5becf4317e13237ed3d42e
31df1e69ea3aece8a8bae5c08bcb7f5e977cb76f886897b301355359b66a48ec
GET /bootstrap/4.1.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rewardwin.xyz
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:09 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"a7022c6fa83d91db67738d6e3cd3252d"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 10/31/2023 18:51:17
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7a0fc01c648f129b40c3145641b493f8
cdn-cache: HIT
cf-cache-status: HIT
age: 388271
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83078cadfa445699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/style.css
200 OK 44 kB URL GET HTTP/2 ubankroll.com/landings2023/ng-en/gift-surv-roulette-white/style.css
IP
Requested by https://rewardwin.xyz/KspBKHP8?external_id=miss_755671249239941931
Certificate IssuerGoogle Trust Services LLC
Subjectubankroll.com
Fingerprint30:B2:EC:7F:FE:98:36:CF:16:F3:06:64:B9:53:93:51:42:D8:4B:58
ValidityFri, 10 Nov 2023 23:38:38 GMT - Thu, 08 Feb 2024 23:38:37 GMT
File type ASCII text, with very long lines (301), with CRLF line terminators
Hash 491875c102fd2855e1747725d365e9c0
2db98e1516818838ba1e901d2386c0a74fce731f
5c55c66b44c9c124a6be0819ecc094d3f62b57c30be4ac4db6f843fb9b68488c
GET /landings2023/ng-en/gift-surv-roulette-white/style.css HTTP/1.1
Host: ubankroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rewardwin.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 22:40:10 GMT
content-type: text/css
last-modified: Thu, 20 Oct 2022 16:56:26 GMT
vary: Accept-Encoding
etag: W/"63517dba-ac8c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K7F6DyFQ%2B3co9k8nkEg6kZQ6v8HAWkKKOjN063v%2BZUde6CjX42OdhgURZGVNH0tus9ilxXz0TMb%2BZnZAnaEfbzLPgKHKxU28q%2BBSqS%2FKF0jw4IRC2iQulyTzJNSsPhD1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83078cadfafe56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
139.45.197.162
167.172.44.133
104.17.24.14
188.114.97.1